AppArmor profile exchange

Listing profiles

Distribution	Name	Profile	Created At	Changelog	View Count	Username
opensuse11.0	/root/star.sh	#include <tunables/global> /root/star.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago	/var/log/imd.log	64	imdsevilla	Edit	History
ubuntu-gutsy	/usr/bin/groups	#include <tunables/global> /usr/bin/groups flags=(complain) { #include <abstractions/base> capability dac_override, /bin/dash ixr, /usr/bin/groups mr, /usr/bin/id Px, }	over 4 years ago	gnome	248	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/xine	#include <tunables/global> /usr/bin/xine { #include <abstractions/base> /usr/bin/xine mr, }	over 4 years ago	gnome	243	hbpteam	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> deny /home/ r, deny /home/linux/ r, /bin/bash ix, /dev/shm/ r, owner /dev/shm/* rw, /etc/alsa-pulse.conf r, /etc/asound-pulse.conf r, /etc/mailcap r, /etc/mime.types r, /etc/pulse/client.conf r, owner /home//.adobe// r, owner /home//.fontconfig/* r, owner /home//.icons/ r, owner /home//.macromedia/** r, owner /home//.mozilla/* rwk, owner /home//.mozilla/firefox/* rwk, owner /home//.pulse-cookie rwk, /proc/cpuinfo r, /proc/meminfo r, /usr/share/applications/ r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/* r, /usr/share/locale-bundle/** r, /usr/share/mime/application/* r, /usr/share/mozilla/** r, /var/lib/dbus/machine-id r, owner /var/run/gdm/auth-for-walik-YlyTxG/database r, ^null-56 { /etc/ld.so.cache r, /etc/mailcap r, /etc/mime.types r, /etc/resolv.conf r, /home/ r, /home// r, owner /home//.icons/ r, owner /home//.mozilla/.png r, owner /home//.mozilla/firefox/** r, owner /home//.mozilla/firefox/jivstdch.default/Cache/22175A68d01 w, owner /home//.mozilla/firefox/jivstdch.default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/jivstdch.default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/jivstdch.default/Cache/_CACHE_003_ w, owner /home//.mozilla/firefox/jivstdch.default/XUL.mfasl rw, owner /home//.mozilla/firefox/jivstdch.default/content-prefs.sqlite rk, owner /home//.mozilla/firefox/jivstdch.default/cookies.sqlite rwk, owner /home//.mozilla/firefox/jivstdch.default/cookies.sqlite-journal rw, owner /home//.mozilla/firefox/jivstdch.default/downloads.sqlite rk, owner /home//.mozilla/firefox/jivstdch.default/extensions/\{1280606b-2510-4fe0-97ef-9b5a22eafe41\}/chrome/fission.jar r, owner /home//.mozilla/firefox/jivstdch.default/extensions/\{3d7eb24f-2740-49df-8937-200b1cc08f8a\}/chrome/flashblock.jar r, owner /home//.mozilla/firefox/jivstdch.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/chrome/noscript.jar r, owner /home//.mozilla/firefox/jivstdch.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/components/ r, owner /home//.mozilla/firefox/jivstdch.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/chrome/allinonegest.jar r, owner /home//.mozilla/firefox/jivstdch.default/extensions/\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a\}/chrome/livehttpheaders.jar r, owner /home//.mozilla/firefox/jivstdch.default/extensions/\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a\}/components/ r, owner /home/*/.mozilla/firefox/jivstdch.default/extensions/\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389\}/components/ r, } }	over 2 years ago		139	walik	Edit	History
opensuse10.3	/usr/lib/GConf/2/gconfd-2	# $Id: usr.lib.GConf.2.gconfd-2 735 2007-06-11 05:17:30Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/GConf/2/gconfd-2 flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /cur/tmp/ r, /cur/tmp/ klrw, /etc/gconf/ r, /home// r, /usr/lib/GConf/2/gconfd-2 rmix, /usr/lib/GConf/2/libgconfbackend-xml.so mr, /usr/lib64/GConf/2/libgconfbackend-xml.so mr, /usr/share/locale/ r, @{HOME}/.gconf r, @{HOME}/.gconf/ lrw, @{HOME}/.gconfd/ lrw, }	over 3 years ago	internet radio u.a.	319	shivver-fox	Edit	History
opensuse10.3	/usr/bin/acroread	#include <tunables/global> /usr/bin/acroread { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/basename Px, /bin/bash ixr, /bin/cat ixr, /bin/grep ixr, /bin/ls ixmr, /bin/pwd ixr, /bin/sed ixr, /bin/uname Px, /home//.adobe/* w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/ldconfig Px, /usr/bin/acroread mr, /usr/bin/dirname ixr, /usr/bin/expr ixr, /usr/bin/gconftool-2 Px, /usr/lib/Acrobat7/Reader/intellinux/bin/acroread Px, }	over 4 years ago	none	189	cinimod	Edit	History
opensuse10.3	/usr/bin/esd	#include <tunables/global> /usr/bin/esd { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /proc/cpuinfo r, /usr/bin/esd mr, }	over 4 years ago	Import of jmichaels profiles	196	dominic	Edit	History
opensuse10.3	/usr/bin/ekiga	#include <tunables/global> /usr/bin/ekiga { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /dev/ r, /dev/** r, /dev/video0 rw, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.beagle/socket w, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2/gnomemeeting rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/mime.cache r, /home//.local/share/mime/subclasses r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /proc/meminfo r, /proc/net/if_inet6 r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/ekiga mr, /usr/lib/pwlib/devices/sound/.so mr, /usr/lib/pwlib/devices/videoinput/.so mr, /usr/share/locale-bundle/de/LC_MESSAGES/.mo r, /usr/share/mime/*.xml r, /var/cache/libx11/compose/ r, }	over 4 years ago		183	overwrite	Edit	History
opensuse10.3	/sbin/runlevel	#include <tunables/global> /sbin/runlevel { #include <abstractions/base> /sbin/runlevel mr, /var/run/utmp krw, }	over 4 years ago	Import of jmichaels profiles	272	dominic	Edit	History
opensuse11.0	/usr/lib64/amanda/amandad	#include <tunables/global> /usr/lib64/amanda/amandad { #include <abstractions/base> }	over 2 years ago		206	shimingzhou	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> /usr/bin/skype mr, }	over 4 years ago		555	draglor	Edit	History
opensuse10.3	/etc/gdm/PostLogin/Default	#include <tunables/global> /etc/gdm/PostLogin/Default flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/gdm/PostLogin/Default mr, /proc/meminfo r, }	over 4 years ago	argh, switch things back to complain for a while	279	jmichael	Edit	History
opensuse11.0	/usr/bin/postgres	#include <tunables/global> /usr/bin/postgres flags=(complain) { #include <abstractions/base> #include <abstractions/user-tmp> /etc/gai.conf r, /etc/group r, /etc/host.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/passwd r, /etc/resolv.conf r, /usr/share/postgresql/timezonesets/Default r, /usr/share/zoneinfo/ r, owner /var/lib/pgsql/data/** rw, }	about 1 year ago	Created initial PostgreSQL profile.	43	hach-que	Edit	History
opensuse10.3	/usr/sbin/squid	# $Id: usr.sbin.squid 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/squid flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> capability setgid, capability setuid, /dev/tty rw, /etc/mtab r, /etc/squid/* r, /usr/lib/squid/* rmix, /usr/sbin/digest_pw_auth rmix, /usr/sbin/diskd rmix, /usr/sbin/getpwname_auth rmix, /usr/sbin/ip_user_check rmix, /usr/sbin/msnt_auth rmix, /usr/sbin/ncsa_auth rmix, /usr/sbin/no_check.pl rmix, /usr/sbin/ntlm_auth rmix, /usr/sbin/pam_auth rmix, /usr/sbin/rcsquid rmix, /usr/sbin/smb_auth rmix, /usr/sbin/smb_auth.pl rmix, /usr/sbin/smb_auth.sh rmix, /usr/sbin/squid rmix, /usr/sbin/squid_ldap_auth rmix, /usr/sbin/squid_ldap_group rmix, /usr/sbin/squid_ldapauth rmix, /usr/sbin/squid_unix_group rmix, /usr/sbin/squidclient rmix, /usr/sbin/unlinkd rmix, /usr/sbin/wbinfo_group.pl rmix, /usr/sbin/yp_auth rmix, /usr/share/squid/ r, /var/cache/squid/ lrw, /var/log/squid/access.log w, /var/log/squid/cache.log rw, /var/log/squid/store.log w, /var/run/squid.pid lrw, @{PROC}/[0-9]*/mounts r, @{PROC}/mounts r, }	over 4 years ago	squidupdate	157	wrightmj	Edit	History
opensuse10.3	/etc/X11/xdm/sys.xsession	#include <tunables/global> /etc/X11/xdm/sys.xsession flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/user-tmp> capability sys_ptrace, /bin/bash ixr, /etc/X11/xdm/sys.xsession mr, /etc/X11/xinit/xinitrc r, /etc/X11/xinit/xinitrc.common r, /etc/X11/xinit/xinitrc.d/ r, /etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh Px, /home//.gnupg/agent.info rw, /home//.gnupg/agent.pid rw, /proc/ r, /proc//stat r, /proc//statm r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/checkproc ixr, /usr/bin/dbus-launch Px, /usr/bin/gpg-agent Pxr, /usr/bin/ssh-agent ixr, /usr/lib/ssh/x11-ssh-askpass Px, }	over 4 years ago	let xsession run sabayon-xinitrc	227	jmichael	Edit	History
opensuse10.3	/usr/bin/acroread	#include <tunables/global> /usr/bin/acroread { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/basename Px, /bin/bash ixr, /bin/cat ixr, /bin/grep ixr, /bin/ls ixmr, /bin/pwd ixr, /bin/sed ixr, /bin/uname Px, /home//.adobe/* w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/ldconfig Px, /usr/bin/acroread mr, /usr/bin/dirname ixr, /usr/bin/expr ixr, /usr/bin/gconftool-2 Px, /usr/lib/Acrobat7/Reader/intellinux/bin/acroread Px, }	over 4 years ago	Import of jmichaels profiles	226	dominic	Edit	History
opensuse10.3	/usr/bin/esd	#include <tunables/global> /usr/bin/esd { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /proc/cpuinfo r, /usr/bin/esd mr, }	over 4 years ago	none	203	cinimod	Edit	History
opensuse10.3	/usr/lib/cups/filter/pstops	#include <tunables/global> /usr/lib/cups/filter/pstops { #include <abstractions/base> /etc/cups/ppd/* r, /usr/lib/cups/filter/pstops mr, /usr/share/cups/** r, /var/spool/cups/* r, }	over 4 years ago	ssh needed the ability to create /root/.ssh, and assorted CUPS fixes	215	crispin	Edit	History
opensuse11.0	/usr/lib/postfix/master	# $Id: usr.lib.postfix.master 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/master { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability kill, capability net_bind_service, capability sys_ptrace, /etc/postfix/master.cf r, owner /proc/sys/kernel/ngroups_max r, owner /usr/lib/ m, /usr/lib/ rPx, /usr/lib/postfix/master mrix, owner /var/lib/postfix/master.lock rwk, owner /var/run/nscd/services r, owner /var/spool/postfix/active/ r, owner /var/spool/postfix/deferred/ r, owner /var/spool/postfix/incoming/ r, owner /var/spool/postfix/maildrop/ r, owner /{var/spool/postfix/,}pid/master.pid k, /{var/spool/postfix/,}pid/master.pid rw, /{var/spool/postfix/,}private/* wl, /{var/spool/postfix/,}private/tlsmgr rwl, /{var/spool/postfix/,}public/{cleanup,flush,pickup,qmgr,showq,tlsmgr} rwl, }	over 2 years ago		153	Aleksandr	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename { #include <abstractions/base> /bin/basename mr, }	over 4 years ago	firefox2	304	vojta	Edit	History
opensuse10.3	/usr/lib/gnome-screensaver/gnome-screensaver-gl-helper	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /home/*/.Xauthority r, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper mr, }	over 4 years ago	none	191	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/fwbuilder	#include <tunables/global> /usr/bin/fwbuilder { #include <abstractions/base> /usr/bin/fwbuilder mr, }	over 4 years ago	gnome	256	hbpteam	Edit	History
opensuse10.3	/usr/sbin/identd	# $Id: usr.sbin.identd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/identd { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, /etc/identd.conf r, /etc/identd.key r, /etc/identd.pid w, /usr/sbin/identd rmix, /var/run/identd.pid w, @{PROC}/net/tcp r, @{PROC}/net/tcp6 r, }	over 4 years ago	none	198	cinimod	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^null-41 { } ^null-43 { } ^null-45 { } ^null-47 { } }	about 1 year ago		64	stilesalaska	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago	apache2	140	andreyle	Edit	History
opensuse10.3	/usr/bin/esd	#include <tunables/global> /usr/bin/esd { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability dac_override, capability kill, /dev/shm/ r, /dev/shm/pulse-shm-* rw, /etc/pulse/client.conf r, /home/*/.Xauthority r, /proc/cpuinfo r, /root/.pulse-cookie krw, /usr/bin/esd mr, /var/lib/run/pulse/native w, }	over 3 years ago		201	shimingzhou	Edit	History
opensuse10.3	/opt/amsn/amsn	#include <tunables/global> /opt/amsn/amsn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /opt/amsn/amsn mr, }	over 4 years ago	amsn0	188	davepl	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /bin/dash ixr, /bin/ls ixr, /bin/pwd Px, /bin/sed ixr, /home/fqf/123 r, /proc/11997/mounts r, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/lib/firefox/firefox mr, /usr/lib/firefox/run-mozilla.sh Px, }	over 4 years ago	usr.lib.firefox.firefox	144	fqf	Edit	History
opensuse10.3	/usr/bin/gtkpod	#include <tunables/global> /usr/bin/gtkpod { #include <abstractions/base> / r, /dev/ r, /dev/pts/ r, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/* r, /etc/gtk-2.0/* r, /etc/opt/kde3/share/icons/ r, /etc/pango/pango64.modules r, /home// r, /home//** r, /home//.beagle/ rw, /home//.config/gtk-2.0/ rw, /home//.gtkpod/ rw, /home//.recently-used.xbel rw, /home//.recently-used.xbel.0DKOZT rw, /media/ rw, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/ r, /proc/ r, /proc//cmdline r, /proc//mounts r, /sys/ r, /sys/kernel/debug/ r, /sys/kernel/security/ r, /tmp/.X11-unix/* w, /tmp/gtkpod-n5 w, /usr/bin/gtkpod ixr, /usr/lib64/ mr, /usr/share/X11/locale/ r, /usr/share/fonts/ r, /usr/share/gtkpod/ r, /usr/share/icons/ r, /usr/share/icons/** r, /usr/share/locale-bundle/nb/LC_MESSAGES/* r, /usr/share/mime/mime.cache r, /usr/share/pixmaps/ r, /usr/share/themes/** r, /var/cache/fontconfig/* r, /var/cache/libx11/compose/l4_030_313cb605_00280cc0 r, /var/run/dbus/system_bus_socket w, /var/run/nscd/passwd r, /var/run/nscd/socket w, }	over 4 years ago		277	kijo387	Edit	History
