[apparmor] [PATCH] aa-easyprof updates
Seth Arnold
seth.arnold at canonical.com
Sat Jul 6 00:17:48 UTC 2013
On Mon, Jul 01, 2013 at 05:15:07PM -0500, Jamie Strandboge wrote:
> @@ -428,6 +546,7 @@
> s = "%s# No read paths specified" % prefix
> if len(read_path) > 0:
> s = "%s# Specified read permissions" % (prefix)
> + read_path.sort()
> for i in read_path:
> for r in self.gen_path_rule(i, 'r'):
> s += "\n%s%s" % (prefix, r)
> @@ -438,17 +557,109 @@
> s = "%s# No write paths specified" % prefix
> if len(write_path) > 0:
> s = "%s# Specified write permissions" % (prefix)
> + write_path.sort()
> for i in write_path:
> for r in self.gen_path_rule(i, 'rwk'):
> s += "\n%s%s" % (prefix, r)
> policy = re.sub(r' *%s' % search, s, policy)
We may also need a way to allow profile authors to push 'k' through on
files that they'll only read. (Maybe all these cases will already be
handled via abstractions.)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20130705/b50cf502/attachment.pgp>
More information about the AppArmor
mailing list