[apparmor] [PATCH/apparmor-profiles] Add profile for /usr/share/update-notifier/notify-reboot-required
Steve Beattie
steve at nxnw.org
Thu Jun 30 19:00:59 UTC 2016
Signed-off-by: Steve Beattie <steve at nxnw.org>
---
.../usr.share.update-notifier.notify-reboot-required | 17 +++++++++++++++++
.../usr.share.update-notifier.notify-reboot-required | 17 +++++++++++++++++
2 files changed, 34 insertions(+)
create mode 100644 ubuntu/16.04/usr.share.update-notifier.notify-reboot-required
create mode 100644 ubuntu/16.10/usr.share.update-notifier.notify-reboot-required
diff --git a/ubuntu/16.04/usr.share.update-notifier.notify-reboot-required b/ubuntu/16.04/usr.share.update-notifier.notify-reboot-required
new file mode 100644
index 0000000..5649d0d
--- /dev/null
+++ b/ubuntu/16.04/usr.share.update-notifier.notify-reboot-required
@@ -0,0 +1,17 @@
+# vim:syntax=apparmor
+# Last Modified: Thu Jun 30 11:40:45 2016
+# Author: Steve Beattie <steve at nxnw.org>
+
+#include <tunables/global>
+
+profile notify-reboot-required /usr/share/update-notifier/notify-reboot-required {
+
+ #include <abstractions/base>
+
+ /usr/bin/gettext Pix,
+
+ /usr/share/update-notifier/notify-reboot-required r,
+
+ /{var/,}run/reboot-required rw,
+ /{var/,}run/reboot-required.pkgs rw,
+}
diff --git a/ubuntu/16.10/usr.share.update-notifier.notify-reboot-required b/ubuntu/16.10/usr.share.update-notifier.notify-reboot-required
new file mode 100644
index 0000000..5649d0d
--- /dev/null
+++ b/ubuntu/16.10/usr.share.update-notifier.notify-reboot-required
@@ -0,0 +1,17 @@
+# vim:syntax=apparmor
+# Last Modified: Thu Jun 30 11:40:45 2016
+# Author: Steve Beattie <steve at nxnw.org>
+
+#include <tunables/global>
+
+profile notify-reboot-required /usr/share/update-notifier/notify-reboot-required {
+
+ #include <abstractions/base>
+
+ /usr/bin/gettext Pix,
+
+ /usr/share/update-notifier/notify-reboot-required r,
+
+ /{var/,}run/reboot-required rw,
+ /{var/,}run/reboot-required.pkgs rw,
+}
--
2.7.4
More information about the AppArmor
mailing list