opensuse11.0	/etc/init.d/teaming	#include <tunables/global> /etc/init.d/teaming flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> capability setgid, capability setuid, owner /bin/bash r, /bin/bash ix, /bin/su rix, /bin/touch rix, /bin/uname rix, owner /dev/tty rw, owner /etc/default/su r, owner /etc/init.d/teaming r, owner /etc/login.defs r, owner /etc/pam.d/* r, owner /etc/security/limits.conf r, owner /etc/shadow r, owner /lib/security/pam_.so mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/bin/bootstrap.jar mr, /opt/novell/teaming/apache-tomcat-6.0.18/bin/catalina.sh rix, owner /opt/novell/teaming/apache-tomcat-6.0.18/bin/commons-daemon.jar mr, /opt/novell/teaming/apache-tomcat-6.0.18/bin/setclasspath.sh rix, owner /opt/novell/teaming/apache-tomcat-6.0.18/bin/tomcat-juli.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/ w, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/.keystore r, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/catalina.properties r, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/context.xml r, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/logging.properties r, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/server.xml r, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/tomcat-users.xml rw, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/tomcat-users.xml.new rw, owner /opt/novell/teaming/apache-tomcat-6.0.18/conf/tomcat-users.xml.old w, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ r, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/annotations-api.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/catalina-ant.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/catalina-ha.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/catalina-tribes.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/catalina.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/el-api.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/ r, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/activation.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/jtds.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/kablink-teaming-ascommon.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/kablink-teaming-tomcat.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/mail.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/mysql-connector.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/ext/ojdbc14.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/jasper-el.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/jasper-jdt.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/jasper.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/jsp-api.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/servlet-api.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/tomcat-coyote.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/tomcat-dbcp.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/tomcat-i18n-es.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/tomcat-i18n-fr.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/lib/tomcat-i18n-ja.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/logs/admin.2010-04-14.log a, owner /opt/novell/teaming/apache-tomcat-6.0.18/logs/catalina.2010-04-14.log a, owner /opt/novell/teaming/apache-tomcat-6.0.18/logs/catalina.out w, owner /opt/novell/teaming/apache-tomcat-6.0.18/logs/host-manager.2010-04-14.log a, owner /opt/novell/teaming/apache-tomcat-6.0.18/logs/localhost.2010-04-14.log a, owner /opt/novell/teaming/apache-tomcat-6.0.18/logs/manager.2010-04-14.log a, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/ r, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/addressing.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/ant.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/antlr.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/aopalliance.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/asm-attrs.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/asm.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/axis-ant.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/axis.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/backport-concurrent.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/bcprov-jdk15.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/bsh.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/cglib.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-beanutils.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-codec.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-collections.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-dbcp.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-digester.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-discovery.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-fileupload.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-httpclient.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-io.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-lang.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/commons-logging.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/concurrent.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/dom4j.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/ehcache.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/ezmorph.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/gwt-servlet.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/hibernate3.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/ical4j.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/icu4j.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jackrabbit-api.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jackrabbit-core.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jackrabbit-jcr-commons.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jackrabbit-spi-commons.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jackrabbit-spi.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jakarta-slide-webdavlib.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jakarta-taglibs-standard.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jasypt.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/java_uno.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/java_uno_accessbridge.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jaxen.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jaxrpc.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jbpm.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jcr.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jdom.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/joda-time.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/json-lib.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jstl-impl.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jstl.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jta.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/juh.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/juniversalchardet.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jurt.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/jut.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-asshare.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-commons-httpclient-contrib.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-gwt.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-liferay-hooks.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-lucene-contrib.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-lucenecommon.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-main-minimum.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-main.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-slide-webdavclient.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-taglib.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-util-search.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kablink-teaming-util.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/kaptcha.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/log4j.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/lucene.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/md5crypt.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/mina-core.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/mina-filter-ssl.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/mina-integration-jmx.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/opensaml.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/oro.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/portal-client.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/portlet.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/quartz.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/ridl.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/saaj.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/slf4j-api.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/slf4j-log4j12.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/spring-ldap.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/spring-security-core.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/spring-webmvc-portlet.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/spring-webmvc.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/spring.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/subethasmtp.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/trove.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/unoil.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/util-bridges.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/util-taglib.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/velocity-tools-view.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/velocity.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/wsdl4j.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/wss4j.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/xercesImpl.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/xmlrpc.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/shared/lib/ext/xmlsec.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/webapps/teaming/ r, owner /opt/novell/teaming/apache-tomcat-6.0.18/webapps/teaming/META-INF/ r, owner /opt/novell/teaming/apache-tomcat-6.0.18/webapps/teaming/META-INF/MANIFEST.MF r, owner /opt/novell/teaming/apache-tomcat-6.0.18/webapps/teaming/WEB-INF/ r, owner /opt/novell/teaming/apache-tomcat-6.0.18/webapps/teaming/WEB-INF/lib/ r, owner /opt/novell/teaming/apache-tomcat-6.0.18/webapps/teaming/WEB-INF/lib/kablink-teaming-simpleurl.jar mr, owner /opt/novell/teaming/apache-tomcat-6.0.18/webapps/teaming/WEB-INF/web.xml r, owner /proc//maps r, owner /proc//mounts r, owner /proc//net/if_inet6 r, owner /proc/*/net/ipv6_route r, owner /proc/filesystems r, owner /proc/meminfo r, owner /proc/sys/kernel/ngroups_max r, owner /sys/devices/system/cpu/ r, owner /tmp/hsperfdata_root/ r, owner /tmp/hsperfdata_root/5287 mrw, /usr/bin/dirname rix, /usr/bin/tty rix, /usr/bin/xauth px, /usr/java/jdk1.5.0_18/jre/bin/java rix, owner /usr/java/jdk1.5.0_18/jre/lib/charsets.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/ext/ r, owner /usr/java/jdk1.5.0_18/jre/lib/ext/dnsns.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/ext/localedata.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/ext/sunjce_provider.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/ext/sunpkcs11.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/i386/client/classes.jsa r, owner /usr/java/jdk1.5.0_18/jre/lib/i386/client/libjvm.so mr, owner /usr/java/jdk1.5.0_18/jre/lib/i386/jvm.cfg r, owner /usr/java/jdk1.5.0_18/jre/lib/i386/libjava.so mr, owner /usr/java/jdk1.5.0_18/jre/lib/i386/libmanagement.so mr, owner /usr/java/jdk1.5.0_18/jre/lib/i386/libnet.so mr, owner /usr/java/jdk1.5.0_18/jre/lib/i386/libverify.so mr, owner /usr/java/jdk1.5.0_18/jre/lib/i386/libzip.so mr, owner /usr/java/jdk1.5.0_18/jre/lib/i386/native_threads/libhpi.so mr, owner /usr/java/jdk1.5.0_18/jre/lib/jce.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/jsse.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/management/management.properties r, owner /usr/java/jdk1.5.0_18/jre/lib/rt.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/security/US_export_policy.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/security/cacerts r, owner /usr/java/jdk1.5.0_18/jre/lib/security/java.security r, owner /usr/java/jdk1.5.0_18/jre/lib/security/local_policy.jar mr, owner /usr/java/jdk1.5.0_18/jre/lib/zi/GMT r, owner /var/run/utmp rwk, }	over 2 years ago	teamin	164	robertsonreis	Edit	History
opensuse10.3	/usr/lib/cyrus/bin/imapd	#include <tunables/global> /usr/lib/cyrus/bin/imapd flags=(complain) { #include <abstractions/base> /usr/lib/cyrus/bin/imapd mr, }	over 3 years ago	imap	134	hartmut	Edit	History
opensuse10.3	/usr/bin/Azureus.sh	#include <tunables/global> /usr/bin/Azureus.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/Azureus.sh mr, }	over 4 years ago	installer	245	Lanecamper	Edit	History
opensuse10.3	/usr/lib/gnome-screensaver/gnome-screensaver-gl-helper	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /home/*/.Xauthority r, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper mr, }	over 4 years ago	Import of jmichaels profiles	227	dominic	Edit	History
opensuse11.0	/sbin/mount.cifs	#include <tunables/global> /sbin/mount.cifs { #include <abstractions/base> }	4 months ago		22	givanchev	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago		95	shaado	Edit	History
opensuse11.0	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, audit capability setgid, capability setuid, capability sys_chroot, deny owner /var/run/sshd.init.pid w, owner /dev/tty rw, owner /etc/hosts.allow r, owner /etc/hosts.deny r, owner /etc/pam.d/* r, owner /etc/ssh/moduli r, owner /etc/ssh/ssh_host_dsa_key r, owner /etc/ssh/ssh_host_rsa_key r, owner /etc/ssh/sshd_config r, owner /lib/security/pam_.so mr, owner /proc//fd/ r, owner /proc/*/mounts r, /usr/sbin/sshd rix, owner /var/run/sshd.init.pid a, }	over 2 years ago		136	systems	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		169	olaf	Edit	History
