mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-09-01 14:55:10 +00:00
Code Issues Releases Wiki Activity

update dovecot-lda profile

Browse Source 
dovecot-lda needs
- the attach_disconnected flags
- read access to /usr/share/dovecot/protocols.d/
- rw for /run/dovecot/auth-userdb

References: https://bugs.launchpad.net/bugs/1650827


Acked-by: Steve Beattie <steve@nxnw.org> for 2.9, 2.10 and trunk.
This commit is contained in:
Christian Boltz
2017-04-07 00:12:53 +02:00
parent 5452095203
commit 68cba4fe27
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
profiles/apparmor.d/usr.lib.dovecot.dovecot-lda
View File

@@ -12,7 +12,7 @@
#include <tunables/global> #include <tunables/global>
#include <tunables/dovecot> #include <tunables/dovecot>
/usr/lib/dovecot/dovecot-lda { /usr/lib/dovecot/dovecot-lda flags=(attach_disconnected) {
#include <abstractions/base> #include <abstractions/base>
#include <abstractions/nameservice> #include <abstractions/nameservice>
#include <abstractions/dovecot-common> #include <abstractions/dovecot-common>
@@ -26,9 +26,11 @@
/proc/*/mounts r, /proc/*/mounts r,
owner /tmp/dovecot.lda.* rw, owner /tmp/dovecot.lda.* rw,
/{var/,}run/dovecot/mounts r, /{var/,}run/dovecot/mounts r,
/run/dovecot/auth-userdb rw,
/usr/bin/doveconf mrix, /usr/bin/doveconf mrix,
/usr/lib/dovecot/dovecot-lda mrix, /usr/lib/dovecot/dovecot-lda mrix,
/usr/sbin/sendmail Cx, /usr/sbin/sendmail Cx,
/usr/share/dovecot/protocols.d/ r,
# Site-specific additions and overrides. See local/README for details. # Site-specific additions and overrides. See local/README for details.
#include <local/usr.lib.dovecot.dovecot-lda> #include <local/usr.lib.dovecot.dovecot-lda>