[apparmor] [profile] netstat(8): plenty of DENIED messages; repeated "target=*" value.
daniel curtis
sidetripping at gmail.com
Mon Jan 16 14:48:58 UTC 2017
Hi Seth
There are some rules, which are confusing me. I would like to ask You about
them etc. So, here they are:
## tha lack of "/"?
@{PROC} r,
## Isn't the same thing?
@{PROC}/*/fd/ r,
@{PROC}/[0-9]*/fd r,
What do You think; what is your opinion? I've removed an "owner" prefix
from these rules:
@{PROC}/*/net/tcp r,
@{PROC}/*/net/udp r,
@{PROC}/*/net/raw r,
@{PROC}/*/net/tcp6 r,
@{PROC}/*/net/udp6 r,
@{PROC}/*/net/raw6 r,
There is one more rule with such prefix; should I remove it?
owner @{PROC}/*/net/unix r,
Best regards.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20170116/12105c17/attachment.html>
More information about the AppArmor
mailing list