ubuntu-gutsy	/usr/lib/postfix/proxymap	# $Id: usr.lib.postfix.proxymap 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/proxymap { #include <abstractions/base> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /etc/mailname r, /etc/postfix/main.cf r, /usr/lib/postfix/proxymap rmix, @{PROC}/net/if_inet6 r, }	over 3 years ago		185	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/master	# $Id: usr.lib.postfix.master 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/master { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability kill, capability net_bind_service, /etc/mailname r, /etc/postfix/master.cf r, /usr/lib/postfix/anvil Px, /usr/lib/postfix/bounce Px, /usr/lib/postfix/cleanup Px, /usr/lib/postfix/error ixr, /usr/lib/postfix/flush Px, /usr/lib/postfix/local Px, /usr/lib/postfix/master rmix, /usr/lib/postfix/nqmgr Px, /usr/lib/postfix/pickup Px, /usr/lib/postfix/pipe Px, /usr/lib/postfix/proxymap Px, /usr/lib/postfix/qmgr Px, /usr/lib/postfix/scache Px, /usr/lib/postfix/showq Px, /usr/lib/postfix/smtp Px, /usr/lib/postfix/smtpd Px, /usr/lib/postfix/tlsmgr Px, /usr/lib/postfix/trivial-rewrite Px, /var/spool/postfix/active/* krw, /var/spool/postfix/etc/* r, /var/spool/postfix/pid/unix.retry krw, /{var/spool/postfix/,}pid/master.pid krw, /{var/spool/postfix/,}private/* wl, /{var/spool/postfix/,}private/tlsmgr rwl, /{var/spool/postfix/,}public/{cleanup,flush,pickup,qmgr,showq,tlsmgr} rwl, }	over 3 years ago		241	stive	Edit	History
opensuse11.0	/home/borsh/develop/workspace/socket/build/client	#include <tunables/global> /home/borsh/develop/workspace/socket/build/client { #include <abstractions/base> network inet stream, network stream, /etc/nsswitch.conf r, /etc/services r, owner /home/*/develop/workspace/socket/build/client r, /var/run/nscd/socket w, }	over 3 years ago	AS	139	kazboris021	Edit	History
opensuse10.3	/usr/sbin/gdm	#include <tunables/global> /usr/sbin/gdm { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> capability audit_control, capability chown, capability dac_override, capability fsetid, capability kill, capability setgid, capability setuid, capability sys_tty_config, /bin/bash ixr, /dev/tty* rw, /etc/environment r, /etc/gdm/Init/Default Pxr, /etc/gdm/PostLogin/Default Pxr, /etc/gdm/PostSession/Default Pxr, /etc/gdm/PreSession/Default Pxr, /etc/gdm/Xsession Px, /etc/gdm/custom.conf r, /home//.Xauthority w, /home//.Xauthority-c w, /home//.Xauthority-l lw, /home//.dmrc rw, /home//.dmrc. rw, /home//.xsession-errors w, /proc//fd/ r, /proc//loginuid w, /proc/meminfo r, /sbin/runlevel Px, /usr/bin/Xgl Px, /usr/lib/gdm/gdmgreeter Px, /usr/sbin/gdm mr, /usr/share/gdm/defaults.conf r, /usr/share/xsessions/.desktop r, /var/lib/gdm/ w, /var/lib/gdm/* w, /var/lib/gdm/.gdmfifo rw, /var/log/gdm/* lw, /var/log/wtmp kw, /var/run/.resmgr_socket w, /var/run/gdm.pid w, /var/run/gdm_socket w, /var/run/utmp krw, }	over 4 years ago	none	152	cinimod	Edit	History
opensuse11.0	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld { #include <abstractions/base> }	over 2 years ago	mysql	110	telix	Edit	History
opensuse11.0	/usr/sbin/traceroute	#include <tunables/global> /usr/sbin/traceroute { #include <abstractions/base> #include <abstractions/nameservice> /usr/sbin/traceroute r, }	over 2 years ago		152	student	Edit	History
opensuse11.0	/srv/www/htdocs/placid/placid.py	#include <tunables/global> /srv/www/htdocs/placid/placid.py flags=(complain) { #include <abstractions/base> /usr/bin/python2.6 ix, }	over 3 years ago	placid	187	Snort1	Edit	History
ubuntu-gutsy	/etc/cron.daily/dspam	#include <tunables/global> /etc/cron.daily/dspam { #include <abstractions/base> capability dac_override, capability dac_read_search, /bin/dash ixr, /bin/egrep ixr, /etc/cron.daily/dspam mr, /etc/dspam/* r, /etc/dspam/dspam.d/ r, /etc/nsswitch.conf r, /etc/passwd r, /usr/bin/dspam_clean ixr, /var/spool/dspam/data/ r, }	over 3 years ago		141	stive	Edit	History
opensuse11.0	/usr/bin/kde4	#include <tunables/global> /usr/bin/kde4 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		133	gallochri	Edit	History
opensuse10.3	/sbin/chkconfig	#include <tunables/global> /sbin/chkconfig { #include <abstractions/base> #include <abstractions/perl> /etc/init.d/ r, /etc/init.d/* r, /etc/init.d/boot.d/ r, /etc/init.d/rc*.d/ r, /etc/xinetd.d/ r, /sbin/chkconfig mr, /sbin/runlevel Px, /usr/bin/perl ix, }	over 4 years ago	Import of jmichaels profiles	187	dominic	Edit	History
opensuse10.3	/usr/sbin/identd	# $Id: usr.sbin.identd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/identd { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, /etc/identd.conf r, /etc/identd.key r, /etc/identd.pid w, /usr/sbin/identd rmix, /var/run/identd.pid w, @{PROC}/net/tcp r, @{PROC}/net/tcp6 r, }	over 4 years ago	Initial Revision	355	novell	Edit	History
opensuse10.3	/bin/dbus-send	#include <tunables/global> /bin/dbus-send { #include <abstractions/base> /bin/dbus-send mr, /var/run/dbus/system_bus_socket w, }	over 4 years ago	none	159	cinimod	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> capability sys_nice, deny owner /root/.ICEauthority r, /bin/basename rix, owner /bin/bash r, /bin/bash ix, /bin/grep rix, owner /etc/gnome-vfs-2.0/** r, owner /etc/gre.d/ r, owner /etc/gre.d/1.9.0.6.system.conf r, owner /etc/gtk-2.0/gtkrc r, owner /etc/magic r, owner /proc/*/mounts r, /usr/bin/file rix, /usr/lib/firefox/firefox rix, }	about 1 year ago		47	ninohead	Edit	History
opensuse10.3	/sbin/portmap	#include <tunables/global> /sbin/portmap flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, /sbin/portmap mr, /var/run/portmap_mapping rw, }	over 3 years ago		164	arturk	Edit	History
ubuntu-gutsy	/usr/bin/streamripper	#include <tunables/global> /usr/bin/streamripper { #include <abstractions/base> #include <abstractions/nameservice> /home//Music/www-kinkfm-com/ rw, /home//Music/www-kinkfm-com/* w, /home//Music/www-kinkfm-com/incomplete/ w, /home//Music/www-kinkfm-com/incomplete/*.mp3 rw, /usr/bin/streamripper mr, }	over 4 years ago		162	bdeckers	Edit	History
opensuse10.3	/usr/sbin/snmpd	#include <tunables/global> /usr/sbin/snmpd { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, /dev/md* r, /dev/sd* r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/mtab r, /etc/rpm/ r, /etc/rpm/macros.gconf2 r, /etc/rpm/macros.mkinitrd r, /etc/sensors.conf r, /etc/snmp/snmpd.conf r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc//status r, /proc/cmdline r, /proc/loadavg r, /proc/net/arp r, /proc/net/dev r, /proc/net/if_inet6 r, /proc/net/ipv6_route r, /proc/net/route r, /proc/net/snmp r, /proc/net/snmp6 r, /proc/net/tcp r, /proc/net/tcp6 r, /proc/net/udp r, /proc/net/udp6 r, /proc/sys/net/ipv4/ipfrag_time r, /proc/sys/net/ipv4/neigh/eth0/retrans_time_ms r, /proc/sys/net/ipv4/neigh/eth1/retrans_time_ms r, /proc/sys/net/ipv4/neigh/lo/retrans_time_ms r, /proc/sys/net/ipv6/conf/all/forwarding r, /proc/sys/net/ipv6/conf/default/hop_limit r, /proc/sys/net/ipv6/conf/eth0/forwarding r, /proc/sys/net/ipv6/conf/eth1/forwarding r, /proc/sys/net/ipv6/conf/lo/forwarding r, /proc/sys/net/ipv6/neigh/eth0/base_reachable_time_ms r, /proc/sys/net/ipv6/neigh/eth0/retrans_time_ms r, /proc/sys/net/ipv6/neigh/eth1/base_reachable_time_ms r, /proc/sys/net/ipv6/neigh/eth1/retrans_time_ms r, /proc/sys/net/ipv6/neigh/lo/base_reachable_time_ms r, /proc/sys/net/ipv6/neigh/lo/retrans_time_ms r, /proc/uptime r, /proc/vmstat r, /sys/class/hwmon/ r, /sys/class/i2c-adapter/ r, /sys/devices/pci0000:00/0000:00:1f.3/i2c-adapter/i2c-0/name r, /sys/devices/platform/coretemp.[0-9]/name r, /sys/devices/platform/coretemp.[0-9]/temp1_input r, /sys/devices/platform/coretemp.[0-9]/temp1_label r, /usr/sbin/snmpd mr, /usr/share/snmp/mibs/ r, /usr/share/snmp/mibs/* r, /var/lib/net-snmp/snmpd.0.conf w, /var/lib/net-snmp/snmpd.conf rw, /var/lib/rpm/ w, /var/lib/rpm/Packages kr, /var/log/net-snmpd.log rw, /var/run/snmpd.pid w, /var/run/utmp krw, }	over 4 years ago		633	arclyde	Edit	History
opensuse10.3	/usr/sbin/gdm	#include <tunables/global> /usr/sbin/gdm { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> capability audit_control, capability chown, capability dac_override, capability fsetid, capability kill, capability setgid, capability setuid, capability sys_tty_config, /bin/bash ixr, /dev/tty* rw, /etc/environment r, /etc/gdm/Init/Default Pxr, /etc/gdm/PostLogin/Default Pxr, /etc/gdm/PostSession/Default Pxr, /etc/gdm/PreSession/Default Pxr, /etc/gdm/Xsession Px, /etc/gdm/custom.conf r, /home//.Xauthority w, /home//.Xauthority-c w, /home//.Xauthority-l lw, /home//.dmrc rw, /home//.dmrc. rw, /home//.xsession-errors w, /proc//fd/ r, /proc//loginuid w, /proc/meminfo r, /sbin/runlevel Px, /usr/bin/Xgl Px, /usr/lib/gdm/gdmgreeter Px, /usr/sbin/gdm mr, /usr/share/gdm/defaults.conf r, /usr/share/xsessions/.desktop r, /var/lib/gdm/ w, /var/lib/gdm/* w, /var/lib/gdm/.gdmfifo rw, /var/log/gdm/* lw, /var/log/wtmp kw, /var/run/.resmgr_socket w, /var/run/gdm.pid w, /var/run/gdm_socket w, /var/run/utmp krw, }	over 4 years ago	Import of jmichaels profiles	162	dominic	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/kde> #include <abstractions/nameservice> deny owner /home//.mozilla/ r, /dev/snd/ mrw, /dev/video0 rw, /etc/gai.conf r, /etc/group mr, /home// r, /home//* rwk, /home//.Skype/ rw, /home//.Skype/** rwk, /home//.config/Trolltech.conf rwk, owner /home//.fontconfig/** m, /home//.fontconfig/* r, /home//.kde/share/config/kioslaverc r, /proc//net/route r, /proc/interrupts r, /proc/net/route r, /proc/sys/kernel/osrelease r, /proc/sys/kernel/ostype r, /sys/devices/system/cpu/ r, /usr/bin/dbus-launch ux, /usr/bin/gconftool-2 ux, /usr/bin/skype mr, /usr/bin/xdg-open Ux, /usr/lib/ mr, /usr/share/alsa/ r, /usr/share/fonts/ mr, /usr/share/ghostscript/fonts/ mr, /usr/share/locale/ mr, /usr/share/skype/ r, /usr/share/skype/ mrk, /var/lib/dbus/machine-id r, }	over 2 years ago		127	octo	Edit	History
opensuse11.0	/usr/bin/gimp-2.6	#include <tunables/global> /usr/bin/gimp-2.6 { #include <abstractions/base> }	over 2 years ago		106	anubisg1	Edit	History
ubuntu-gutsy	/usr/sbin/in.tftpd	#include <tunables/global> /usr/sbin/in.tftpd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, /usr/sbin/in.tftpd mr, }	over 3 years ago		185	stive	Edit	History
opensuse10.3	/usr/bin/f-spot	#include <tunables/global> /usr/bin/f-spot { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/f-spot/* rw, /home//.gnome2/f-spot/photos.db krw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.thumbnails/* r, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /home//Photos/* r, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /usr/bin/f-spot mr, /usr/bin/mono ixr, /usr/lib/f-spot/.dll mr, /usr/lib/f-spot/f-spot.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/share/f-spot/icons/ r, /usr/share/f-spot/icons/ r, /usr/share/fonts/** mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	Import of jmichaels profiles	218	dominic	Edit	History
opensuse10.3	/sbin/chkconfig	#include <tunables/global> /sbin/chkconfig { #include <abstractions/base> #include <abstractions/perl> /etc/init.d/ r, /etc/init.d/* r, /etc/init.d/boot.d/ r, /etc/init.d/rc*.d/ r, /etc/xinetd.d/ r, /sbin/chkconfig mr, /sbin/runlevel Px, /usr/bin/perl ix, }	over 4 years ago	none	150	cinimod	Edit	History
opensuse10.3	/bin/dbus-send	#include <tunables/global> /bin/dbus-send { #include <abstractions/base> /bin/dbus-send mr, /var/run/dbus/system_bus_socket w, }	over 4 years ago	Import of jmichaels profiles	169	dominic	Edit	History
opensuse10.3	/etc/X11/xdm/Xsession	#include <tunables/global> /etc/X11/xdm/Xsession flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash ixr, /bin/grep ixr, /bin/hostname Px, /bin/ls ixmr, /bin/uname Px, /etc/X11/Xresources r, /etc/X11/xdm/Xsession mr, /etc/X11/xdm/sys.xsession Px, /etc/X11/xinit/xinitrc.common r, /etc/opt/ r, /etc/shells r, /etc/sysconfig/console r, /etc/sysconfig/language r, /etc/sysconfig/mail r, /etc/sysconfig/news r, /etc/sysconfig/proxy r, /etc/sysconfig/suseconfig r, /etc/sysconfig/windowmanager r, /home//.Xdefaults r, /home//.bashrc r, /home//.profile r, /opt/ r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/killall5 ixr, /usr/bin/dircolors ixmr, /usr/bin/manpath Px, /usr/bin/tty ixr, /usr/bin/xrdb Px, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update12/jre/bin/java ixr, /var/log/Xorg.*.log r, }	over 4 years ago	argh, switch things back to complain for a while	187	jmichael	Edit	History
opensuse11.0	/root/bin/OpenSim.exe	#include <tunables/global> /root/bin/OpenSim.exe flags=(complain) { #include <abstractions/base> }	over 2 years ago		94	openvirt	Edit	History
opensuse10.3	/usr/bin/bug-buddy	#include <tunables/global> /usr/bin/bug-buddy { #include <abstractions/base> /usr/bin/bug-buddy mr, }	over 2 years ago		272	cattoire	Edit	History
ubuntu-gutsy	/usr/sbin/dhcpd3	#include <tunables/global> /usr/sbin/dhcpd3 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability net_raw, capability setgid, capability setuid, network packet, network raw, /etc/dhcp3/dhcpd.conf r, /usr/sbin/dhcpd3 mr, /var/lib/dhcp3/* rwl, /var/run/dhcp3-server/dhcpd.pid w, }	over 3 years ago		125	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/virtual	# $Id: usr.lib.postfix.virtual 201 2006-11-05 08:39:33Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/virtual { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /usr/lib/postfix/virtual rmix, /var/spool/postfix/active/* rw, /var/spool/postfix/pid/unix.virtual rw, /var/spool/postfix/private/bounce w, }	over 3 years ago		164	stive	Edit	History
