[apparmor] Ubuntu profile for postgrey
Jamie Strandboge
jamie at canonical.com
Tue May 1 19:40:58 UTC 2012
This is:
https://bugs.launchpad.net/ubuntu/+source/postgrey/+bug/395511
I have updated the submitted profile to be the attached, which has seen
production use.
--
Jamie Strandboge | http://www.canonical.com
-------------- next part --------------
# vim:syntax=apparmor
# Last Modified: Sun Aug 3 09:39:03 2008
#include <tunables/global>
/usr/sbin/postgrey {
#include <abstractions/base>
#include <abstractions/nameservice>
#include <abstractions/perl>
capability setuid,
capability setgid,
capability chown,
/usr/share/perl{,5}/**/*.pm r,
/usr/lib/perl{,5}/**/*.so mr,
/usr/sbin/postgrey r,
/etc/postgrey/ r,
/etc/postgrey/* r,
/var/lib/postgrey/ r,
/var/lib/postgrey/*db* rw,
/var/lib/postgrey/log* rw,
/var/lib/postgrey/postgrey.lock wk,
/{,var/}run/postgrey.pid rw,
}
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20120501/6d8709d1/attachment.pgp>
More information about the AppArmor
mailing list