From 2227de709bdcb6afc2c6e797fcea28f7320ae322 Mon Sep 17 00:00:00 2001
From: Jamie Strandboge <jamie@ubuntu.com>
Date: Wed, 22 Dec 2010 16:55:18 -0600
Subject: [PATCH] abstractions/user-mail: - use character globbing - require
 owner match for files in @{HOME}

---
 profiles/apparmor.d/abstractions/user-mail | 20 +++++++++-----------
 1 file changed, 9 insertions(+), 11 deletions(-)

diff --git a/profiles/apparmor.d/abstractions/user-mail b/profiles/apparmor.d/abstractions/user-mail
index 3a8ef89b2..5fab45919 100644
--- a/profiles/apparmor.d/abstractions/user-mail
+++ b/profiles/apparmor.d/abstractions/user-mail
@@ -9,16 +9,14 @@
 # ------------------------------------------------------------------
 
   # location of user mail, spool and mboxes
-  @{HOME}/Mail/         r,
-  @{HOME}/mail/         r,
-  @{HOME}/Mail/**       rwl,
-  @{HOME}/mail/**       rwl,
-  @{HOME}/postponed*    rwl,
+  owner @{HOME}/[mM]ail/      r,
+  owner @{HOME}/[mM]ail/**    rwl,
+  owner @{HOME}/postponed*    rwl,
   /var/spool/mail/      r,
   /var/spool/mail/*     rwl,
-  @{HOME}/mbox.lock*    rwl,
-  @{HOME}/mbox          rw,
-  @{HOME}/inbox         rw,
-  @{HOME}/.forward	r,
-  @{HOME}/Maildir/      r,
-  @{HOME}/Maildir/**    rwl,
+  owner @{HOME}/mbox.lock*    rwl,
+  owner @{HOME}/mbox          rw,
+  owner @{HOME}/inbox         rw,
+  owner @{HOME}/.forward      r,
+  owner @{HOME}/Maildir/      r,
+  owner @{HOME}/Maildir/**    rwl,