opensuse10.3	/usr/bin/gnome-at-visual	#include <tunables/global> /usr/bin/gnome-at-visual flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/gconftool-2 Pxmr, /usr/bin/gnome-at-visual mr, }	over 4 years ago	argh, switch things back to complain for a while	804	jmichael	Edit	History
opensuse10.3	/usr/lib/control-center-2.0/novell-sysconfig-proxy-helper	#include <tunables/global> /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/sysconfig/proxy r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper mr, }	over 4 years ago	argh, switch things back to complain for a while	292	jmichael	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox { #include <abstractions/base> #include <abstractions/bash> /* r, // r, /bin/bash rix, /etc/fonts/ r, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gre.d/1.9.2.13-64bit.system.conf r, /etc/gtk-2.0/gdk-pixbuf64.loaders r, /etc/gtk-2.0/gtk64.immodules r, /etc/gtk-2.0/gtkrc r, /etc/host.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/pango/pango64.modules r, /etc/passwd r, /etc/resolv.conf r, /etc/services r, owner /home//.Xauthority r, owner /home//.local/share/mime/mime.cache r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner "/home//.mozilla/firefox/Crash Reports/InstallTime2010120300" r, owner /home//.mozilla/firefox/default/.parentlock wk, owner /home//.mozilla/firefox/default/Cache/0BF3753Dd01 r, owner /home//.mozilla/firefox/default/Cache/18BA6AB2d01 r, owner /home//.mozilla/firefox/default/Cache/36714A11d01 r, owner /home//.mozilla/firefox/default/Cache/5C09EDF2d01 r, owner /home//.mozilla/firefox/default/Cache/7EF7534Fd01 r, owner /home//.mozilla/firefox/default/Cache/883BEF94d01 w, owner /home//.mozilla/firefox/default/Cache/F228AE4Ad01 rw, owner /home//.mozilla/firefox/default/Cache/F2D117AFd01 r, owner /home//.mozilla/firefox/default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/default/Cache/_CACHE_003_ rw, owner /home//.mozilla/firefox/default/Cache/_CACHE_MAP_ rw, owner /home//.mozilla/firefox/default/XPC.mfasl r, owner /home//.mozilla/firefox/default/XUL.mfasl r, owner /home//.mozilla/firefox/default/adblockplus/cache.js r, owner /home//.mozilla/firefox/default/adblockplus/elemhide.css r, owner /home//.mozilla/firefox/default/adblockplus/patterns.ini r, owner /home//.mozilla/firefox/default/cert8.db rw, owner /home//.mozilla/firefox/default/compatibility.ini r, owner /home//.mozilla/firefox/default/compreg.dat r, owner /home//.mozilla/firefox/default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/default/cookies.sqlite rwk, owner /home//.mozilla/firefox/default/cookies.sqlite-journal rw, owner /home//.mozilla/firefox/default/downloads.sqlite rwk, owner /home//.mozilla/firefox/default/extensions.cache r, owner /home//.mozilla/firefox/default/extensions.ini r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/adblockplus.jar r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/adblockplus.js r, owner /home//.mozilla/firefox/default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/default/key3.db rw, owner /home//.mozilla/firefox/default/localstore.rdf r, owner /home//.mozilla/firefox/default/lock w, owner /home//.mozilla/firefox/default/permissions.sqlite rwk, owner /home//.mozilla/firefox/default/places.sqlite rwk, owner /home//.mozilla/firefox/default/pluginreg.dat rw, owner /home//.mozilla/firefox/default/prefs.js r, owner /home//.mozilla/firefox/default/search.json r, owner /home//.mozilla/firefox/default/search.sqlite rwk, owner /home//.mozilla/firefox/default/secmod.db r, owner /home//.mozilla/firefox/default/sessionstore.js w, owner /home//.mozilla/firefox/default/signons.sqlite rwk, owner /home//.mozilla/firefox/default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/default/urlclassifier3.sqlite-journal rw, owner /home//.mozilla/firefox/default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/default/xpti.dat r, owner /home//.mozilla/firefox/profiles.ini r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, owner /tmp/orbit-student/linc-2610-0-1a35e440ac8f0 w, /usr/lib64/* mr, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/mime/mime.cache r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome.manifest r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/chrome.manifest r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/susefox-pfs.js r, /usr/share/themes/ClearlooksClassic/gtk-2.0/gtkrc r, }	about 1 year ago		59	yacoob	Edit	History
opensuse11.0	/usr/local/sbin/zabbix_server	#include <tunables/global> /usr/local/sbin/zabbix_server flags=(complain) { #include <abstractions/base> capability setgid, }	about 1 year ago	Zabbix_server	87	lcardoza	Edit	History
opensuse11.0	/lib64/ld-2.9.so	#include <tunables/global> /lib64/ld-2.9.so { #include <abstractions/base> }	over 2 years ago		147	pone13	Edit	History
ubuntu-gutsy	/etc/cron.hourly/avg	#include <tunables/global> /etc/cron.hourly/avg { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, /bin/bash ixr, /etc/cron.hourly/avg mr, /opt/grisoft/avg7/bin/avgupdate ixr, /opt/grisoft/avg7/data/* r, /opt/grisoft/avg7/etc/avg.conf r, /opt/grisoft/avg7/lib/libso mr, /opt/grisoft/avg7/var/run/avgupdate.pid r, /opt/grisoft/lib/libso mr, }	over 3 years ago		151	stive	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox-bin	# $Id: usr.lib.firefox.firefox-bin 725 2007-06-11 05:07:41Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/firefox/firefox-bin flags=(complain) { #include <abstractions/X> #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-download> #include <abstractions/user-write> capability sys_nice, /bin/bash mixr, /bin/grep mixr, /bin/netstat Px, /bin/ps mixr, /etc/SuSE-release r, /etc/X11/.kstylerc.lock rw, /etc/X11/.qt_plugins_rc.lock rw, /etc/X11/.qtrc.lock rw, /etc/X11/fs/config r, /etc/firefox/pref/ r, /etc/firefox/pref/.js r, /etc/firefox/pref/.js-actual r, /etc/gai.conf r, /etc/gnome-vfs-/modules r, /etc/gnome-vfs-/modules/.conf r, /etc/ld.so.cache mr, /etc/mailcap r, /etc/mime.types r, /etc/mozpluggerrc r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/* r, /etc/rpc r, /etc/sysconfig/clock r, /home//.Xauthority r, /home//.gnome2_private/ w, /home//.mozilla/firefox/* krw, /opt/kde3/bin/kde-config mixr, /opt/kde3/share/applications/*.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//mounts r, /proc/meminfo r, /tmp/hsperfdata_/[0-9] m, /usr/bin/m4 rmix, /usr/bin/mozplugger-helper rmix, /usr/java/jre/plugin//ns/libjavaplugin_oji.so mr, /usr/lib/GConf/2/gconfd-2 Px, /usr/lib/browser-extensions/firefox r, /usr/lib/browser-plugins r, /usr/lib/browser-plugins/.so mr, /usr/lib/browser-plugins/.xpt r, /usr/lib/firefox/* r, /usr/lib/firefox/*.so mr, /usr/lib/firefox/firefox-bin mixr, /usr/lib/gnome-vfs-/modules/.so mr, /usr/lib/gtk-/*.so mr, /usr/lib/jvm/java-/* r, /usr/lib/jvm/java-/.so mr, /usr/lib/jvm/java-/jre/bin/java_vm mixr, /usr/lib/ooo-/share/fonts/* r, /usr/lib/pango/*.so mr, /usr/share/applications/.desktop r, /usr/share/applications/defaults.list r, /usr/share/applications/mimeinfo.cache r, /usr/share/firefox-extensions/greasemonkey/.manifest r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/content/.gif r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/content/.js r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/content/.xul r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/locale/en-US/.dtd r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/locale/en-US/.properties r, /usr/share/firefox-extensions/greasemonkey/components/.xpt r, /usr/share/firefox/chrome/ r, /usr/share/firefox/chrome/.jar r, /usr/share/firefox/chrome/.manifest r, /usr/share/firefox/chrome/icons/default/.xpm r, /usr/share/firefox/defaults/autoconfig/.js r, /usr/share/firefox/defaults/pref/ r, /usr/share/firefox/defaults/pref/.js r, /usr/share/firefox/greprefs/ r, /usr/share/firefox/greprefs/.js r, /usr/share/firefox/res/.css r, /usr/share/firefox/res/.gif r, /usr/share/firefox/res/.html r, /usr/share/firefox/res/.properties r, /usr/share/firefox/res/fonts/* r, /usr/share/firefox/searchplugins/ r, /usr/share/firefox/searchplugins/.src r, /usr/share/firefox/searchplugins/.xml r, /usr/share/ghostscript/fonts r, /usr/share/icons r, /usr/share/icons/ r, /usr/share/locale/ r, /usr/share/mime/ r, /usr/share/myspell/dicts/ r, /usr/share/pixmaps r, /usr/share/themes/ r, /usr/share/zoneinfo r, /var/X11R6/compose-cache/* r, /var/run/dbus/system_bus_socket w, @{HOME}/.fonts r, @{HOME}/.fonts.cache-1 r, @{HOME}/.gnome2_private w, @{HOME}/.gtk_qt_engine_rc lrw, @{HOME}/.icons r, @{HOME}/.java/deployment/* r, @{HOME}/.java/deployment/cache/javapi/** lrw, @{HOME}/.java/deployment/log/* lw, @{HOME}/.kde/share/config/* r, @{HOME}/.kde/share/config/gtkrc-* r, @{HOME}/.macromedia/ r, "@{HOME}/.macromedia/Macromedia/Flash Player/" rw, @{HOME}/.mailcap r, @{HOME}/.mime.types r, @{HOME}/.mozilla/appreg rw, @{HOME}/.mozilla/firefox/ lrw, @{HOME}/.mozilla/plugins r, @{HOME}/.mozilla/plugins/ mlrw, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/maps r, @{PROC}/[0-9]*/stat r, @{PROC}/net/if_inet6 r, @{PROC}/sys/vm/heap-stack-gap r, }	over 4 years ago	gnome	215	hbpteam	Edit	History
opensuse10.3	/usr/bin/f-spot	#include <tunables/global> /usr/bin/f-spot { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/f-spot/* rw, /home//.gnome2/f-spot/photos.db krw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.thumbnails/* r, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /home//Photos/* r, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /usr/bin/f-spot mr, /usr/bin/mono ixr, /usr/lib/f-spot/.dll mr, /usr/lib/f-spot/f-spot.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/share/f-spot/icons/ r, /usr/share/f-spot/icons/ r, /usr/share/fonts/** mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	none	191	cinimod	Edit	History
opensuse10.3	/usr/bin/evince	#include <tunables/global> /usr/bin/evince flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xpdfrc r, /etc/xpdfrc-cjk r, /etc/xpdfrc-cjk-auto r, /etc/xpdfrc-cjk.sjis r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//Desktop/.pdf r, /proc/meminfo r, /usr/bin/evince mr, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/* r, /usr/share/xpdf/** r, /var/cache/libx11/compose/* r, }	over 4 years ago	few extra changes	267	jmichael	Edit	History
opensuse11.0	/usr/sbin/cupsd	#include <tunables/global> /usr/sbin/cupsd { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/nameservice> #include <abstractions/perl> capability chown, capability dac_override, capability fowner, capability fsetid, capability kill, capability net_bind_service, capability setgid, capability setuid, /bin/bash rix, /bin/cat rix, /bin/hostname rix, /dev/bus/usb/ r, /dev/bus/usb/ rw, /dev/lp0 rw, /dev/tty rw, /dev/ttyS? w, /etc/cups rw, /etc/cups/ r, owner /etc/cups/ w, /etc/cups/** r, /etc/cups/certs w, /etc/cups/certs/* w, /etc/cups/classes.conf rw, /etc/cups/cupsd.conf rw, /etc/cups/ppd rw, /etc/cups/printcap rw, /etc/cups/printers.conf rw, /etc/cups/ssl rw, /etc/fonts/** r, /etc/foomatic/filter.conf r, /etc/ghostscript/8.62/Fontmap r, /etc/ghostscript/8.62/Fontmap.X11-auto r, /etc/ghostscript/8.62/cidfmap r, /etc/ghostscript/8.62/xlatmap r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/hp/hplip.conf r, owner /etc/krb5.conf w, /etc/krb5.conf r, owner /etc/pam.d/* r, owner /etc/printcap w, /proc/bus/usb/ r, /proc/meminfo r, /proc/sys/dev/parport/ r, /sys/class/usb r, /usr/bin/foomatic-gswrapper rix, /usr/bin/foomatic-rip rix, /usr/bin/gs rix, /usr/bin/hpijs rix, /usr/bin/pdftops rix, /usr/bin/perl ix, /usr/bin/smbspool rix, /usr/lib/ mr, /usr/lib/cups/backend/* rix, /usr/lib/cups/daemon/cups-deviced rix, /usr/lib/cups/daemon/cups-driverd rix, /usr/lib/cups/filter/* rix, /usr/sbin/cupsd mr, /usr/share/ mr, /var/cache/ r, /var/log/cups/access_log rw, owner /var/log/cups/access_log.O w, /var/log/cups/error_log rw, owner /var/log/cups/page_log rw, owner /var/run/cups/** w, owner /var/run/nscd/services r, /var/spool/cups rw, owner /var/spool/cups/* w, /var/spool/cups/* r, owner /var/spool/cups/ r, /var/spool/cups/ w, /var/spool/cups/tmp/ r, }	over 2 years ago		120	Aleksandr	Edit	History
opensuse11.0	/usr/bin/kopete	#include <tunables/global> /usr/bin/kopete flags=(complain) { #include <abstractions/base> }	over 2 years ago	/usr/bin/kopete/apparmor	119	shhheikh	Edit	History
opensuse11.0	/usr/bin/oowriter	#include <tunables/global> /usr/bin/oowriter { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	w	199	miriamb	Edit	History
opensuse10.3	/opt/kde3/bin/kleopatra	#include <tunables/global> /opt/kde3/bin/kleopatra flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kleopatra mr, /opt/kde3/lib/libso mr, }	over 3 years ago	gconf-neu	150	shivver-fox	Edit	History
opensuse10.3	/usr/bin/compiz	#include <tunables/global> /usr/bin/compiz { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/freedesktop.org> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/compiz ixmr, /usr/bin/gtk-window-decorator Px, /usr/share/compiz/.png r, /usr/share/compiz/*.xml r, }	over 4 years ago	none	231	cinimod	Edit	History
opensuse10.3	/bin/sleep	#include <tunables/global> /bin/sleep flags=(complain) { #include <abstractions/base> /bin/sleep mr, }	over 4 years ago	argh, switch things back to complain for a while	251	jmichael	Edit	History
