From 2829aaf87b74c165f678e4b2e93ff683901b3d6c Mon Sep 17 00:00:00 2001
From: Simon Deziel <simon.deziel@gmail.com>
Date: Thu, 14 Apr 2016 15:15:36 -0400
Subject: [PATCH] abstractions/user-mail: /var/mail/* should only be accessible
 to their owners

---
 profiles/apparmor.d/abstractions/user-mail | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/profiles/apparmor.d/abstractions/user-mail b/profiles/apparmor.d/abstractions/user-mail
index ce748d10c..b799ffcac 100644
--- a/profiles/apparmor.d/abstractions/user-mail
+++ b/profiles/apparmor.d/abstractions/user-mail
@@ -14,7 +14,7 @@
   owner @{HOME}/[mM]ail/**    rwl,
   owner @{HOME}/postponed*    rwl,
   /var/{,spool/}mail/         r,
-  /var/{,spool/}mail/*        rwl,
+  owner /var/{,spool/}mail/*  rwl,
   owner @{HOME}/mbox.lock*    rwl,
   owner @{HOME}/mbox          rw,
   owner @{HOME}/inbox         rw,