Subject: profiles - fix apparmor_api abstractions
2013-01-02 15:02:29 -08:00
Updated abstractions to allow writing to some common config dirs
2018-08-14 16:38:18 -04:00
profiles: support distributions which merge sbin into bin
2018-07-25 14:07:35 -07:00
profiles: allow aspell access to /usr/share/aspell/
2015-02-27 23:14:03 -08:00
Fix local pulseaudio config file access
2017-12-17 15:56:21 +02:00
Make policy compatible with merged-/usr.
2016-12-03 10:59:01 +01:00
Update base abstraction for ld.so.conf and friends.
2018-01-26 19:55:31 +02:00
Subject: profiles - use @{pid} tunable
2013-01-02 15:34:38 -08:00
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
profiles: rw file perms are now needed on AF_UNIX socket files
2013-12-19 23:19:40 -08:00
profiles: Add strict system bus abstraction
2014-01-10 15:34:45 -06:00
profiles: Add strict accessibility bus abstraction
2014-01-10 15:35:30 -06:00
profiles: Add strict accessibility bus abstraction
2014-01-10 15:35:30 -06:00
profiles: Add strict session bus abstraction
2014-01-10 15:35:09 -06:00
Allow dbus-user-session D-Bus path
2016-07-26 22:49:51 -05:00
profiles: Add strict system bus abstraction
2014-01-10 15:34:45 -06:00
dconf abstraction: allow reading /etc/dconf/**.
2015-07-19 15:42:54 +02:00
profiles: support distributions which merge sbin into bin
2018-07-25 14:07:35 -07:00
Move DRI-specific rules into it's own abstraction
2018-02-04 14:21:16 +02:00
Add dri-enumerate abstraction
2018-02-04 16:01:27 +02:00
Fix from Felix Geyer: in the enchant abstraction, allow the creation of
2012-01-10 11:37:54 +01:00
profiles: Create abstractions for fcitx input method framework
2016-06-04 00:27:59 -05:00
profiles: Create abstractions for fcitx input method framework
2016-06-04 00:27:59 -05:00
Updated abstractions to allow writing to some common config dirs
2018-08-14 16:38:18 -04:00
Rename @{usr_share} → @{system_share_dirs} and @{home_local_share} → @{user_share_dirs}.
2018-07-27 06:33:42 +00:00
Updated abstractions to allow creating some common config dirs
2018-08-14 16:38:18 -04:00
abstractions/gnupg: allow pubring.kbx
2018-01-20 23:54:08 +01:00
add preliminary ibus abstraction. Will likely need more once more ibus users
2010-12-22 16:57:35 -06:00
Update kde abstraction for common settings
2018-08-07 20:20:08 +03:00
Add kde-globals-write abstraction
2018-08-14 16:49:07 -07:00
Add kde-icon-cache-write abstraction
2018-08-14 16:49:30 -07:00
Add kde-language-write abstraction
2018-08-14 16:49:16 -07:00
Update samba profiles for samba 4.x
2013-11-20 01:17:52 +01:00
fix up comments in launchpad-integration
2012-01-11 09:27:22 +01:00
ldapclient abstraction: allow rw access to the nslcd socket.
2018-07-30 22:49:24 -04:00
usr.sbin.sshd: refresh profile and add libpam-systemd abstractions
2016-01-08 20:43:56 -05:00
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
update for /var/run -> /run udev transition. For compatibility, distributions
2011-07-14 07:57:57 -05:00
mesa abstraction: allow locking .cache/mesa_shader_cache/??/*.