opensuse10.3	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> / r, /Archiv/** r, /bin/mount Ux, /bin/netstat Px, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /home/ r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.bash_history r, /home//.bashrc r, /home//.beagle/socket w, /home//.cedegarc r, /home//.config/gtk-2.0/* rw, /home//.dmrc r, /home//.dvipsrc r, /home//.emacs r, /home//.exrc r, /home//.fontconfig/ r, /home//.gpilotd.pid r, /home//.gstreamer-0.10/registry.i686.xml rw, /home//.gstreamer-0.10/registry.i686.xml.tmp rw, /home//.gtkrc-1.2-gnome2 r, /home//.icons/ r, /home//.inputrc r, /home//.kermrc r, /home//.local/share/icons/ r, /home//.local/share/icons/75c6_vampire.0.xpm r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/subclasses r, /home//.mailcap r, /home//.muttrc r, /home//.opensuse-updater-gnome r, /home//.profile r, /home//.purple/ r, /home//.purple/** rw, /home//.purple/cap.db krw, /home//.realplayerrc r, /home//.recently-used r, /home//.recently-used.xbel.* rw, /home//.urlview r, /home//.viminfo r, /home//.windows-label r, /home//.xcoralrc r, /home//.xim.template r, /home//.xinitrc.template r, /home//.xsession-errors r, /home//.xtalkrc r, /home//Desktop/ w, /home//Desktop/* rw, /proc/meminfo r, /tmp/orbit-overwrite/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/gconftool-2 Px, /usr/bin/gnome-mount ixr, /usr/bin/gnome-open Px, /usr/bin/pidgin mr, /usr/lib/pidgin/.so mr, /usr/lib/purple-2/.so mr, /usr/share/** r, /var/cache/libx11/compose/* r, }	over 4 years ago		260	overwrite	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox { #include <abstractions/base> capability setgid, capability setuid, owner /etc/hosts r, owner /etc/mime.types r, owner /etc/mtab r, owner /etc/opt/kde3/share/applications/mimeinfo.cache r, owner /etc/services r, owner /opt/kde3/share/applications/mimeinfo.cache r, owner /opt/kde3/share/icons/ r, owner /opt/kde3/share/icons/hicolor/128x128/actions/ r, owner /opt/kde3/share/icons/hicolor/128x128/apps/ r, owner /opt/kde3/share/icons/hicolor/128x128/filesystems/ r, owner /opt/kde3/share/icons/hicolor/128x128/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/16x16/actions/ r, owner /opt/kde3/share/icons/hicolor/16x16/apps/ r, owner /opt/kde3/share/icons/hicolor/16x16/filesystems/ r, owner /opt/kde3/share/icons/hicolor/16x16/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/22x22/actions/ r, owner /opt/kde3/share/icons/hicolor/22x22/apps/ r, owner /opt/kde3/share/icons/hicolor/22x22/filesystems/ r, owner /opt/kde3/share/icons/hicolor/22x22/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/32x32/actions/ r, owner /opt/kde3/share/icons/hicolor/32x32/apps/ r, owner /opt/kde3/share/icons/hicolor/32x32/filesystems/ r, owner /opt/kde3/share/icons/hicolor/32x32/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/48x48/actions/ r, owner /opt/kde3/share/icons/hicolor/48x48/apps/ r, owner /opt/kde3/share/icons/hicolor/48x48/filesystems/ r, owner /opt/kde3/share/icons/hicolor/48x48/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/64x64/actions/ r, owner /opt/kde3/share/icons/hicolor/64x64/apps/ r, owner /opt/kde3/share/icons/hicolor/64x64/filesystems/ r, owner /opt/kde3/share/icons/hicolor/64x64/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/scalable/actions/ r, owner /opt/kde3/share/icons/hicolor/scalable/apps/ r, owner /opt/kde3/share/icons/hicolor/scalable/filesystems/ r, owner /opt/kde3/share/icons/hicolor/scalable/mimetypes/ r, owner /proc//fd/ r, owner /root/.icons/ r, owner /root/.local/share/mime/mime.cache r, owner /root/.mailcap r, owner /root/.mozilla/firefox/9brfz1le.default/ r, owner /root/.mozilla/firefox/9brfz1le.default/ w, owner /root/.mozilla/firefox/9brfz1le.default/Cache/* rw, owner /root/.mozilla/firefox/9brfz1le.default/XPC.mfasl rw, owner /root/.mozilla/firefox/9brfz1le.default/XUL.mfasl rw, owner /root/.mozilla/firefox/9brfz1le.default/adblockplus/patterns-backup1.ini rw, owner /root/.mozilla/firefox/9brfz1le.default/adblockplus/patterns-backup2.ini rw, owner /root/.mozilla/firefox/9brfz1le.default/adblockplus/patterns-backup3.ini rw, owner /root/.mozilla/firefox/9brfz1le.default/adblockplus/patterns-backup4.ini rw, owner /root/.mozilla/firefox/9brfz1le.default/adblockplus/patterns-backup5.ini w, owner /root/.mozilla/firefox/9brfz1le.default/adblockplus/patterns.ini rw, owner /root/.mozilla/firefox/9brfz1le.default/adblockplus/patterns.ini-temp rw, owner /root/.mozilla/firefox/9brfz1le.default/cert8.db r, owner /root/.mozilla/firefox/9brfz1le.default/content-prefs.sqlite rk, owner /root/.mozilla/firefox/9brfz1le.default/downloads.sqlite rwk, owner /root/.mozilla/firefox/9brfz1le.default/downloads.sqlite-journal rw, owner /root/.mozilla/firefox/9brfz1le.default/formhistory.sqlite rwk, owner /root/.mozilla/firefox/9brfz1le.default/formhistory.sqlite-journal rw, owner /root/.mozilla/firefox/9brfz1le.default/localstore-1.rdf rw, owner /root/.mozilla/firefox/9brfz1le.default/mimeTypes.rdf r, owner /root/.mozilla/firefox/9brfz1le.default/places.sqlite rw, owner /root/.mozilla/firefox/9brfz1le.default/places.sqlite-journal rw, owner /root/.mozilla/firefox/9brfz1le.default/pluginreg.dat r, owner /root/.mozilla/firefox/9brfz1le.default/prefs.js r, owner /root/.mozilla/firefox/9brfz1le.default/search.sqlite rwk, owner /root/.mozilla/firefox/9brfz1le.default/search.sqlite-journal rw, owner /root/.mozilla/firefox/9brfz1le.default/sessionstore-1.js rw, owner /root/.mozilla/firefox/9brfz1le.default/signons.sqlite rwk, owner /root/.mozilla/firefox/9brfz1le.default/signons.sqlite-journal rw, owner /root/.mozilla/firefox/9brfz1le.default/urlclassifier3.sqlite rwk, owner /root/.mozilla/firefox/9brfz1le.default/urlclassifier3.sqlite-journal rw, owner /root/.mozilla/plugins/ r, owner /tmp/Security_lab_firewall.pdf w, owner /tmp/WMO3LqBy.pdf.part rw, owner /usr/share/applications/acroread.desktop r, owner /usr/share/applications/defaults.list r, owner /usr/share/applications/epdfview.desktop r, owner /usr/share/applications/evince.desktop r, owner /usr/share/applications/gimp.desktop r, owner /usr/share/applications/gv.desktop r, owner /usr/share/applications/kde4/krita_pdf.desktop r, owner /usr/share/applications/kde4/okularApplication_pdf.desktop r, owner /usr/share/applications/mimeinfo.cache r, owner /usr/share/fonts/ r, owner /usr/share/icons/ r, owner /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, owner /usr/share/icons/gnome/16x16/actions/ r, owner /usr/share/icons/gnome/16x16/actions/application-exit.png r, owner /usr/share/icons/gnome/16x16/actions/document-open.png r, owner /usr/share/icons/gnome/16x16/actions/document-print-preview.png r, owner /usr/share/icons/gnome/16x16/actions/document-print.png r, owner /usr/share/icons/gnome/16x16/actions/document-save-as.png r, owner /usr/share/icons/gnome/16x16/animations/ r, owner /usr/share/icons/gnome/16x16/apps/ r, owner /usr/share/icons/gnome/16x16/categories/ r, owner /usr/share/icons/gnome/16x16/devices/ r, owner /usr/share/icons/gnome/16x16/emblems/ r, owner /usr/share/icons/gnome/16x16/emotes/ r, owner /usr/share/icons/gnome/16x16/mimetypes/ r, owner /usr/share/icons/gnome/16x16/mimetypes/x-office-document.png r, owner /usr/share/icons/gnome/16x16/places/ r, owner /usr/share/icons/gnome/16x16/status/ r, owner /usr/share/icons/gnome/22x22/actions/ r, owner /usr/share/icons/gnome/22x22/actions/process-stop.png r, owner /usr/share/icons/gnome/22x22/animations/ r, owner /usr/share/icons/gnome/22x22/apps/ r, owner /usr/share/icons/gnome/22x22/categories/ r, owner /usr/share/icons/gnome/22x22/devices/ r, owner /usr/share/icons/gnome/22x22/emblems/ r, owner /usr/share/icons/gnome/22x22/emotes/ r, owner /usr/share/icons/gnome/22x22/mimetypes/ r, owner /usr/share/icons/gnome/22x22/places/ r, owner /usr/share/icons/gnome/22x22/status/ r, owner /usr/share/icons/gnome/24x24/actions/ r, owner /usr/share/icons/gnome/24x24/apps/ r, owner /usr/share/icons/gnome/24x24/categories/ r, owner /usr/share/icons/gnome/24x24/devices/ r, owner /usr/share/icons/gnome/24x24/emblems/ r, owner /usr/share/icons/gnome/24x24/emotes/ r, owner /usr/share/icons/gnome/24x24/mimetypes/ r, owner /usr/share/icons/gnome/24x24/places/ r, owner /usr/share/icons/gnome/24x24/status/ r, owner /usr/share/icons/gnome/256x256/actions/ r, owner /usr/share/icons/gnome/256x256/apps/ r, owner /usr/share/icons/gnome/256x256/categories/ r, owner /usr/share/icons/gnome/256x256/devices/ r, owner /usr/share/icons/gnome/256x256/emblems/ r, owner /usr/share/icons/gnome/256x256/emotes/ r, owner /usr/share/icons/gnome/256x256/mimetypes/ r, owner /usr/share/icons/gnome/256x256/places/ r, owner /usr/share/icons/gnome/256x256/status/ r, owner /usr/share/icons/gnome/32x32/actions/ r, owner /usr/share/icons/gnome/32x32/animations/ r, owner /usr/share/icons/gnome/32x32/apps/ r, owner /usr/share/icons/gnome/32x32/categories/ r, owner /usr/share/icons/gnome/32x32/devices/ r, owner /usr/share/icons/gnome/32x32/emblems/ r, owner /usr/share/icons/gnome/32x32/emotes/ r, owner /usr/share/icons/gnome/32x32/mimetypes/ r, owner /usr/share/icons/gnome/32x32/places/ r, owner /usr/share/icons/gnome/32x32/status/ r, owner /usr/share/icons/gnome/48x48/actions/ r, owner /usr/share/icons/gnome/48x48/animations/ r, owner /usr/share/icons/gnome/48x48/apps/ r, owner /usr/share/icons/gnome/48x48/categories/ r, owner /usr/share/icons/gnome/48x48/devices/ r, owner /usr/share/icons/gnome/48x48/emblems/ r, owner /usr/share/icons/gnome/48x48/emotes/ r, owner /usr/share/icons/gnome/48x48/mimetypes/ r, owner /usr/share/icons/gnome/48x48/places/ r, owner /usr/share/icons/gnome/48x48/status/ r, owner /usr/share/icons/gnome/8x8/emblems/ r, owner /usr/share/icons/gnome/icon-theme.cache r, owner /usr/share/icons/gnome/index.theme r, owner /usr/share/icons/gnome/scalable/actions/ r, owner /usr/share/icons/gnome/scalable/apps/ r, owner /usr/share/icons/gnome/scalable/categories/ r, owner /usr/share/icons/gnome/scalable/devices/ r, owner /usr/share/icons/gnome/scalable/emblems/ r, owner /usr/share/icons/gnome/scalable/emotes/ r, owner /usr/share/icons/gnome/scalable/mimetypes/ r, owner /usr/share/icons/gnome/scalable/places/ r, owner /usr/share/icons/gnome/scalable/status/ r, owner /usr/share/icons/hicolor/icon-theme.cache r, owner /usr/share/icons/hicolor/index.theme r, owner /usr/share/mime/application/pdf.xml r, owner /usr/share/mime/mime.cache r, owner /usr/share/pixmaps/ r, ^null-16 { owner /dev/null rw, owner /dev/urandom r, owner /etc/fonts/ r, owner /etc/gtk-2.0/gdk-pixbuf64.loaders r, owner /etc/gtk-2.0/gtk64.immodules r, owner /etc/gtk-2.0/gtkrc r, owner /etc/ld.so.cache r, owner /etc/localtime r, owner /etc/nsswitch.conf r, owner /etc/pango/pango64.modules r, owner /etc/passwd r, owner /lib64/libc-.so mr, owner /lib64/libdbus-1.so. mr, owner /lib64/libdl-.so mr, owner /lib64/libexpat.so. mr, owner /lib64/libgcc_s.so.* mr, owner /lib64/libgcrypt.so.* mr, owner /lib64/libgpg-error.so.* mr, owner /lib64/libm-.so mr, owner /lib64/libnss_files-.so mr, owner /lib64/libpcre.so.* mr, owner /lib64/libpthread-.so mr, owner /lib64/libresolv-.so mr, owner /lib64/librt-.so mr, owner /lib64/libselinux.so. mr, owner /lib64/libudev.so.* mr, owner /lib64/libuuid.so.* mr, owner /lib64/libz.so.* mr, owner /opt/kde3/share/icons/ r, owner /opt/kde3/share/icons/hicolor/128x128/actions/ r, owner /opt/kde3/share/icons/hicolor/128x128/apps/ r, owner /opt/kde3/share/icons/hicolor/128x128/filesystems/ r, owner /opt/kde3/share/icons/hicolor/128x128/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/16x16/actions/ r, owner /opt/kde3/share/icons/hicolor/16x16/apps/ r, owner /opt/kde3/share/icons/hicolor/16x16/filesystems/ r, owner /opt/kde3/share/icons/hicolor/16x16/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/22x22/actions/ r, owner /opt/kde3/share/icons/hicolor/22x22/apps/ r, owner /opt/kde3/share/icons/hicolor/22x22/filesystems/ r, owner /opt/kde3/share/icons/hicolor/22x22/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/32x32/actions/ r, owner /opt/kde3/share/icons/hicolor/32x32/apps/ r, owner /opt/kde3/share/icons/hicolor/32x32/filesystems/ r, owner /opt/kde3/share/icons/hicolor/32x32/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/48x48/actions/ r, owner /opt/kde3/share/icons/hicolor/48x48/apps/ r, owner /opt/kde3/share/icons/hicolor/48x48/filesystems/ r, owner /opt/kde3/share/icons/hicolor/48x48/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/64x64/actions/ r, owner /opt/kde3/share/icons/hicolor/64x64/apps/ r, owner /opt/kde3/share/icons/hicolor/64x64/filesystems/ r, owner /opt/kde3/share/icons/hicolor/64x64/mimetypes/ r, owner /opt/kde3/share/icons/hicolor/scalable/actions/ r, owner /opt/kde3/share/icons/hicolor/scalable/apps/ r, owner /opt/kde3/share/icons/hicolor/scalable/filesystems/ r, owner /opt/kde3/share/icons/hicolor/scalable/mimetypes/ r, owner /proc/filesystems r, owner /proc/meminfo r, owner /root/.gnome2/accels/evince w, owner /root/.gnome2/accels/evince.6DZZTV rw, owner /root/.gnome2/evince/ w, owner /root/.gnome2/evince/last_settings w, owner /root/.icons/ r, owner /root/.local/share/mime/mime.cache r, owner /root/.recently-used.xbel rw, owner /root/.recently-used.xbel.9ZC8TV rw, owner /root/.recently-used.xbel.FMYSTV rw, owner /root/.recently-used.xbel.G8KXTV rw, owner /root/.xauthnORX6m r, owner /tmp/5XWRKW rw, owner /tmp/8pLx5C rw, owner /tmp/9WBOzg rw, owner /tmp/CPmcDm rw, owner /tmp/F7Kna4 rw, owner /tmp/KJnkOZ rw, owner /tmp/MQhDiU rw, owner /tmp/Ps04JL rw, owner /tmp/Security_lab_firewall.pdf r, owner /tmp/bvqVcG rw, owner /tmp/l9QlqA rw, owner /tmp/mRb4qj rw, owner /tmp/orbit-root/linc-24a9-0-4bb3fcabeb88b w, owner /usr/lib/locale/ r, owner /usr/lib64/evince/2/backends/ r, owner /usr/lib64/evince/2/backends/comicsdocument.evince-backend r, owner /usr/lib64/evince/2/backends/djvudocument.evince-backend r, owner /usr/lib64/evince/2/backends/dvidocument.evince-backend r, owner /usr/lib64/evince/2/backends/impressdocument.evince-backend r, owner /usr/lib64/evince/2/backends/libpdfdocument.so mr, owner /usr/lib64/evince/2/backends/pdfdocument.evince-backend r, owner /usr/lib64/evince/2/backends/pixbufdocument.evince-backend r, owner /usr/lib64/evince/2/backends/psdocument.evince-backend r, owner /usr/lib64/evince/2/backends/tiffdocument.evince-backend r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/lib64/gio/modules/ r, owner /usr/lib64/gio/modules/giomodule.cache r, owner /usr/lib64/gio/modules/libgiofam.so mr, owner /usr/lib64/gio/modules/libgiofm.so mr, owner /usr/lib64/gio/modules/libgvfsdbus.so mr, owner /usr/lib64/gtk-2.0/2.10.0/engines/libclearlooks.so mr, owner /usr/lib64/gtk-2.0/2.10.0/immodules/im-xim.so mr, owner /usr/lib64/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so mr, owner /usr/lib64/jvm/java-1.6.0-sun-1.6.0/jre/lib/fonts/ r, owner /usr/lib64/libICE.so.