mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-09-01 06:45:38 +00:00
Code Issues Releases Wiki Activity

profiles/apparmor.d/rygel: silence unneeded /{dev,sys} accesses

Browse Source 
Signed-off-by: Alex Murray <alex.murray@canonical.com>
This commit is contained in:
Alex Murray
2024-12-10 12:00:13 +10:30
parent 46d994ddcd
commit 29e00fe11f
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
profiles/apparmor.d/rygel
View File

@@ -22,8 +22,10 @@ profile rygel /usr/bin/rygel {
include <abstractions/freedesktop.org> include <abstractions/freedesktop.org>
include <abstractions/nameservice> include <abstractions/nameservice>
# gst-plugin-scanner tries to probe various things and inherit fds # gst-plugin-scanner tries to probe various things and inherit fds but
# explicitly deny others as they are not needed and are noisy
file r /dev/{,urandom,null}, file r /dev/{,urandom,null},
deny file /{dev,sys}/** r,
file r @{etc_ro}/rygel.conf, file r @{etc_ro}/rygel.conf,