commit: 8ecf6273279325f455dbc70794741acff868562a
parent ca8f579e2e7a4b35e51122419d33dec6a69bf678
Author: Haelwenn (lanodan) Monnier <contact@hacktivis.me>
Date: Mon, 19 Oct 2020 10:12:10 +0200
global: Add internal signals
Diffstat:
| M | global | 25 | +++++++++++++++---------- |
1 file changed, 15 insertions(+), 10 deletions(-)
diff --git a/global b/global
@@ -1,20 +1,25 @@
+# Last Modified: Mon Oct 19 08:07:36 2020
+#include <tunables/global>
+
# Copyright 2020 Haelwenn (lanodan) Monnier <contact+apparmor.d@hacktivis.me>
# Distributed under the terms of the GNU General Public License v2
-#include <tunables/global>
-profile global /** (complain) {
- #include <abstractions/private-files-strict>
+profile global /** flags=(complain) {
+ #include <abstractions/private-files-strict>
+
+ network,
+
+ dbus,
- / rwlk,
- /** rwlkmpux,
+ mount,
- mount,
+ signal receive peer=global,
+ signal send peer=global,
- # AppArmor 3.0 TODO: Deny listen
- network,
+ ptrace,
- dbus,
+ / rwlk,
+ /** mrwlkpux,
- ptrace,
}