* mr, owner /usr/lib64/libORBit-2.so.* mr, owner /usr/lib64/libSM.so.* mr, owner /usr/lib64/libX11.so.* mr, owner /usr/lib64/libXau.so.* mr, owner /usr/lib64/libXcomposite.so.* mr, owner /usr/lib64/libXcursor.so.* mr, owner /usr/lib64/libXdamage.so.* mr, owner /usr/lib64/libXext.so.* mr, owner /usr/lib64/libXfixes.so.* mr, owner /usr/lib64/libXi.so.* mr, owner /usr/lib64/libXinerama.so.* mr, owner /usr/lib64/libXrandr.so.* mr, owner /usr/lib64/libXrender.so.* mr, owner /usr/lib64/libatk-1.0.so.* mr, owner /usr/lib64/libcairo.so.* mr, owner /usr/lib64/libdbus-glib-1.so.* mr, owner /usr/lib64/libevdocument.so.* mr, owner /usr/lib64/libevview.so.* mr, owner /usr/lib64/libfam.so.* mr, owner /usr/lib64/libfontconfig.so.* mr, owner /usr/lib64/libfreetype.so.* mr, owner /usr/lib64/libgconf-2.so.* mr, owner /usr/lib64/libgdk-x11-2.0.so.* mr, owner /usr/lib64/libgdk_pixbuf-2.0.so.* mr, owner /usr/lib64/libgio-2.0.so.* mr, owner /usr/lib64/libglib-2.0.so.* mr, owner /usr/lib64/libgmodule-2.0.so.* mr, owner /usr/lib64/libgnome-keyring.so.* mr, owner /usr/lib64/libgobject-2.0.so.* mr, owner /usr/lib64/libgthread-2.0.so.* mr, owner /usr/lib64/libgtk-x11-2.0.so.* mr, owner /usr/lib64/libgvfscommon.so.* mr, owner /usr/lib64/libjpeg.so.* mr, owner /usr/lib64/liblcms.so.* mr, owner /usr/lib64/libpango-1.0.so.* mr, owner /usr/lib64/libpangocairo-1.0.so.* mr, owner /usr/lib64/libpangoft2-1.0.so.* mr, owner /usr/lib64/libpixman-1.so.* mr, owner /usr/lib64/libpng14.so.* mr, owner /usr/lib64/libpoppler-glib.so.* mr, owner /usr/lib64/libpoppler.so.* mr, owner /usr/lib64/libstdc\+\+.so.* mr, owner /usr/lib64/libxcb-render-util.so.* mr, owner /usr/lib64/libxcb-render.so.* mr, owner /usr/lib64/libxcb.so.* mr, owner /usr/lib64/libxml2.so.* mr, owner /usr/lib64/pango/1.6.0/modules/pango-basic-fc.so mr, owner /usr/share/X11/locale/compose.dir r, owner /usr/share/X11/locale/en_US.UTF-8/Compose r, owner /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, owner /usr/share/X11/locale/locale.alias r, owner /usr/share/X11/locale/locale.dir r, owner /usr/share/applications/evince.desktop r, owner /usr/share/evince/evince-toolbar.xml r, owner /usr/share/evince/evince-ui.xml r, owner /usr/share/evince/icons/ r, owner /usr/share/evince/icons/hicolor/16x16/actions/ r, owner /usr/share/evince/icons/hicolor/16x16/mimetypes/ r, owner /usr/share/evince/icons/hicolor/22x22/actions/ r, owner /usr/share/evince/icons/hicolor/22x22/mimetypes/ r, owner /usr/share/evince/icons/hicolor/24x24/actions/ r, owner /usr/share/evince/icons/hicolor/24x24/mimetypes/ r, owner /usr/share/evince/icons/hicolor/32x32/actions/ r, owner /usr/share/evince/icons/hicolor/32x32/mimetypes/ r, owner /usr/share/evince/icons/hicolor/48x48/actions/ r, owner /usr/share/evince/icons/hicolor/scalable/actions/ r, owner /usr/share/evince/icons/hicolor/scalable/mimetypes/ r, owner /usr/share/fonts/ r, owner /usr/share/icons/ r, owner /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, owner /usr/share/icons/DMZ/cursors/xterm r, owner /usr/share/icons/gnome/16x16/actions/ r, owner /usr/share/icons/gnome/16x16/actions/window-close.png r, owner /usr/share/icons/gnome/16x16/animations/ r, owner /usr/share/icons/gnome/16x16/apps/ r, owner /usr/share/icons/gnome/16x16/categories/ r, owner /usr/share/icons/gnome/16x16/devices/ r, owner /usr/share/icons/gnome/16x16/emblems/ r, owner /usr/share/icons/gnome/16x16/emotes/ r, owner /usr/share/icons/gnome/16x16/mimetypes/ r, owner /usr/share/icons/gnome/16x16/places/ r, owner /usr/share/icons/gnome/16x16/status/ r, owner /usr/share/icons/gnome/22x22/actions/ r, owner /usr/share/icons/gnome/22x22/animations/ r, owner /usr/share/icons/gnome/22x22/apps/ r, owner /usr/share/icons/gnome/22x22/categories/ r, owner /usr/share/icons/gnome/22x22/devices/ r, owner /usr/share/icons/gnome/22x22/emblems/ r, owner /usr/share/icons/gnome/22x22/emotes/ r, owner /usr/share/icons/gnome/22x22/mimetypes/ r, owner /usr/share/icons/gnome/22x22/places/ r, owner /usr/share/icons/gnome/22x22/status/ r, owner /usr/share/icons/gnome/24x24/actions/ r, owner /usr/share/icons/gnome/24x24/actions/go-down.png r, owner /usr/share/icons/gnome/24x24/actions/go-up.png r, owner /usr/share/icons/gnome/24x24/apps/ r, owner /usr/share/icons/gnome/24x24/categories/ r, owner /usr/share/icons/gnome/24x24/devices/ r, owner /usr/share/icons/gnome/24x24/emblems/ r, owner /usr/share/icons/gnome/24x24/emotes/ r, owner /usr/share/icons/gnome/24x24/mimetypes/ r, owner /usr/share/icons/gnome/24x24/places/ r, owner /usr/share/icons/gnome/24x24/status/ r, owner /usr/share/icons/gnome/256x256/actions/ r, owner /usr/share/icons/gnome/256x256/apps/ r, owner /usr/share/icons/gnome/256x256/categories/ r, owner /usr/share/icons/gnome/256x256/devices/ r, owner /usr/share/icons/gnome/256x256/emblems/ r, owner /usr/share/icons/gnome/256x256/emotes/ r, owner /usr/share/icons/gnome/256x256/mimetypes/ r, owner /usr/share/icons/gnome/256x256/places/ r, owner /usr/share/icons/gnome/256x256/status/ r, owner /usr/share/icons/gnome/32x32/actions/ r, owner /usr/share/icons/gnome/32x32/animations/ r, owner /usr/share/icons/gnome/32x32/apps/ r, owner /usr/share/icons/gnome/32x32/categories/ r, owner /usr/share/icons/gnome/32x32/devices/ r, owner /usr/share/icons/gnome/32x32/emblems/ r, owner /usr/share/icons/gnome/32x32/emotes/ r, owner /usr/share/icons/gnome/32x32/mimetypes/ r, owner /usr/share/icons/gnome/32x32/places/ r, owner /usr/share/icons/gnome/32x32/status/ r, owner /usr/share/icons/gnome/48x48/actions/ r, owner /usr/share/icons/gnome/48x48/animations/ r, owner /usr/share/icons/gnome/48x48/apps/ r, owner /usr/share/icons/gnome/48x48/categories/ r, owner /usr/share/icons/gnome/48x48/devices/ r, owner /usr/share/icons/gnome/48x48/emblems/ r, owner /usr/share/icons/gnome/48x48/emotes/ r, owner /usr/share/icons/gnome/48x48/mimetypes/ r, owner /usr/share/icons/gnome/48x48/places/ r, owner /usr/share/icons/gnome/48x48/status/ r, owner /usr/share/icons/gnome/8x8/emblems/ r, owner /usr/share/icons/gnome/icon-theme.cache r, owner /usr/share/icons/gnome/index.theme r, owner /usr/share/icons/gnome/scalable/actions/ r, owner /usr/share/icons/gnome/scalable/apps/ r, owner /usr/share/icons/gnome/scalable/categories/ r, owner /usr/share/icons/gnome/scalable/devices/ r, owner /usr/share/icons/gnome/scalable/emblems/ r, owner /usr/share/icons/gnome/scalable/emotes/ r, owner /usr/share/icons/gnome/scalable/mimetypes/ r, owner /usr/share/icons/gnome/scalable/places/ r, owner /usr/share/icons/gnome/scalable/status/ r, owner /usr/share/icons/hicolor/icon-theme.cache r, owner /usr/share/icons/hicolor/index.theme r, owner /usr/share/locale/ r, owner /usr/share/mime/mime.cache r, owner /usr/share/pixmaps/ r, owner /usr/share/poppler/cMap/ r, owner /usr/share/poppler/cidToUnicode/ r, owner /usr/share/poppler/nameToUnicode/ r, owner /usr/share/poppler/nameToUnicode/Bulgarian r, owner /usr/share/poppler/nameToUnicode/Greek r, owner /usr/share/poppler/nameToUnicode/Thai r, owner /usr/share/poppler/unicodeMap/ r, owner /usr/share/themes/ClearlooksClassic/gtk-2.0/gtkrc r, owner /var/cache/fontconfig/02f7482a3ccf4e0fecbeda21d9950555-le64.cache-3 r, owner /var/cache/fontconfig/0918c6fc686fdd9602d24ef8106b8885-le64.cache-3 r, owner /var/cache/fontconfig/0adb47949072cc2c42ab6315eac108fb-le64.cache-3 r, owner /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-le64.cache-3 r, owner /var/cache/fontconfig/0cde06d47243eb5cbd0636677c8e6e7a-le64.cache-3 r, owner /var/cache/fontconfig/0e34e50254571c97131392a388940b84-le64.cache-3 r, owner /var/cache/fontconfig/10d1ae44cd2ed33cc6bfb5cfd20ea1ef-le64.cache-3 r, owner /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-le64.cache-3 r, owner /var/cache/fontconfig/1710608526cf91d28a17160720a89129-le64.cache-3 r, owner /var/cache/fontconfig/18651cef118db95c6d3f49dec1953e88-le64.cache-3 r, owner /var/cache/fontconfig/1962d432aff2b364ee233561694770fe-le64.cache-3 r, owner /var/cache/fontconfig/1fc6330e4563720df036f62042dd071c-le64.cache-3 r, owner /var/cache/fontconfig/233192682edf6a93712eeeaf5dbebc82-le64.cache-3 r, owner /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-le64.cache-3 r, owner /var/cache/fontconfig/2dc34d67fd4c22488dd96f1c3a120652-le64.cache-3 r, owner /var/cache/fontconfig/2deb4bbeb20966677f0d3626a5d48249-le64.cache-3 r, owner /var/cache/fontconfig/2df0e5d5df539d28a5943e1b2bd34b32-le64.cache-3 r, owner /var/cache/fontconfig/2e2bc19a22005bd6cbd08f197098d064-le64.cache-3 r, owner /var/cache/fontconfig/2fa0f8583a77f5cfb817d397cc051e59-le64.cache-3 r, owner /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-le64.cache-3 r, owner /var/cache/fontconfig/318987366667abd4dfe684cc4c41b332-le64.cache-3 r, owner /var/cache/fontconfig/32eddb3bb48babf7d8f14b0530f1e9e8-le64.cache-3 r, owner /var/cache/fontconfig/3301406d6a3d932e51a72d7796713daa-le64.cache-3 r, owner /var/cache/fontconfig/3361ce7ef91d8649e12e735c3b9f8490-le64.cache-3 r, owner /var/cache/fontconfig/340538751003b31e823addb385a78158-le64.cache-3 r, owner /var/cache/fontconfig/36779a984f5b6ecbb513119daf1aaeaf-le64.cache-3 r, owner /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-le64.cache-3 r, owner /var/cache/fontconfig/3ce0b00e8c60e8af49b52781d45b8d88-le64.cache-3 r, owner /var/cache/fontconfig/3d950db533f4d42626c39c5c01a7f913-le64.cache-3 r, owner /var/cache/fontconfig/3e8e2cd8ec9054e4761f23e74bc6d8cd-le64.cache-3 r, owner /var/cache/fontconfig/3f4d0ff9ef53edd6659d46e03e7f1477-le64.cache-3 r, owner /var/cache/fontconfig/3f52a8f3cb1e8b440552e8354c8f1c90-le64.cache-3 r, owner /var/cache/fontconfig/40a5413a52f0aade942a6f40d332b0da-le64.cache-3 r, owner /var/cache/fontconfig/467c019e582ee353435ea5c21d137ef6-le64.cache-3 r, owner /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-le64.cache-3 r, owner /var/cache/fontconfig/4ccfd7dfa79e28de5707e7cb95de1341-le64.cache-3 r, owner /var/cache/fontconfig/57aa823e41f9a2e31e2cb9ac31635b94-le64.cache-3 r, owner /var/cache/fontconfig/5a8b990ea588db7ae6c172031a595349-le64.cache-3 r, owner /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-le64.cache-3 r, owner /var/cache/fontconfig/5cc0185e3e9b9df8c6b30e86a96f0d44-le64.cache-3 r, owner /var/cache/fontconfig/61569e1a4fe6d0597e15508f2d60d0d9-le64.cache-3 r, owner /var/cache/fontconfig/63ef1f1e9c5a1e73cabd9c74547ae042-le64.cache-3 r, owner /var/cache/fontconfig/6651e4e8b4447f7addd566da328ef16e-le64.cache-3 r, owner /var/cache/fontconfig/697f5857bce675cfe8b38fb79091bea4-le64.cache-3 r, owner /var/cache/fontconfig/6a449517cee721a7de995a693ee59e16-le64.cache-3 r, owner /var/cache/fontconfig/6dcccbed3b5bff72380959e0ccbc0832-le64.cache-3 r, owner /var/cache/fontconfig/6ea59cce4e802f2782d7d6c783506ef8-le64.cache-3 r, owner /var/cache/fontconfig/701b6d58d5b641081893f9bf7836b39c-le64.cache-3 r, owner /var/cache/fontconfig/715ee54e5416bae2b5abd2fd857c7155-le64.cache-3 r, owner /var/cache/fontconfig/734f448d4d560a279c3282c93018a3b3-le64.cache-3 r, owner /var/cache/fontconfig/77892aee8d1542a17bdf9baacc88a307-le64.cache-3 r, owner /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-le64.cache-3 r, owner /var/cache/fontconfig/7829cc1e9f3ec8b16d99e1a57a63d3a9-le64.cache-3 r, owner /var/cache/fontconfig/78b285a4b06c5d0ad55de5d89175155b-le64.cache-3 r, owner /var/cache/fontconfig/78eefc686c63353186dd416767715326-le64.cache-3 r, owner /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-le64.cache-3 r, owner /var/cache/fontconfig/80357cac1144ec24c91b71cbe7fb06eb-le64.cache-3 r, owner /var/cache/fontconfig/817819233e544dbb8f9be09bb49b51cc-le64.cache-3 r, owner /var/cache/fontconfig/865f88548240fee46819705c6468c165-le64.cache-3 r, owner /var/cache/fontconfig/86ae909ac0c3805fd08cd9bc67f89368-le64.cache-3 r, owner /var/cache/fontconfig/87d2957455ec0507634fe525706a802c-le64.cache-3 r, owner /var/cache/fontconfig/89e34741d45c2631cf0c40053862475a-le64.cache-3 r, owner /var/cache/fontconfig/8cb4ed1bb8bf5538f99e4a6641fad075-le64.cache-3 r, owner /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-le64.cache-3 r, owner /var/cache/fontconfig/8dc91baf3fc4bf3095df0fd67475f898-le64.cache-3 r, owner /var/cache/fontconfig/8dca95aa8058d3607fdd339c21a293e6-le64.cache-3 r, owner /var/cache/fontconfig/8f02d4cb045bd6ce15663e43f347c9f8-le64.cache-3 r, owner /var/cache/fontconfig/8fdd5c748525fb6f6a19519c461ac135-le64.cache-3 r, owner /var/cache/fontconfig/9046c764dc2991228e881adf8c1b7f46-le64.cache-3 r, owner /var/cache/fontconfig/9ab3f04f1a27471c47832fc828308a51-le64.cache-3 r, owner /var/cache/fontconfig/9c8454330df40fdef954cabee531a9fc-le64.cache-3 r, owner /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-le64.cache-3 r, owner /var/cache/fontconfig/a2c20e9d4d61ebb956139bcd9bd1e405-le64.cache-3 r, owner /var/cache/fontconfig/a3a13dea37cd84c4476b7b936a063f8a-le64.cache-3 r, owner /var/cache/fontconfig/a60be1520482f0e5c3ba820c34aa9a06-le64.cache-3 r, owner /var/cache/fontconfig/a867bf60a662f3b45804af2c29959b67-le64.cache-3 