mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 16:35:02 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
1406 commits 23 branches 109 tags 32 MiB
Commit graph

165 commits

Author SHA1 Message Date
Seth Arnold
448fc73350 Bug 287579 - <abstractions/X> doesn't allow access to /usr/share/X11 and other xorg directories 2007-08-23 23:12:53 +00:00
Seth Arnold
f8fa7cf0d8 Bug 241479 - Fix for usr.sbin.nscd profile 2007-08-23 22:49:41 +00:00
Seth Arnold
1b92358fe1 Bug 241479 - Fix for usr.sbin.nscd profile 2007-08-23 22:49:11 +00:00
Steve Beattie
4cc2f981a3 [https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/132468] 
Dur, I put the wrong entry for resolvconf in the nameservice
abstraction, fixing.
 2007-08-21 21:53:27 +00:00
Seth Arnold
b2d95817fa seife reported nscd needs stream support too 2007-08-21 16:32:11 +00:00
Dominic Reynolds
c33bcaba91 Updated ping profile to include network inet raw 2007-08-20 00:28:20 +00:00
Dominic Reynolds
cd007f1162 Updates for cups, add inet|inet6 dgram|stream to nameservice abstraction 2007-08-17 21:46:56 +00:00
Seth Arnold
0e5d6bddd2 Bug 288470 - ntp profile rejects access to /var/lib/ntp/etc/localtime 2007-08-15 17:31:26 +00:00
Steve Beattie
18785e848d Fix to ntpd profile from Mathias Gug <mathiaz@ubuntu.com> of Ubuntu. 2007-08-14 18:51:00 +00:00
Steve Beattie
1f0169a5f9 Launchpad bug #132468: Nameservice abstraction should also include 
/var/run/resolvconf/resolv.conf:

  The Nameservice abstraction configuration file
  (/etc/apparmor.d/abstractions/nameservice) permits reads access to
  (amongst other paths) /etc/resolv.conf.

  However, on systems using resolvconf, this is a symbolic link to
  /etc/resolvconf/run/resolv.conf -- where /etc/resolvconf/run itself
  is a symlink to /var/run/resolvconf.
 2007-08-14 14:50:09 +00:00
Dominic Reynolds
fcfccdc1f7 Profile changes for the new network toggles and lock mediation. 2007-08-07 12:26:21 +00:00
Dominic Reynolds
fcbd2cafae Updates for network toggles and new profiles. 2007-08-06 15:28:24 +00:00
Seth Arnold
5bd8083759 write to drift 2007-07-19 16:00:39 +00:00
Seth Arnold
f601f8c9ce services access 2007-07-19 15:59:58 +00:00
Seth Arnold
d0cfcfa004 add a bunch of rules for dhcpcd -- including two Ux rules. Ugh. Should fix that, but they look like big black holes. 2007-06-11 22:14:18 +00:00
Seth Arnold
b7110070f2 fix up postfix's directories with the new / suffix 2007-06-11 21:55:56 +00:00
Seth Arnold
131355ec7a move xfs away from X11R6 2007-06-11 17:56:00 +00:00
Seth Arnold
7509f7aae2 move xfs away from X11R6 2007-06-11 17:55:50 +00:00
Seth Arnold
6aad212284 move acroread 2007-06-11 17:53:45 +00:00
Seth Arnold
f0d8ce3159 a few dhcpcd and resmgrd fixes 2007-06-11 17:23:17 +00:00
Seth Arnold
1f3cc4e008 gconfd-2 rmix to itself, 64bit version too 2007-06-11 04:17:30 +00:00
Seth Arnold
a998abbd3e make a 64bit copy of gconfd-2 2007-06-11 04:15:55 +00:00
Seth Arnold
677c9feb2b rename gconfd-2 2007-06-11 04:15:34 +00:00
Seth Arnold
334761bdbe rename ethereal -> wireshark 2007-06-11 04:14:29 +00:00
Seth Arnold
daa4e31b27 rename gaim 2007-06-11 04:13:53 +00:00
Seth Arnold
41215a97f8 fix up bonobo-activation-server with rmix access to itself 2007-06-11 04:13:19 +00:00
Seth Arnold
e7b4565f49 rename bonobo-activation-server 2007-06-11 04:12:29 +00:00
Seth Arnold
0ffba14641 rename evolution-data-server 2007-06-11 04:10:48 +00:00
Seth Arnold
b504df44e0 rename evolution 2007-06-11 04:10:13 +00:00
Seth Arnold
0b888a5203 removing /opt/gnome, /opt/OpenOffice.org, /usr/X11R6/, /opt/mozilla 2007-06-11 04:09:23 +00:00
Seth Arnold
e435b8f706 first step in replacing /opt/gnome with more sensible paths -- next step, renaming 2007-06-11 04:07:41 +00:00
Seth Arnold
4e9c17ab6e Updates from Mathias Gug for ntpd 2007-06-05 19:47:53 +00:00
Seth Arnold
d988a78f22 fixes to klogd from Mathias Gug 2007-06-01 21:18:50 +00:00
Seth Arnold
18d356e23d fixes to ntpd from Mathias Gug 2007-06-01 21:17:42 +00:00
Steve Beattie
9ee7d1041f Fix up some of the directories that should have been converted. 2007-05-31 05:58:22 +00:00
Seth Arnold
42ec04076f Patch from Marius Tomaschewski for syslog-ng, which now uses pipe instead of file for writing to the console 2007-05-29 17:28:38 +00:00
Steve Beattie
65d3b94589 Bah, forgot to svn add the tunables file for /proc. 2007-05-25 20:24:11 +00:00
Steve Beattie
7e6e37953f This patch adds a variable definition for the location of /proc in 
tunables/proc and modifies all users of /proc to use the variable instead.

