[apparmor] One-line addition to the `man` profile
Steve Beattie
steve at nxnw.org
Tue Aug 22 23:50:13 UTC 2017
On Fri, Aug 18, 2017 at 06:16:37PM -0700, Seth Arnold wrote:
> On Thu, Aug 17, 2017 at 10:47:05PM +0300, artiom wrote:
> > $ man select
> > man: can't open /usr/share/postgresql/9.6/man/man7/SELECT.7.gz:
> > Отказано в доступе
>
> I slightly modified artiom's suggestion. It might not make a difference
> with our DFA walking but it'd help regular regex engines.
>
> Signed-off-by: Seth Arnold <seth.arnold at canonical.com>
>
> === modified file 'profiles/apparmor/profiles/extras/usr.lib.man-db.man'
> --- profiles/apparmor/profiles/extras/usr.lib.man-db.man 2016-12-03 09:59:01 +0000
> +++ profiles/apparmor/profiles/extras/usr.lib.man-db.man 2017-08-19 01:14:01 +0000
> @@ -61,6 +61,7 @@
> /usr/share/man/** r,
> /usr/share/terminfo/** r,
> /usr/share/texmf/teTeX/man/** r,
> + /usr/share/postgresql/*/man/** rk,
>
> /var/cache/man/** rk,
Hrm, while I'm not opposed to the patch, I'm curious why both
postgresql and teTeX have manpages outside of /usr/share/man/ given
http://www.pathname.com/fhs/pub/fhs-2.3.html#USRSHAREMANMANUALPAGES
--
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20170822/e081009b/attachment.pgp>
More information about the AppArmor
mailing list