r, owner /var/cache/fontconfig/a9d95b2130a405b9a6e4f8aaba212799-le64.cache-3 r, owner /var/cache/fontconfig/ac4e7e7646cd67fae7302b18b0927e4f-le64.cache-3 r, owner /var/cache/fontconfig/acc9eba8e488c21f2697e015023483e5-le64.cache-3 r, owner /var/cache/fontconfig/af1697ee94d40163fca997748e9d2267-le64.cache-3 r, owner /var/cache/fontconfig/b1985477ab3dc17828852c97d495ea48-le64.cache-3 r, owner /var/cache/fontconfig/b72d1675522676ebd153cd7432277c2c-le64.cache-3 r, owner /var/cache/fontconfig/b83386915dae36184c7e3985fd26e4b1-le64.cache-3 r, owner /var/cache/fontconfig/bc27d9e13c5e05cd87d0421b75d76fde-le64.cache-3 r, owner /var/cache/fontconfig/bd4304a5c64c5c3d27a52c5b1ee50f1f-le64.cache-3 r, owner /var/cache/fontconfig/bdc0d5aee443ae16477eeb93d5d52a0e-le64.cache-3 r, owner /var/cache/fontconfig/be1963acb468c9fe8a7ea99a7067f6db-le64.cache-3 r, owner /var/cache/fontconfig/c127d8335cef640278ca26da400a37c7-le64.cache-3 r, owner /var/cache/fontconfig/c3db173f8c3d1c2e736baa4071ec8c07-le64.cache-3 r, owner /var/cache/fontconfig/c3f0d743f2eeed7ccc18e0bb099b839f-le64.cache-3 r, owner /var/cache/fontconfig/c5448fed37d521c1180ed44504e5029b-le64.cache-3 r, owner /var/cache/fontconfig/c73d625070ad65f1fa91c03875dc0f32-le64.cache-3 r, owner /var/cache/fontconfig/c76430eaa90b987260065d8bea2a1576-le64.cache-3 r, owner /var/cache/fontconfig/c794414d6cecd53e40e56f88844d6cbb-le64.cache-3 r, owner /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-le64.cache-3 r, owner /var/cache/fontconfig/cc925ee3b74b59ac324fb724a094123d-le64.cache-3 r, owner /var/cache/fontconfig/cea4084f336e07c12e401012b17e7e2d-le64.cache-3 r, owner /var/cache/fontconfig/d2ad38d567438ce2ccd7cd45c35e69a8-le64.cache-3 r, owner /var/cache/fontconfig/d4478ec686f31c04cd54f9e06add9282-le64.cache-3 r, owner /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-le64.cache-3 r, owner /var/cache/fontconfig/d67d994e4dcee275fa25c790dae57008-le64.cache-3 r, owner /var/cache/fontconfig/d84d904e7951827c6697f8990ac91921-le64.cache-3 r, owner /var/cache/fontconfig/d996baef2b9476e42a0a41d5004c7f17-le64.cache-3 r, owner /var/cache/fontconfig/d9e56474551c1b59df31ff59e2f7fddc-le64.cache-3 r, owner /var/cache/fontconfig/dd7ebf4a1ab889b4cce80491088780fd-le64.cache-3 r, owner /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-le64.cache-3 r, owner /var/cache/fontconfig/e3f8215dd4ecc34134dc33327df3130d-le64.cache-3 r, owner /var/cache/fontconfig/e66a0d025e5b2f456006d05fa69d9104-le64.cache-3 r, owner /var/cache/fontconfig/e8db11159b32cbd8dbba3d0735d45619-le64.cache-3 r, owner /var/cache/fontconfig/edaa982a4f61075aba3f9385192ac696-le64.cache-3 r, owner /var/cache/fontconfig/f42925d38d87ab4e72afedf255bd31ff-le64.cache-3 r, owner /var/cache/fontconfig/f5a6f048318f484808553bafc49a9bfd-le64.cache-3 r, owner /var/cache/fontconfig/fd4d6a4eeeec6198d3470155a1d7f308-le64.cache-3 r, owner /var/cache/fontconfig/feeadfd47ae01801e7b8e6527d3a9e9c-le64.cache-3 r, owner /var/cache/fontconfig/ffcadc0256af908edf6baa714349e4d8-le64.cache-3 r, owner /var/cache/libx11/compose/l4_030_313cb605_00280cc0 r, owner /var/lib/dbus/machine-id r, } ^null-26 { owner /tmp/orbit-root/* w, } ^null-e { owner /etc/fonts/** r, owner /etc/gtk-2.0/gtkrc r, owner /etc/ld.so.cache r, owner /etc/nsswitch.conf r, owner /etc/pango/pango64.modules r, owner /etc/passwd r, owner /lib64/libc-.so mr, owner /lib64/libdbus-1.so. mr, owner /lib64/libdl-.so mr, owner /lib64/libexpat.so. mr, owner /lib64/libm-.so mr, owner /lib64/libnss_files-.so mr, owner /lib64/libpcre.so.* mr, owner /lib64/libpthread-.so mr, owner /lib64/libresolv-.so mr, owner /lib64/librt-.so mr, owner /lib64/libselinux.so. mr, owner /lib64/libuuid.so.* mr, owner /lib64/libz.so.* mr, owner /proc//cmdline r, owner /proc/filesystems r, owner /root/.gconf/apps/ r, owner /root/.gconfd/saved_state rw, owner /root/.gconfd/saved_state.orig w, owner /root/.gconfd/saved_state.tmp rw, owner /root/.xauthnORX6m r, owner /usr/lib/locale/* r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/lib64/gtk-2.0/2.10.0/engines/libclearlooks.so mr, owner /usr/lib64/jvm/java-1.6.0-sun-1.6.0/jre/lib/fonts/** r, owner /usr/lib64/libICE.so.* mr, owner /usr/lib64/libSM.so.* mr, owner /usr/lib64/libX11.so.* mr, owner /usr/lib64/libXau.so.* mr, owner /usr/lib64/libXcomposite.so.* mr, owner /usr/lib64/libXcursor.so.* mr, owner /usr/lib64/libXdamage.so.* mr, owner /usr/lib64/libXext.so.* mr, owner /usr/lib64/libXfixes.so.* mr, owner /usr/lib64/libXi.so.* mr, owner /usr/lib64/libXinerama.so.* mr, owner /usr/lib64/libXrandr.so.* mr, owner /usr/lib64/libXrender.so.* mr, owner /usr/lib64/libatk-1.0.so.* mr, owner /usr/lib64/libcairo.so.* mr, owner /usr/lib64/libdbus-glib-1.so.* mr, owner /usr/lib64/libfontconfig.so.* mr, owner /usr/lib64/libfreetype.so.* mr, owner /usr/lib64/libgdk-x11-2.0.so.* mr, owner /usr/lib64/libgdk_pixbuf-2.0.so.* mr, owner /usr/lib64/libgio-2.0.so.* mr, owner /usr/lib64/libglib-2.0.so.* mr, owner /usr/lib64/libgmodule-2.0.so.* mr, owner /usr/lib64/libgobject-2.0.so.* mr, owner /usr/lib64/libgthread-2.0.so.* mr, owner /usr/lib64/libgtk-x11-2.0.so.* mr, owner /usr/lib64/libpango-1.0.so.* mr, owner /usr/lib64/libpangocairo-1.0.so.* mr, owner /usr/lib64/libpangoft2-1.0.so.* mr, owner /usr/lib64/libpixman-1.so.* mr, owner /usr/lib64/libpng14.so.* mr, owner /usr/lib64/libsexy.so.* mr, owner /usr/lib64/libstartup-notification-1.so.* mr, owner /usr/lib64/libxcb-atom.so.* mr, owner /usr/lib64/libxcb-aux.so.* mr, owner /usr/lib64/libxcb-render-util.so.* mr, owner /usr/lib64/libxcb-render.so.* mr, owner /usr/lib64/libxcb.so.* mr, owner /usr/lib64/libxfce4util.so.* mr, owner /usr/lib64/libxfcegui4.so.* mr, owner /usr/lib64/libxfconf-0.so.* mr, owner /usr/lib64/libxml2.so.* mr, owner /usr/lib64/pango/1.6.0/modules/pango-basic-fc.so mr, owner /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, owner /usr/share/X11/locale/locale.alias r, owner /usr/share/X11/locale/locale.dir r, owner /usr/share/locale/** r, owner /usr/share/themes/ClearlooksClassic/gtk-2.0/gtkrc r, owner /usr/share/themes/Default/xfce-notify-4.0/gtkrc r, owner /var/cache/fontconfig/02f7482a3ccf4e0fecbeda21d9950555-le64.cache-3 r, owner /var/cache/fontconfig/0918c6fc686fdd9602d24ef8106b8885-le64.cache-3 r, owner /var/cache/fontconfig/0adb47949072cc2c42ab6315eac108fb-le64.cache-3 r, owner /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-le64.cache-3 r, owner /var/cache/fontconfig/0cde06d47243eb5cbd0636677c8e6e7a-le64.cache-3 r, owner /var/cache/fontconfig/0e34e50254571c97131392a388940b84-le64.cache-3 r, owner /var/cache/fontconfig/10d1ae44cd2ed33cc6bfb5cfd20ea1ef-le64.cache-3 r, owner /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-le64.cache-3 r, owner /var/cache/fontconfig/1710608526cf91d28a17160720a89129-le64.cache-3 r, owner /var/cache/fontconfig/18651cef118db95c6d3f49dec1953e88-le64.cache-3 r, owner /var/cache/fontconfig/1962d432aff2b364ee233561694770fe-le64.cache-3 r, owner /var/cache/fontconfig/1fc6330e4563720df036f62042dd071c-le64.cache-3 r, owner /var/cache/fontconfig/233192682edf6a93712eeeaf5dbebc82-le64.cache-3 r, owner /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-le64.cache-3 r, owner /var/cache/fontconfig/2dc34d67fd4c22488dd96f1c3a120652-le64.cache-3 r, owner /var/cache/fontconfig/2deb4bbeb20966677f0d3626a5d48249-le64.cache-3 r, owner /var/cache/fontconfig/2df0e5d5df539d28a5943e1b2bd34b32-le64.cache-3 r, owner /var/cache/fontconfig/2e2bc19a22005bd6cbd08f197098d064-le64.cache-3 r, owner /var/cache/fontconfig/2fa0f8583a77f5cfb817d397cc051e59-le64.cache-3 r, owner /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-le64.cache-3 r, owner /var/cache/fontconfig/318987366667abd4dfe684cc4c41b332-le64.cache-3 r, owner /var/cache/fontconfig/32eddb3bb48babf7d8f14b0530f1e9e8-le64.cache-3 r, owner /var/cache/fontconfig/3301406d6a3d932e51a72d7796713daa-le64.cache-3 r, owner /var/cache/fontconfig/3361ce7ef91d8649e12e735c3b9f8490-le64.cache-3 r, owner /var/cache/fontconfig/340538751003b31e823addb385a78158-le64.cache-3 r, owner /var/cache/fontconfig/36779a984f5b6ecbb513119daf1aaeaf-le64.cache-3 r, owner /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-le64.cache-3 r, owner /var/cache/fontconfig/3ce0b00e8c60e8af49b52781d45b8d88-le64.cache-3 r, owner /var/cache/fontconfig/3d950db533f4d42626c39c5c01a7f913-le64.cache-3 r, owner /var/cache/fontconfig/3e8e2cd8ec9054e4761f23e74bc6d8cd-le64.cache-3 r, owner /var/cache/fontconfig/3f4d0ff9ef53edd6659d46e03e7f1477-le64.cache-3 r, owner /var/cache/fontconfig/3f52a8f3cb1e8b440552e8354c8f1c90-le64.cache-3 r, owner /var/cache/fontconfig/40a5413a52f0aade942a6f40d332b0da-le64.cache-3 r, owner /var/cache/fontconfig/467c019e582ee353435ea5c21d137ef6-le64.cache-3 r, owner /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-le64.cache-3 r, owner /var/cache/fontconfig/4ccfd7dfa79e28de5707e7cb95de1341-le64.cache-3 r, owner /var/cache/fontconfig/57aa823e41f9a2e31e2cb9ac31635b94-le64.cache-3 r, owner /var/cache/fontconfig/5a8b990ea588db7ae6c172031a595349-le64.cache-3 r, owner /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-le64.cache-3 r, owner /var/cache/fontconfig/5cc0185e3e9b9df8c6b30e86a96f0d44-le64.cache-3 r, owner /var/cache/fontconfig/61569e1a4fe6d0597e15508f2d60d0d9-le64.cache-3 r, owner /var/cache/fontconfig/63ef1f1e9c5a1e73cabd9c74547ae042-le64.cache-3 r, owner /var/cache/fontconfig/6651e4e8b4447f7addd566da328ef16e-le64.cache-3 r, owner /var/cache/fontconfig/697f5857bce675cfe8b38fb79091bea4-le64.cache-3 r, owner /var/cache/fontconfig/6a449517cee721a7de995a693ee59e16-le64.cache-3 r, owner /var/cache/fontconfig/6dcccbed3b5bff72380959e0ccbc0832-le64.cache-3 r, owner /var/cache/fontconfig/6ea59cce4e802f2782d7d6c783506ef8-le64.cache-3 r, owner /var/cache/fontconfig/701b6d58d5b641081893f9bf7836b39c-le64.cache-3 r, owner /var/cache/fontconfig/715ee54e5416bae2b5abd2fd857c7155-le64.cache-3 r, owner /var/cache/fontconfig/734f448d4d560a279c3282c93018a3b3-le64.cache-3 r, owner /var/cache/fontconfig/77892aee8d1542a17bdf9baacc88a307-le64.cache-3 r, owner /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-le64.cache-3 r, owner /var/cache/fontconfig/7829cc1e9f3ec8b16d99e1a57a63d3a9-le64.cache-3 r, owner /var/cache/fontconfig/78b285a4b06c5d0ad55de5d89175155b-le64.cache-3 r, owner /var/cache/fontconfig/78eefc686c63353186dd416767715326-le64.cache-3 r, owner /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-le64.cache-3 r, owner /var/cache/fontconfig/80357cac1144ec24c91b71cbe7fb06eb-le64.cache-3 r, owner /var/cache/fontconfig/817819233e544dbb8f9be09bb49b51cc-le64.cache-3 r, owner /var/cache/fontconfig/865f88548240fee46819705c6468c165-le64.cache-3 r, owner /var/cache/fontconfig/86ae909ac0c3805fd08cd9bc67f89368-le64.cache-3 r, owner /var/cache/fontconfig/87d2957455ec0507634fe525706a802c-le64.cache-3 r, owner /var/cache/fontconfig/89e34741d45c2631cf0c40053862475a-le64.cache-3 r, owner /var/cache/fontconfig/8cb4ed1bb8bf5538f99e4a6641fad075-le64.cache-3 r, owner /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-le64.cache-3 r, owner /var/cache/fontconfig/8dc91baf3fc4bf3095df0fd67475f898-le64.cache-3 r, owner /var/cache/fontconfig/8dca95aa8058d3607fdd339c21a293e6-le64.cache-3 r, owner /var/cache/fontconfig/8f02d4cb045bd6ce15663e43f347c9f8-le64.cache-3 r, owner /var/cache/fontconfig/8fdd5c748525fb6f6a19519c461ac135-le64.cache-3 r, owner /var/cache/fontconfig/9046c764dc2991228e881adf8c1b7f46-le64.cache-3 r, owner /var/cache/fontconfig/9ab3f04f1a27471c47832fc828308a51-le64.cache-3 r, owner /var/cache/fontconfig/9c8454330df40fdef954cabee531a9fc-le64.cache-3 r, owner /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-le64.cache-3 r, owner /var/cache/fontconfig/a2c20e9d4d61ebb956139bcd9bd1e405-le64.cache-3 r, owner /var/cache/fontconfig/a3a13dea37cd84c4476b7b936a063f8a-le64.cache-3 r, owner /var/cache/fontconfig/a60be1520482f0e5c3ba820c34aa9a06-le64.cache-3 r, owner /var/cache/fontconfig/a867bf60a662f3b45804af2c29959b67-le64.cache-3 r, owner /var/cache/fontconfig/a9d95b2130a405b9a6e4f8aaba212799-le64.cache-3 r, owner /var/cache/fontconfig/ac4e7e7646cd67fae7302b18b0927e4f-le64.cache-3 r, owner /var/cache/fontconfig/acc9eba8e488c21f2697e015023483e5-le64.cache-3 r, owner /var/cache/fontconfig/af1697ee94d40163fca997748e9d2267-le64.cache-3 r, owner /var/cache/fontconfig/b1985477ab3dc17828852c97d495ea48-le64.cache-3 r, owner /var/cache/fontconfig/b72d1675522676ebd153cd7432277c2c-le64.cache-3 r, owner /var/cache/fontconfig/b83386915dae36184c7e3985fd26e4b1-le64.cache-3 r, owner /var/cache/fontconfig/bc27d9e13c5e05cd87d0421b75d76fde-le64.cache-3 r, owner /var/cache/fontconfig/bd4304a5c64c5c3d27a52c5b1ee50f1f-le64.cache-3 r, owner /var/cache/fontconfig/bdc0d5aee443ae16477eeb93d5d52a0e-le64.cache-3 r, owner /var/cache/fontconfig/be1963acb468c9fe8a7ea99a7067f6db-le64.cache-3 r, owner /var/cache/fontconfig/c127d8335cef640278ca26da400a37c7-le64.cache-3 r, owner /var/cache/fontconfig/c3db173f8c3d1c2e736baa4071ec8c07-le64.cache-3 r, owner /var/cache/fontconfig/c3f0d743f2eeed7ccc18e0bb099b839f-le64.cache-3 r, owner /var/cache/fontconfig/c5448fed37d521c1180ed44504e5029b-le64.cache-3 r, owner /var/cache/fontconfig/c73d625070ad65f1fa91c03875dc0f32-le64.cache-3 r, owner /var/cache/fontconfig/c76430eaa90b987260065d8bea2a1576-le64.cache-3 r, owner /var/cache/fontconfig/c794414d6cecd53e40e56f88844d6cbb-le64.cache-3 r, owner /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-le64.cache-3 r, owner /var/cache/fontconfig/cc925ee3b74b59ac324fb724a094123d-le64.cache-3 r, owner /var/cache/fontconfig/cea4084f336e07c12e401012b17e7e2d-le64.cache-3 r, owner /var/cache/fontconfig/d2ad38d567438ce2ccd7cd45c35e69a8-le64.cache-3 r, owner /var/cache/fontconfig/d4478ec686f31c04cd54f9e06add9282-le64.cache-3 r, owner /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-le64.cache-3 r, owner /var/cache/fontconfig/d67d994e4dcee275fa25c790dae57008-le64.cache-3 r, owner /var/cache/fontconfig/d84d904e7951827c6697f8990ac91921-le64.cache-3 r, owner /var/cache/fontconfig/d996baef2b9476e42a0a41d5004c7f17-le64.cache-3 r, owner /var/cache/fontconfig/d9e56474551c1b59df31ff59e2f7fddc-le64.cache-3 r, owner /var/cache/fontconfig/dd7ebf4a1ab889b4cce80491088780fd-le64.cache-3 r, owner /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-le64.cache-3 r, owner /var/cache/fontconfig/e3f8215dd4ecc34134dc33327df3130d-le64.cache-3 r, owner /var/cache/fontconfig/e66a0d025e5b2f456006d05fa69d9104-le64.cache-3 r, owner /var/cache/fontconfig/e8db11159b32cbd8dbba3d0735d45619-le64.cache-3 r, owner /var/cache/fontconfig/edaa982a4f61075aba3f9385192ac696-le64.cache-3 r, owner /var/cache/fontconfig/f42925d38d87ab4e72afedf255bd31ff-le64.cache-3 r, owner /var/cache/fontconfig/f5a6f048318f484808553bafc49a9bfd-le64.cache-3 r, owner /var/cache/fontconfig/fd4d6a4eeeec6198d3470155a1d7f308-le64.cache-3 r, owner /var/cache/fontconfig/feeadfd47ae01801e7b8e6527d3a9e9c-le64.cache-3 r, owner /var/cache/fontconfig/ffcadc0256af908edf6baa714349e4d8-le64.cache-3 r, } }	about 1 year ago		57	btk	Edit	History
