Add profile for origami
Marcus Meissner
meissner at suse.de
Tue Jun 8 18:33:40 BST 2010
On Tue, Jun 08, 2010 at 11:17:53AM -0500, Jamie Strandboge wrote:
> Seth Arnold submitted[1] AppArmor profiles for origami[2][3] some time
> ago (sorry for the delay Seth). I am not an origami or Folding at Home
> user. The following is the Debian/Ubuntu description:
>
> Description: command-line management tool for Folding @ Home clients
> origami allows you to install, monitor, archive or restore Folding @
> Home data on your local machine. It also allows for central
> deployment, monitoring, archiving, restoration and updating the
> username and team data via the network to ssh-accessible machines.
> origami supports cron-based scheduling, 32bit or 64bit and network
> proxy settings.
>
> It seems very clear from the profile that origami would benefit from an
> appamor profile. Though I have several questions/comments:
>
> * this looks a bit scary:
> /tmp/finstall ix,
> ...
> /tmp/sh-thd-* rw,
> /tmp/tmp* rw,
Yes, those suck.
sh-td-* are in-place shellscripts.
Ciao, Marcus
More information about the AppArmor
mailing list