[apparmor] [PATCH] update aspell abstraction
John Johansen
john.johansen at canonical.com
Wed Jan 18 18:51:51 UTC 2012
On 01/18/2012 10:35 AM, Steve Beattie wrote:
> On Wed, Jan 18, 2012 at 04:40:27AM -0800, John Johansen wrote:
>> On 01/17/2012 04:15 PM, Steve Beattie wrote:
>>> A bug in Ubuntu [1] reported that the aspell abstraction does
>>> not allow write access to the user customizable dictionaries, the
>>> personal dictionary (~/.aspell.$LANG.pws) and the personal replacement
>>> dictionary (~/.aspell.$LANG.prepl). It also adjusts the abstraction
>>> to add the owner modifier to the personal dictionaries.
>>>
>>> [1] https://bugs.launchpad.net/bugs/917859
>>> ---
>>> profiles/apparmor.d/abstractions/aspell | 2 +-
>>> 1 file changed, 1 insertion(+), 1 deletion(-)
>>>
>>> Index: b/profiles/apparmor.d/abstractions/aspell
>>> ===================================================================
>>> --- a/profiles/apparmor.d/abstractions/aspell
>>> +++ b/profiles/apparmor.d/abstractions/aspell
>>> @@ -2,7 +2,7 @@
>>> # aspell permissions
>>>
>>> # per-user settings and dictionaries
>>> - @{HOME}/.aspell.*.{pws,prepl} rk,
>>> + owner @{HOME}/.aspell.*.{pws,prepl} rwk,
>>>
>>> # system libraries and dictionaries
>>> /usr/lib/aspell/ r,
>>>
>>>
>>>
>>>
>>
>> Acked-by: John Johansen <john.johansen at canonical.com>
>
> Bah, I meant to ask for 2.7 as well; okay there? I grant that adding
> the owner modifier makes it a partially more restrictive rule,
> but that should only cause new rejections for people with, uh, odd
> filesystem permissions.
>
I'm fine with it being added to 2.7
More information about the AppArmor
mailing list