[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[GNUnet-SVN] r36271 - in Extractor/contrib: . apparmor
|
From: |
gnunet |
|
Subject: |
[GNUnet-SVN] r36271 - in Extractor/contrib: . apparmor |
|
Date: |
Mon, 24 Aug 2015 18:08:07 +0200 |
Author: jmorvan
Date: 2015-08-24 18:08:07 +0200 (Mon, 24 Aug 2015)
New Revision: 36271
Added:
Extractor/contrib/apparmor/
Extractor/contrib/apparmor/usr.bin.extract
Log:
change extract apparmor profile directory
Added: Extractor/contrib/apparmor/usr.bin.extract
===================================================================
--- Extractor/contrib/apparmor/usr.bin.extract (rev 0)
+++ Extractor/contrib/apparmor/usr.bin.extract 2015-08-24 16:08:07 UTC (rev
36271)
@@ -0,0 +1,62 @@
+# Last Modified: Wed Jul 15 15:26:31 2015
+#include <tunables/global>
+
+/usr/bin/extract {
+ /dev/shm/LE-* rw,
+
+ /etc/ld.so.cache mr,
+
+ /usr/bin/extract mr,
+
+ /usr/lib/gconv/gconv-modules r,
+
+ /usr/lib/libFLAC.so.* mr,
+ /usr/lib/libacl.so.* mr,
+ /usr/lib/libarchive.so.* mr,
+ /usr/lib/libattr.so.* mr,
+ /usr/lib/libbz2.so.* mr,
+ /usr/lib/libc-*.so mr,
+ /usr/lib/libcrypto.so.* mr,
+ /usr/lib/libdl-*.so mr,
+ /usr/lib/libexiv2.so.* mr,
+ /usr/lib/libexpat.so.* mr,
+ /usr/lib/libextractor.so.* mr,
+
+ /usr/lib/libextractor/ r,
+ /usr/lib/libextractor/libextractor_*.so mr,
+
+ /usr/lib/libextractor_common.so.* mr,
+
+ /usr/lib/libgcc_s.so.* mr,
+ /usr/lib/libjpeg.so.* mr,
+ /usr/lib/libltdl.so.* mr,
+ /usr/lib/liblzma.so.* mr,
+ /usr/lib/liblzo2.so.* mr,
+ /usr/lib/libm-*.so mr,
+ /usr/lib/libmagic.so.* mr,
+ /usr/lib/libmpeg2.so.* mr,
+ /usr/lib/libogg.so.* mr,
+ /usr/lib/libpthread-*.so mr,
+ /usr/lib/librt-*.so mr,
+ /usr/lib/libstdc++.so.* mr,
+ /usr/lib/libtiff.so.* mr,
+ /usr/lib/libvorbis.so.* mr,
+ /usr/lib/libvorbisfile.so.* mr,
+ /usr/lib/libz.so.* mr,
+
+ /usr/lib/locale/locale-archive r,
+
+ /usr/share/file/misc/magic.mgc r,
+
+ /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
+ /usr/share/locale/fr/LC_MESSAGES/libextractor.mo r,
+ /usr/share/locale/locale.alias r,
+
+ deny @{HOME}/.* r,
+ deny @{HOME}/.*/** r,
+ #files where extract can be used
+ owner @{HOME}/** r,
+ /media/** r,
+
+ @{PROC}/@{pid}/maps r,
+}
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [GNUnet-SVN] r36271 - in Extractor/contrib: . apparmor,
gnunet <=