mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-08-22 01:57:43 +00:00
Code Issues Releases Wiki Activity

Merge initial john the ripper

Browse Source 
@jjohansen had mentioned to me when he suggested this profile that there was smth he noticed about john that gave him the impression it was a good candidate for confinement. I think that would be the only thing I'd want to call out - wondering whether something like this captures that spirit or if there's something else worth including.

MR: https://gitlab.com/apparmor/apparmor/-/merge_requests/1662
Approved-by: Maxime Bélair <maxime.belair@canonical.com>
Merged-by: Maxime Bélair <maxime.belair@canonical.com>
This commit is contained in:
Maxime Bélair 2025-06-12 05:56:26 +00:00
commit d068678112
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
profiles/apparmor.d/john Normal file
View File

@ -0,0 +1,19 @@
abi <abi/4.0>,
include <tunables/global>
profile john /usr/sbin/john {
include <abstractions/base>
include <abstractions/consoles>
include <abstractions/nameservice-strict>
include <abstractions/private-files-strict>
include if exists <local/john>
/usr/sbin/john mr,
/** r,
owner @{HOME}/.john/ rw,
owner @{HOME}/.john/*.log rwk,
owner @{HOME}/.john/*.pot rwk,
owner @{HOME}/.john/*.rec rwk,
}