2018-07-24 07:21:51 +00:00
profiles: add mir abstraction
2015-03-05 11:46:11 -08:00
profiles: Create abstraction for mozc input method editor
2016-06-04 00:28:03 -05:00
abstractions/mysql: allow access to mysqld.sock
2014-04-28 14:07:17 -07:00
Allow reading /etc/netconfig in abstractions/nameservice
2017-10-20 22:53:09 +02:00
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
Update nvidia for reading application profiles
2018-05-22 20:43:56 +03:00
Add OpenCL abstractions
2018-05-13 20:14:15 +00:00
Add OpenCL abstractions
2018-05-13 20:14:15 +00:00
Add OpenCL abstractions
2018-05-13 20:14:15 +00:00
Add OpenCL abstractions
2018-05-13 20:14:15 +00:00
Add OpenCL abstractions
2018-05-13 20:14:15 +00:00
Fix typo (double /) in opencl-pocl abstraction
2018-08-05 17:03:34 +02:00
add FIPS support to abstractions/openssl
2014-01-03 20:43:43 +01:00
fixes for abstractions from Mathias Gug
2007-08-28 23:05:56 +00:00
profiles: rw file perms are now needed on AF_UNIX socket files
2013-12-19 23:19:40 -08:00
Author: Jamie Strandboge <jamie@canonical.com>
2017-06-26 14:04:52 -05:00
abstractions/php: allow ICU (unicode support) data tables
2018-09-02 15:46:43 +02:00
Add backwards compatibility php5 abstraction
2016-12-07 02:46:59 -08:00
update some Postfix profiles
2017-08-22 12:43:18 +02:00
deny writes to upstart user sessions jobs in abstractions/private-files
2013-05-13 14:56:10 -05:00
profiles: rw file perms are now needed on AF_UNIX socket files
2013-12-19 23:19:40 -08:00
abstractions/python: allow /usr/local/lib/python3
2018-08-15 15:06:10 +02:00
Add qt5-compose-cache-write abstraction
2018-08-15 13:25:19 +03:00
Add qt5-compose-cache-write abstraction
2018-08-15 13:25:19 +03:00
Add qt5-write abstraction
2018-08-15 13:02:21 +03:00
Add recent-documents-write abstraction
2018-08-07 23:27:23 +03:00
abstractions/ruby: add /usr/local/ and vendor_ruby paths
2014-09-08 21:36:47 +02:00
Samba profile updates for ActiveDirectory / Kerberos
2017-08-29 13:31:20 +02:00
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
add dehydrated certificate location to ssl_* abstractions
2018-08-06 23:15:06 +02:00
add dehydrated certificate location to ssl_* abstractions
2018-08-06 23:15:06 +02:00
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
profiles: Add deluge-{gtk,console} to ubuntu-bittorrent-clients abstraction
2016-03-19 03:08:52 -05:00
Fix ubuntu-browsers for 64bit openSUSE
2018-04-01 16:48:13 +03:00
don't #include ubuntu-helpers in the abstractions. This can only be included
2012-01-11 09:00:35 +01:00
don't #include ubuntu-helpers in the abstractions. This can only be included
2012-01-11 09:00:35 +01:00
Update abstraction for new Thunderbird executable path
2017-12-07 16:41:10 +00:00
don't #include ubuntu-helpers in the abstractions. This can only be included
2012-01-11 09:00:35 +01:00
update ubuntu abstractions to use '# vim:syntax=apparmor'
2010-12-21 12:53:33 -06:00
profiles: support distributions which merge sbin into bin
2018-07-25 14:07:35 -07:00
Subject: profiles - use @{pid} tunable
2013-01-02 15:34:38 -08:00
don't #include ubuntu-helpers in the abstractions. This can only be included
2012-01-11 09:00:35 +01:00
profiles/apparmor.d/abstractions/ubuntu-unity7-base: update to use dbus
2016-03-10 16:53:24 -06:00
add ubuntu-unity7-* abstractions for Ubuntu desktop users
2014-02-05 23:44:04 -05:00
add ubuntu-unity7-* abstractions for Ubuntu desktop users
2014-02-05 23:44:04 -05:00
update for /var/run -> /run udev transition. For compatibility, distributions
2011-07-14 07:57:57 -05:00
fix user_download abstraction for non-latin file names
2017-06-24 18:12:22 +03:00
abstractions/user-mail: /var/mail/* should only be accessible to their owners
2016-04-14 15:15:36 -04:00
From: Christian Boltz <apparmor@cboltz.de>
2011-08-05 13:12:35 -07:00
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
fix user-write abstraction for non-latin file names
2017-07-02 12:22:21 +03:00
fixes for abstractions from Mathias Gug
2007-08-28 23:05:56 +00:00
Add Vulkan abstraction
2018-05-22 21:48:13 +03:00
wayland abstraction: allow wayland-cursor-shared-* (Closes: Debian#870807).
2017-08-05 09:47:27 -04:00
Add /var/www/html to abstractions/web-data, which is the path used on Debian
2014-02-27 14:49:54 -06:00
update abstractions/winbind
2014-02-14 23:37:13 +01:00
Merge k permission for /var/log/lastlog into abstractions/wutmp
2011-08-16 12:26:44 +02:00
Move DRI-specific rules into it's own abstraction
2018-02-04 14:21:16 +02:00
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
Create an xdg-desktop abstraction based on the upstream documentation for
2012-01-11 13:00:34 +01:00
20de92c5d6