mirror of
https://gitlab.com/apparmor/apparmor.git
synced 2025-03-06 09:21:00 +01:00
45 lines
1.1 KiB
Bash
45 lines
1.1 KiB
Bash
# $Id$
|
|
# ------------------------------------------------------------------
|
|
#
|
|
# Copyright (C) 2002-2005 Novell/SUSE
|
|
#
|
|
# This program is free software; you can redistribute it and/or
|
|
# modify it under the terms of version 2 of the GNU General Public
|
|
# License published by the Free Software Foundation.
|
|
#
|
|
# ------------------------------------------------------------------
|
|
# vim:syntax=apparmor
|
|
|
|
#include <tunables/global>
|
|
|
|
/usr/bin/mlmmj-make-ml.sh {
|
|
#include <abstractions/base>
|
|
#include <abstractions/bash>
|
|
#include <abstractions/consoles>
|
|
#include <abstractions/nameservice>
|
|
|
|
capability sys_admin,
|
|
|
|
/usr/bin/mlmmj-make-ml.sh r,
|
|
|
|
# some shell tools are needed
|
|
/bin/domainname ix,
|
|
/bin/hostname ix,
|
|
/bin/bash ix,
|
|
/bin/cp ixr,
|
|
/bin/mkdir ixr,
|
|
/bin/touch ixr,
|
|
/usr/bin/which ixr,
|
|
# if mkdir cant read the current work directory it jumps into /
|
|
# allow reading that dir.
|
|
/ r,
|
|
|
|
# skeleton data
|
|
/usr/share/mlmmj/text.skel r,
|
|
/usr/share/mlmmj/text.skel/** r,
|
|
|
|
# spool dirs
|
|
/var/spool r,
|
|
/var/spool/mlmmj rw,
|
|
/var/spool/mlmmj/** w,
|
|
}
|