I also converted some uses of /proc/*/ to /proc/[0-9]*/ to be a
little more restrictive, as well as removing some references to proc
files that are already covered by abstractions/base (the removals in
abstractions/bash seem justified as all uses of abstractions/bash are
immediately preceded by abstractions/base).
 2007-05-25 02:09:30 +00:00
Seth Arnold
9e39e751c5 Bug 265775 - changes for kerberosclient profile 2007-05-22 21:16:48 +00:00
Seth Arnold
592b23f523 Bug 267933 - audit message about /var/lib/ntp/drift/ntp.drift.TEMP 2007-05-16 22:47:40 +00:00
Seth Arnold
1915836d6e remove a lot of the Ux rules we inherited from our fevered attempt to provide profiles for everything in NLD9. Some of the programs may not be functional as a result -- evolution's Ux on sendmail comes to mind -- but these profiles are all really bitrotten. 2007-05-16 20:55:13 +00:00
Seth Arnold
6d7cd99d03 Ralf has added the openldap profile to the openldap package 2007-05-16 19:19:03 +00:00
Seth Arnold
c56f72e512 Uwe has added the named profile to the bind package 2007-05-16 19:09:58 +00:00
Seth Arnold
2e9a82868f Grand profile repository re-organization. Move directories around to 
make the final install layout match the layout in the repository (at
long last :) -- now we can use a single 'make check' target to check the
profiles in the repository against both apparmor_parser and logprof.
 2007-05-16 18:51:46 +00:00
Steve Beattie
693e769a77 A couple of directory fixups for sshd. 2007-04-10 23:34:06 +00:00
Steve Beattie
f4fd2f17b6 Add an alternate location for XKeysymDB 2007-04-10 22:31:50 +00:00
Andreas Gruenbacher
793161458b Adapt abstractions and some profiles in active/ to the new syntax. 2007-04-10 22:08:09 +00:00
Andreas Gruenbacher
17353f25b4 Adapt abstractions and some profiles in active/ to the new syntax. 2007-04-10 22:05:33 +00:00
Andreas Gruenbacher
4f7c1ecdfc Make sure we have at least one enabled profile; this looks as if it should work. 2007-03-30 22:45:28 +00:00
Andreas Gruenbacher
004af43f9f Bumt the version to 2.0.2. Move active/ profiles to extra/ pending review and regeneration with the latest syntax. 2007-03-30 22:32:48 +00:00