mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-08-22 01:57:43 +00:00
Code Issues Releases Wiki Activity

profiles: Allow curl to read tmp, for scripts which might use config/etags/data...

Browse Source 
Signed-off-by: Simon Poirier <simon.poirier@canonical.com>
This commit is contained in:
Simon Poirier 2025-08-13 21:36:50 -04:00
parent a8875460ed
commit 01ab33202a
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
profiles/apparmor.d/curl
View File

@ -27,6 +27,9 @@ profile curl /usr/bin/curl {
# (see --config, --cacert options) # (see --config, --cacert options)
file r @{HOME}/**, file r @{HOME}/**,
# allow reading data/config from tmp
owner file r /tmp/**,
# allow writing output to $HOME, /tmp (see -o option) # allow writing output to $HOME, /tmp (see -o option)
file w @{HOME}/**, file w @{HOME}/**,
file w /tmp/**, file w /tmp/**,