mirror of
https://gitlab.com/apparmor/apparmor.git
synced 2025-03-07 01:41:00 +01:00
28 lines
791 B
Text
28 lines
791 B
Text
# vim:syntax=apparmor
|
|
# ------------------------------------------------------------------
|
|
#
|
|
# Copyright (C) 2009 Canonical Ltd.
|
|
#
|
|
# This program is free software; you can redistribute it and/or
|
|
# modify it under the terms of version 2 of the GNU General Public
|
|
# License published by the Free Software Foundation.
|
|
#
|
|
# ------------------------------------------------------------------
|
|
|
|
# private ssl permissions
|
|
|
|
# Just include the whole /etc/ssl directory if we should have access to
|
|
# private keys too
|
|
/etc/ssl/ r,
|
|
/etc/ssl/** r,
|
|
|
|
# acmetool
|
|
/var/lib/acme/live/* r,
|
|
/var/lib/acme/certs/** r,
|
|
/var/lib/acme/keys/** r,
|
|
|
|
# dehydrated
|
|
/{var/lib,etc}/dehydrated/certs/*/privkey-*.pem r,
|
|
|
|
# certbot / letsencrypt
|
|
/etc/letsencrypt/archive/*/privkey*.pem r,
|