mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-05 17:01:00 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor/utils/easyprof/templates/sandbox-x
Jamie Strandboge af26d11dd2 fix up option parsing 
implement profile loading and transition (sudo for now)
2012-05-10 01:17:56 -07:00

44 lines
902 B
Text
Raw Blame History

#
# Example usage for a program named 'foo' which is installed in /opt/foo
# $ aa-easyprof --template=sandbox \
# --template-var="@{APPNAME}=foo" \
# --policy-groups=opt-application,user-application \
# /opt/foo/bin/foo
#
###ENDUSAGE###
# vim:syntax=apparmor
# AppArmor policy for ###NAME###
#include <tunables/global>
###VAR###
###BINARY### {
#include <abstractions/base>
#include <abstractions/X>
#include <abstractions/gnome>
#include <abstractions/kde>
/etc/passwd r,
/ r,
/**/ r,
/usr/** r,
/var/lib/dbus/machine-id r,
owner @{PROC}/[0-9]*/auxv r,
owner @{PROC}/[0-9]*/fd/ r,
owner @{PROC}/[0-9]*/environ r,
owner @{PROC}/[0-9]*/mounts r,
owner @{PROC}/[0-9]*/smaps r,
owner @{PROC}/[0-9]*/statm r,
owner @{PROC}/[0-9]*/task/[0-9]*/stat r,
###ABSTRACTIONS###
###POLICYGROUPS###
###READS###
###WRITES###
}
Reference in a new issue View git blame Copy permalink