mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-09 10:51:03 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
3888 commits 23 branches 109 tags 33 MiB
Commit graph

435 commits

Author SHA1 Message Date
John Johansen
f6824704c5 fix profile variables with no value to have empty string, as the parser doesn't support having no value yet 2008-05-07 18:38:53 +00:00
John Johansen
5eb6218708 add missing tunables file 2008-05-07 12:07:28 +00:00
John Johansen
3092aaa821 Various profile updates touching on bnc#255270, bnc#331444, bnc#307365 
bnc#230700
 2008-04-10 08:54:05 +00:00
John Johansen
777ff460f8 update profiles for bugs that have been reported by various users 2008-02-19 10:35:19 +00:00
Seth Arnold
d66a9b2886 fixes for abstractions from Mathias Gug 2007-08-28 23:05:56 +00:00
Seth Arnold
c2f555ba0f abstractions fixes from Mathias Gug (Ubuntu) 2007-08-28 22:39:52 +00:00
Seth Arnold
8621cb193a some new abstractions from Mathias Gug 2007-08-27 23:49:51 +00:00
Seth Arnold
cbf2d633b2 Bug 295086 - abstractions/X lists /usr/X11R6 2007-08-23 23:26:49 +00:00
Seth Arnold
f9765ef6d6 Bug 288960 - nscd with nss_ldap and sasl/gss bind to ldap server failed 2007-08-23 23:23:06 +00:00
Seth Arnold
7486b2bbb0 Bug 288960 - nscd with nss_ldap and sasl/gss bind to ldap server failed 2007-08-23 23:22:06 +00:00
Seth Arnold
448fc73350 Bug 287579 - <abstractions/X> doesn't allow access to /usr/share/X11 and other xorg directories 2007-08-23 23:12:53 +00:00
Seth Arnold
f8fa7cf0d8 Bug 241479 - Fix for usr.sbin.nscd profile 2007-08-23 22:49:41 +00:00
Seth Arnold
1b92358fe1 Bug 241479 - Fix for usr.sbin.nscd profile 2007-08-23 22:49:11 +00:00
Steve Beattie
4cc2f981a3 [https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/132468] 
Dur, I put the wrong entry for resolvconf in the nameservice
abstraction, fixing.
 2007-08-21 21:53:27 +00:00
Seth Arnold
b2d95817fa seife reported nscd needs stream support too 2007-08-21 16:32:11 +00:00
Dominic Reynolds
c33bcaba91 Updated ping profile to include network inet raw 2007-08-20 00:28:20 +00:00
Dominic Reynolds
cd007f1162 Updates for cups, add inet|inet6 dgram|stream to nameservice abstraction 2007-08-17 21:46:56 +00:00
Seth Arnold
0e5d6bddd2 Bug 288470 - ntp profile rejects access to /var/lib/ntp/etc/localtime 2007-08-15 17:31:26 +00:00
Steve Beattie
18785e848d Fix to ntpd profile from Mathias Gug <mathiaz@ubuntu.com> of Ubuntu. 2007-08-14 18:51:00 +00:00
Steve Beattie
1f0169a5f9 Launchpad bug #132468: Nameservice abstraction should also include 
/var/run/resolvconf/resolv.conf:

  The Nameservice abstraction configuration file
  (/etc/apparmor.d/abstractions/nameservice) permits reads access to
  (amongst other paths) /etc/resolv.conf.

  However, on systems using resolvconf, this is a symbolic link to
  /etc/resolvconf/run/resolv.conf -- where /etc/resolvconf/run itself
  is a symlink to /var/run/resolvconf.
 2007-08-14 14:50:09 +00:00
Dominic Reynolds
fcfccdc1f7 Profile changes for the new network toggles and lock mediation. 2007-08-07 12:26:21 +00:00
Dominic Reynolds
fcbd2cafae Updates for network toggles and new profiles. 2007-08-06 15:28:24 +00:00
Seth Arnold
5bd8083759 write to drift 2007-07-19 16:00:39 +00:00
Seth Arnold
f601f8c9ce services access 2007-07-19 15:59:58 +00:00
Seth Arnold
0b888a5203 removing /opt/gnome, /opt/OpenOffice.org, /usr/X11R6/, /opt/mozilla 2007-06-11 04:09:23 +00:00
Seth Arnold
4e9c17ab6e Updates from Mathias Gug for ntpd 2007-06-05 19:47:53 +00:00
Seth Arnold
d988a78f22 fixes to klogd from Mathias Gug 2007-06-01 21:18:50 +00:00
Seth Arnold
18d356e23d fixes to ntpd from Mathias Gug 2007-06-01 21:17:42 +00:00
Seth Arnold
42ec04076f Patch from Marius Tomaschewski for syslog-ng, which now uses pipe instead of file for writing to the console 2007-05-29 17:28:38 +00:00
Steve Beattie
65d3b94589 Bah, forgot to svn add the tunables file for /proc. 2007-05-25 20:24:11 +00:00
Steve Beattie
7e6e37953f This patch adds a variable definition for the location of /proc in 
tunables/proc and modifies all users of /proc to use the variable instead.

I also converted some uses of /proc/*/ to /proc/[0-9]*/ to be a
little more restrictive, as well as removing some references to proc
files that are already covered by abstractions/base (the removals in
abstractions/bash seem justified as all uses of abstractions/bash are
immediately preceded by abstractions/base).
 2007-05-25 02:09:30 +00:00
Seth Arnold
9e39e751c5 Bug 265775 - changes for kerberosclient profile 2007-05-22 21:16:48 +00:00
Seth Arnold
592b23f523 Bug 267933 - audit message about /var/lib/ntp/drift/ntp.drift.TEMP 2007-05-16 22:47:40 +00:00
Seth Arnold
c56f72e512 Uwe has added the named profile to the bind package 2007-05-16 19:09:58 +00:00
Seth Arnold
2e9a82868f Grand profile repository re-organization. Move directories around to 
make the final install layout match the layout in the repository (at
long last :) -- now we can use a single 'make check' target to check the
profiles in the repository against both apparmor_parser and logprof.
 2007-05-16 18:51:46 +00:00