[apparmor] [Merge] lp:~talkless/apparmor/fix_user_download_nonlatin into lp:apparmor
Vincas Dargis
vindrg at gmail.com
Sun Jul 2 09:24:47 UTC 2017
The proposal to merge lp:~talkless/apparmor/fix_user_download_nonlatin into lp:apparmor has been updated.
Description changed to:
abstractions/user-download and abstractions/user-write profiles allows to download into home directory, while protecting dot files:
owner @{HOME}/[a-zA-Z0-9]* rwl,
Though it fails for files with non-latin symbols, tested with /usr/bin/tee copied to /usr/local/bin/testtee with minimal profile using user-download abstraction:
echo "foo" | testtee ~/ąčęėįšųūž
testtee: /home/vincas/ąčęėįšųūž: Permission denied
When file rule is changed into:
owner @{HOME}/[^.]* rwl,
It works as expected:
$ echo "foo" | testtee ~/ąčęėįšųūž
foo
$ echo "foo" | testtee ~/.bashrc
testtee: /home/vincas/.bashrc: Permission denied
For more details, see:
https://code.launchpad.net/~talkless/apparmor/fix_user_download_nonlatin/+merge/326259
--
Your team AppArmor Developers is requested to review the proposed merge of lp:~talkless/apparmor/fix_user_download_nonlatin into lp:apparmor.
More information about the AppArmor
mailing list