[apparmor] [profile] Evince: the lack of "private-files-strict" and a lenient, dangerous rules related to @{HOME} folder.

[daniel curtis]

​
​Hello Jamie​

Remember that these evince profiles include abstractions/evince. This
> has:
> ​ ​
>
>
​Geez, I totally forgot about checking another abstractions​! Sorry. I was
just amazed. That's all. Thank you for bringing my attention to it.

By the way; are these abstractions rules really needed:

✓ <abstractions/ubuntu-email>
✓ <abstractions/ubuntu-console-email>
✓ <abstractions/ubuntu-media-players>
✓ <abstractions/ubuntu-gnome-terminal>

I'm asking, because Evince is a document viewer (PostScript, PDF).
Of course it allows e.g. printing PS files, EPS etc., text searching, hypertext
navigation and bookmarks with index when it is available in the document
and so on. So, are these rules above necessary?

I would like to remove all unnecessary rules. Just like with Firefox
profile where, by default, files can be downloaded to every folder in
@{HOME}. I'd to make some changes: add about 6 rules to the Firefox profile
and edit "/abstractions/ubuntu browsers.d/user-files"
(that's a place with rules that allow write access everywhere in  $HOME
etc.)

After mentioned changes, users can download only to the "Download" folder,
not everywhere. Oh, and I added an abstractions "private-files" rule. (Plus
two more needed rules, because of a "DENIED" entry.) I think it's a safer
solution, but maybe I'm wrong.

I'm sorry for writing about Firefox profile - it's just an example and some
type of reason, why I asked about removing rules from Evince profile.

Thanks, best regards.
.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20171129/c0a1711c/attachment-0001.html>