[apparmor] owner usage for @{HOME} rules
Simon Deziel
simon.deziel at gmail.com
Tue Dec 18 22:26:49 UTC 2012
Hi all,
I am wondering why some of the profile abstractions are not using the
owner prefix with the variable @{HOME} while many others do (and some
mix both)?
Some stats from my Ubuntu 12.04 box:
$ grep -crE '^[[:space:]]*@{HOME}' /etc/apparmor.d/abstractions/ | grep
-v :0$
/etc/apparmor.d/abstractions/kde:7
/etc/apparmor.d/abstractions/X:2
/etc/apparmor.d/abstractions/audio:3
/etc/apparmor.d/abstractions/libvirt-qemu:1
/etc/apparmor.d/abstractions/gnupg:6
/etc/apparmor.d/abstractions/fonts:8
/etc/apparmor.d/abstractions/gnome:12
/etc/apparmor.d/abstractions/bash:4
/etc/apparmor.d/abstractions/ubuntu-browsers.d/user-files:2
/etc/apparmor.d/abstractions/web-data:2
$ grep -crE '^[[:space:]]*owner[[:space:]]*@{HOME}'
/etc/apparmor.d/abstractions/ | grep -v :0$
/etc/apparmor.d/abstractions/X:1
/etc/apparmor.d/abstractions/audio:4
/etc/apparmor.d/abstractions/user-tmp:2
/etc/apparmor.d/abstractions/user-write:9
/etc/apparmor.d/abstractions/user-download:6
/etc/apparmor.d/abstractions/user-mail:9
/etc/apparmor.d/abstractions/enchant:2
/etc/apparmor.d/abstractions/ibus:3
/etc/apparmor.d/abstractions/ubuntu-media-players:2
/etc/apparmor.d/abstractions/xdg-desktop:4
/etc/apparmor.d/abstractions/user-manpages:3
/etc/apparmor.d/abstractions/freedesktop.org:12
/etc/apparmor.d/abstractions/base:1
/etc/apparmor.d/abstractions/aspell:1
/etc/apparmor.d/abstractions/cups-client:2
/etc/apparmor.d/abstractions/ubuntu-browsers.d/java:6
/etc/apparmor.d/abstractions/ubuntu-browsers.d/multimedia:2
/etc/apparmor.d/abstractions/ubuntu-browsers.d/user-files:2
/etc/apparmor.d/abstractions/ubuntu-browsers.d/productivity:1
Thanks in advance,
Simon
More information about the AppArmor
mailing list