mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-07 01:41:00 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
4798 commits 23 branches 109 tags 32 MiB
Commit graph

432 commits

Author SHA1 Message Date
Kees Cook
a7fd5abe37 statvfs allowed by default 2010-06-04 17:43:11 -07:00
Jamie Strandboge
7d22b5bdce abstractions/user-tmp: require 'owner' matching 2010-05-12 10:52:23 +02:00
Jamie Strandboge
369e18202f add dbus-session abstraction 2010-04-19 12:38:17 -05:00
Jamie Strandboge
6186118aa0 adjust cgi path for php5 abstraction (LP: #538661) 2010-03-30 12:34:32 -05:00
Jamie Strandboge
98d20bf257 adjust path to extensions in php5 abstraction, since the extensions directory 
is more free-form than once thought
 2010-03-30 12:31:26 -05:00
Jamie Strandboge
f0b380fe5e add 'k' to /var/lib/samba/**.tdb in the samba abstraction 2010-03-25 18:13:00 -05:00
Jamie Strandboge
fd3baa930e add ubuntu-bittorrent-clients and ubuntu-media-players abstractions 2010-03-08 13:50:25 -06:00
Jamie Strandboge
df05261cd3 add /etc/sound to audio abstraction 2010-03-08 13:49:37 -06:00
Kees Cook
69ebfc4cda update python shared library paths for "pyshared" 2010-01-29 10:10:31 -08:00
Kees Cook
a0e8bf9661 update php5 abstraction, add more details to apache hat documentation, include a common apache2 abstraction for use with hats 2010-01-03 13:16:38 -08:00
Jamie Strandboge
45dc9d4d08 add /opt/google/chrome/google-chrome to ubuntu-browsers (TODO: abstract 
out to third-party-browsers)
 2009-12-04 11:37:10 -06:00
Kees Cook
92b9063527 update KDE abstraction, from Ubuntu 2009-11-11 11:45:49 -08:00
Kees Cook
40e8c9f6e6 merge profiles from Ubuntu, including change_hat apache2 template 2009-11-11 11:42:30 -08:00
Jamie Strandboge
84565d5407 abstractions/gnome: add /etc/gnome/defaults.list 2009-11-10 14:04:26 -06:00
Jamie Strandboge
694c9916b9 pull in Ubuntu updates to profiles/apparmor.d 2009-11-04 14:25:42 -06:00
John Johansen
7e49a0004b Update ntpd to contain rejects for bnc#433368 and bnc#402693 2008-11-05 14:23:25 +00:00
John Johansen
748e398c21 - various patches and cleanups from kees@ubuntu.com 2008-06-11 20:19:36 +00:00
John Johansen
777ff460f8 update profiles for bugs that have been reported by various users 2008-02-19 10:35:19 +00:00
Seth Arnold
d66a9b2886 fixes for abstractions from Mathias Gug 2007-08-28 23:05:56 +00:00
Seth Arnold
c2f555ba0f abstractions fixes from Mathias Gug (Ubuntu) 2007-08-28 22:39:52 +00:00
Seth Arnold
8621cb193a some new abstractions from Mathias Gug 2007-08-27 23:49:51 +00:00
Seth Arnold
cbf2d633b2 Bug 295086 - abstractions/X lists /usr/X11R6 2007-08-23 23:26:49 +00:00
Seth Arnold
7486b2bbb0 Bug 288960 - nscd with nss_ldap and sasl/gss bind to ldap server failed 2007-08-23 23:22:06 +00:00
Seth Arnold
448fc73350 Bug 287579 - <abstractions/X> doesn't allow access to /usr/share/X11 and other xorg directories 2007-08-23 23:12:53 +00:00
Seth Arnold
1b92358fe1 Bug 241479 - Fix for usr.sbin.nscd profile 2007-08-23 22:49:11 +00:00
Steve Beattie
4cc2f981a3 [https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/132468] 
Dur, I put the wrong entry for resolvconf in the nameservice
abstraction, fixing.
 2007-08-21 21:53:27 +00:00
Dominic Reynolds
cd007f1162 Updates for cups, add inet|inet6 dgram|stream to nameservice abstraction 2007-08-17 21:46:56 +00:00
Steve Beattie
1f0169a5f9 Launchpad bug #132468: Nameservice abstraction should also include 
/var/run/resolvconf/resolv.conf:

  The Nameservice abstraction configuration file
  (/etc/apparmor.d/abstractions/nameservice) permits reads access to
  (amongst other paths) /etc/resolv.conf.

  However, on systems using resolvconf, this is a symbolic link to
  /etc/resolvconf/run/resolv.conf -- where /etc/resolvconf/run itself
  is a symlink to /var/run/resolvconf.
 2007-08-14 14:50:09 +00:00
Seth Arnold
0b888a5203 removing /opt/gnome, /opt/OpenOffice.org, /usr/X11R6/, /opt/mozilla 2007-06-11 04:09:23 +00:00
Steve Beattie
7e6e37953f This patch adds a variable definition for the location of /proc in 
tunables/proc and modifies all users of /proc to use the variable instead.

I also converted some uses of /proc/*/ to /proc/[0-9]*/ to be a
little more restrictive, as well as removing some references to proc
files that are already covered by abstractions/base (the removals in
abstractions/bash seem justified as all uses of abstractions/bash are
immediately preceded by abstractions/base).
 2007-05-25 02:09:30 +00:00
Seth Arnold
9e39e751c5 Bug 265775 - changes for kerberosclient profile 2007-05-22 21:16:48 +00:00
Seth Arnold
2e9a82868f Grand profile repository re-organization. Move directories around to 
make the final install layout match the layout in the repository (at
long last :) -- now we can use a single 'make check' target to check the
profiles in the repository against both apparmor_parser and logprof.
 2007-05-16 18:51:46 +00:00