[apparmor] [patch] smbd profile + smbldap-useradd
Kees Cook
kees at ubuntu.com
Wed Jan 4 19:01:11 UTC 2012
Hi,
On Wed, Jan 04, 2012 at 07:43:35PM +0100, Christian Boltz wrote:
> + profile /etc/init.d/nscd {
> + #include <abstractions/base>
> + #include <abstractions/nameservice>
> +
> + capability sys_ptrace,
I wonder why sys_ptrace keeps showing up in some of these profiles. Is this
really needed?
> + /proc/filesystems r,
> + /proc/meminfo r,
These are already in "base".
-Kees
--
Kees Cook
More information about the AppArmor
mailing list