[apparmor] PulseAudio profile: sys_ptrace, ptrace, 'rwcdmr' denied masks and example rules.
daniel curtis
sidetripping at gmail.com
Wed Aug 10 20:12:21 UTC 2016
Hi Seth.
First of - thank You very much for a general advices. As always your
answers are valuable and good.
If I remember correctly, I already used the aa-genprof tool. As I mentioned
in my first message/mail there was a lot of experiments and tests etc. But
maybe it's a good idea to try once again...
You mentioned the #include <tunables/global> line, right? I just saw that
this line is at the top of profile. The same thing with #include
<abstractions/base>. Here is a part of PulseAudio profile:
# Last Modified: Mon Aug 08 17:52, 2016
#include <tunables/global>
/usr/bin/pulseaudio {
#include <abstractions/base>
(...)
I hope that's what you have had in mind :- ) Anyway, I will do more tests,
read even more articles about AppArmor, profiling etc. And if I will have
some questions, doubts etc., I will simply write here, okay?
By the way: thank you very much for help. Not just here but also, for
example, on ubuntu-hardened mailing list. I really appreciate it and thank
you once again :- )
Best regards.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20160810/960df76d/attachment-0001.html>
More information about the AppArmor
mailing list