opensuse11.0	/usr/bin/mlnet	#include <tunables/global> /usr/bin/mlnet flags=(complain) { #include <abstractions/base> }	over 2 years ago	/var/apparmor/profile.log	109	salvatore_uras	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago	1	97	systems	Edit	History
opensuse11.0	/usr/bin/xpdf	#include <tunables/global> /usr/bin/xpdf { #include <abstractions/X> #include <abstractions/base> /** r, owner /home//tmp/ w, /home//tmp/ r, }	over 3 years ago	new profiles - on suse11	147	antonomasia	Edit	History
opensuse11.0	/usr/bin/ed2k	#include <tunables/global> /usr/bin/ed2k flags=(complain) { #include <abstractions/base> }	over 3 years ago	ed2k	259	rmvlad	Edit	History
opensuse10.3	/usr/lib/cups/backend/ipp	#include <tunables/global> /usr/lib/cups/backend/ipp flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> network inet dgram, /usr/lib/cups/backend/ipp mr, /var/run/avahi-daemon/socket w, /var/spool/cups/* r, }	over 4 years ago	Testing printing use cases	325	dominic	Edit	History
opensuse10.3	/usr/lib/helix-dbus-server/helix-dbus-server.bin	#include <tunables/global> /usr/lib/helix-dbus-server/helix-dbus-server.bin flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> /proc/cpuinfo r, /usr/lib/RealPlayer10/**.so mr, /usr/lib/helix-dbus-server/helix-dbus-server.bin mr, }	over 4 years ago	argh, switch things back to complain for a while	271	jmichael	Edit	History
opensuse11.0	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> deny /dev/tty rw, deny /etc/ssh/ssh_config r, deny owner /home/warezwaldo/.ssh/ w, deny owner /home/warezwaldo/.ssh/known_hosts ra, deny /usr/bin/ssh r, deny /var/run/nscd/passwd r, deny /var/run/nscd/services r, deny /var/run/nscd/socket w, /usr/lib/ssh/ssh-askpass rix, }	over 2 years ago	quick lock down for local net with RDP	111	warezwaldo	Edit	History
opensuse11.0	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin { #include <abstractions/base> #include <abstractions/nameservice> /proc/*/mounts r, /tmp/.X11-unix/X0 w, /usr/bin/pidgin r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20.mo r, }	over 3 years ago	pidgin	138	tobto	Edit	History
opensuse10.3	/usr/sbin/httpd2-worker	#include <tunables/global> /usr/sbin/httpd2-worker flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability chown, capability net_bind_service, capability setgid, capability setuid, /etc/apache2/conf.d/ r, /etc/apache2/default-server.conf r, /etc/apache2/errors.conf r, /etc/apache2/httpd.conf r, /etc/apache2/listen.conf r, /etc/apache2/mod_autoindex-defaults.conf r, /etc/apache2/mod_info.conf r, /etc/apache2/mod_log_config.conf r, /etc/apache2/mod_mime-defaults.conf r, /etc/apache2/mod_status.conf r, /etc/apache2/mod_userdir.conf r, /etc/apache2/mod_usertrack.conf r, /etc/apache2/server-tuning.conf r, /etc/apache2/ssl-global.conf r, /etc/apache2/sysconfig.d/global.conf r, /etc/apache2/sysconfig.d/include.conf r, /etc/apache2/sysconfig.d/loadmodule.conf r, /etc/apache2/uid.conf r, /etc/apache2/vhosts.d/ r, /etc/gai.conf r, /etc/mime.types r, /usr/lib/** mr, /usr/sbin/httpd2-worker mr, /usr/share/apache2/error/HTTP_FORBIDDEN.html.var r, /usr/share/apache2/error/contact.html.var r, /usr/share/apache2/error/include/bottom.html r, /usr/share/apache2/error/include/top.html r, /var/log/apache2/access_log a, /var/log/apache2/error_log a, /var/run/cgisock.4982 w, /var/run/httpd2.pid w, }	over 3 years ago	testlog2	208	entel	Edit	History
opensuse10.3	/usr/bin/compiz	#include <tunables/global> /usr/bin/compiz { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/freedesktop.org> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/compiz ixmr, /usr/bin/gtk-window-decorator Px, /usr/share/compiz/.png r, /usr/share/compiz/*.xml r, }	over 4 years ago	Import of jmichaels profiles	261	dominic	Edit	History
opensuse10.3	/usr/lib/GConf/2/gconfd-2	#include <tunables/global> /usr/lib/GConf/2/gconfd-2 flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/** r, /home//.gconf/ rw, /home//.gconf/** rw, /home//.gconfd/ w, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /tmp/gconfd-/lock/ klrw, /usr/lib/GConf/2/gconfd-2 mr, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	240	jmichael	Edit	History
opensuse11.0	/home/julio.chaves/soft/skype-2.0.0.72/skype	#include <tunables/global> /home/julio.chaves/soft/skype-2.0.0.72/skype flags=(complain) { #include <abstractions/base> }	over 2 years ago		177	julio010101	Edit	History
opensuse11.0	/home/michal/bin/novell_start	#include <tunables/global> /home/michal/bin/novell_start flags=(complain) { #include <abstractions/base> }	over 3 years ago		117	misak	Edit	History
opensuse10.3	/opt/kde3/bin/kopete	#include <tunables/global> /opt/kde3/bin/kopete flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kopete mr, /opt/kde3/lib/libso mr, /usr/lib/qt3/lib/libso mr, }	over 4 years ago	Kopete profile	190	foxwood	Edit	History
ubuntu-gutsy	/tmp/upxBLFO3MBALNH	#include <tunables/global> /tmp/upxBLFO3MBALNH flags=(complain) { #include <abstractions/base> /tmp/upxBLFO3MBALNH mr, }	over 4 years ago		310	larsthegeek	Edit	History
opensuse10.3	/usr/lib/gnome-keyring-1/gnome-keyring-ask	#include <tunables/global> /usr/lib/gnome-keyring-1/gnome-keyring-ask flags=(complain) { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /home//.Xauthority r, /home//.fontconfig/* r, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /usr/lib/gnome-keyring-1/gnome-keyring-ask mr, }	over 4 years ago	argh, switch things back to complain for a while	316	jmichael	Edit	History
opensuse10.3	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gai.conf r, /etc/ssh/ssh_config r, /home//.ssh/known_hosts ar, /root/.ssh/ w, /root/.ssh/known_hosts rw, /usr/bin/ssh mr, /var/run/nscd/ r, }	over 4 years ago	bogus upload, ignore ...	163	crispin	Edit	History
opensuse10.3	/usr/bin/test	#include <tunables/global> /usr/bin/test { #include <abstractions/base> /usr/bin/test mr, }	over 4 years ago	test	230	root	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/firefox/firefox.sh mr, }	over 4 years ago	tristan	243	e1337r0ck3rX7	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	about 1 year ago	preliminary settings	85	barbie	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/basename rix, /bin/bash rix, /bin/grep rix, /dev/tty rw, /etc/gre.d/ r, /etc/gre.d/1.9.2.0-64bit.system.conf r, /etc/magic r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//.mozilla/firefox/cj48l318.nowy/ r, owner /home//.mozilla/firefox/cj48l318.nowy/.parentlock wk, owner /home//.mozilla/firefox/cj48l318.nowy/Cache/875C4B98d01 a, owner /home//.mozilla/firefox/cj48l318.nowy/Cache/8D8E3437d01 r, owner /home//.mozilla/firefox/cj48l318.nowy/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/cj48l318.nowy/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/cj48l318.nowy/Cache/_CACHE_003_ rw, owner /home//.mozilla/firefox/cj48l318.nowy/Cache/_CACHE_MAP_ rw, owner /home//.mozilla/firefox/cj48l318.nowy/XPC.mfasl r, owner /home//.mozilla/firefox/cj48l318.nowy/XUL.mfasl r, owner /home//.mozilla/firefox/cj48l318.nowy/bookmarkbackups/ r, owner /home//.mozilla/firefox/cj48l318.nowy/cert8.db rw, owner /home//.mozilla/firefox/cj48l318.nowy/compatibility.ini r, owner /home//.mozilla/firefox/cj48l318.nowy/compreg.dat r, owner /home//.mozilla/firefox/cj48l318.nowy/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/cj48l318.nowy/cookies.sqlite rwk, owner /home//.mozilla/firefox/cj48l318.nowy/cookies.sqlite-journal w, owner /home//.mozilla/firefox/cj48l318.nowy/extensions.cache r, owner /home//.mozilla/firefox/cj48l318.nowy/extensions.ini r, owner /home//.mozilla/firefox/cj48l318.nowy/extensions/ r, owner /home//.mozilla/firefox/cj48l318.nowy/formhistory.sqlite rwk, owner /home//.mozilla/firefox/cj48l318.nowy/key3.db rw, owner /home//.mozilla/firefox/cj48l318.nowy/localstore-1.rdf rw, owner /home//.mozilla/firefox/cj48l318.nowy/localstore.rdf rw, owner /home//.mozilla/firefox/cj48l318.nowy/lock w, owner /home//.mozilla/firefox/cj48l318.nowy/permissions.sqlite rwk, owner /home//.mozilla/firefox/cj48l318.nowy/places.sqlite rwk, owner /home//.mozilla/firefox/cj48l318.nowy/places.sqlite-journal rw, owner /home//.mozilla/firefox/cj48l318.nowy/pluginreg.dat r, owner /home//.mozilla/firefox/cj48l318.nowy/prefs-1.js rw, owner /home//.mozilla/firefox/cj48l318.nowy/prefs.js rw, owner /home//.mozilla/firefox/cj48l318.nowy/search.json r, owner /home//.mozilla/firefox/cj48l318.nowy/search.sqlite rwk, owner /home//.mozilla/firefox/cj48l318.nowy/secmod.db r, owner /home//.mozilla/firefox/cj48l318.nowy/sessionstore.js w, owner /home//.mozilla/firefox/cj48l318.nowy/signons.sqlite wk, owner /home//.mozilla/firefox/cj48l318.nowy/signons.sqlite-journal w, owner /home//.mozilla/firefox/cj48l318.nowy/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/cj48l318.nowy/urlclassifier3.sqlite-journal w, owner /home//.mozilla/firefox/cj48l318.nowy/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/cj48l318.nowy/xpti.dat r, owner /home//.mozilla/firefox/profiles.ini r, owner /home//.qt/qtrc r, owner /proc//cmdline r, owner /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /usr/bin/dbus-launch rix, /usr/bin/expr rix, /usr/bin/file rix, /usr/lib64/firefox/firefox rix, /usr/share/misc/magic.mgc r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/chrome.manifest r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/susefox-pfs.js r, /var/lib/dbus/machine-id r, }	over 2 years ago		168	student	Edit	History
opensuse11.0	/usr/lib/opera/9.62/opera	#include <tunables/global> /usr/lib/opera/9.62/opera flags=(complain) { #include <abstractions/base> }	over 3 years ago		259	agelos	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> deny capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /etc/magic r, /usr/bin/file rix, /usr/lib/firefox/firefox px, /usr/share/misc/magic.mgc r, }	over 3 years ago	Ersteinrichtung	183	kuschel	Edit	History
opensuse10.3	/usr/bin/evolution	#include <tunables/global> /usr/bin/evolution flags=(complain) { #include <abstractions/base> /usr/bin/evolution mr, }	over 4 years ago	Appevolution	281	vmbaumgaertel	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/dash ixr, /bin/ls ixr, /bin/pwd ixr, /bin/sed ixr, /bin/which ixr, /etc/firefox/pref/ r, /etc/firefox/pref/firefox.js r, /home/ r, /home/** krw, /proc//mounts r, /proc/meminfo r, /usr/bin/basename ixr, /usr/bin/dirname ixr, /usr/lib/firefox/firefox mr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/run-mozilla.sh ixr, /usr/share/firefox/chrome/ r, /usr/share/firefox/chrome/browser.jar r, /usr/share/firefox/chrome/browser.manifest r, /usr/share/firefox/chrome/classic.jar r, /usr/share/firefox/chrome/classic.manifest r, /usr/share/firefox/chrome/comm.manifest r, /usr/share/firefox/chrome/en-US.jar r, /usr/share/firefox/chrome/en-US.manifest r, /usr/share/firefox/chrome/icons/default/default.xpm r, /usr/share/firefox/chrome/pippki.manifest r, /usr/share/firefox/chrome/reporter.jar r, /usr/share/firefox/chrome/reporter.manifest r, /usr/share/firefox/chrome/toolkit.jar r, /usr/share/firefox/chrome/toolkit.manifest r, /usr/share/firefox/defaults/autoconfig/platform.js r, /usr/share/firefox/defaults/autoconfig/prefcalls.js r, /usr/share/firefox/defaults/pref/ r, /usr/share/firefox/defaults/pref/apturl.js r, /usr/share/firefox/defaults/pref/channel-prefs.js r, /usr/share/firefox/defaults/pref/firefox-branding.js r, /usr/share/firefox/defaults/pref/firefox-l10n.js r, /usr/share/firefox/defaults/pref/firefox.js r, /usr/share/firefox/defaults/pref/reporter.js r, /usr/share/firefox/defaults/pref/vendor.js r, /usr/share/firefox/greprefs/ r, /usr/share/firefox/greprefs/all.js r, /usr/share/firefox/greprefs/firefox.ubuntu-prefs.js r, /usr/share/firefox/greprefs/security-prefs.js r, /usr/share/firefox/greprefs/xpinstall.js r, /usr/share/firefox/res/broken-image.gif r, /usr/share/firefox/res/charsetData.properties r, /usr/share/firefox/res/charsetalias.properties r, /usr/share/firefox/res/fonts/* r, /usr/share/firefox/res/forms.css r, /usr/share/firefox/res/hiddenWindow.html r, /usr/share/firefox/res/html.css r, /usr/share/firefox/res/loading-image.gif r, /usr/share/firefox/res/quirk.css r, /usr/share/firefox/res/ua.css r, /usr/share/firefox/searchplugins/ r, /usr/share/firefox/searchplugins/amazondotcom.xml r, /usr/share/firefox/searchplugins/answers.xml r, /usr/share/firefox/searchplugins/creativecommons.xml r, /usr/share/firefox/searchplugins/debsearch.src r, /usr/share/firefox/searchplugins/eBay.xml r, /usr/share/firefox/searchplugins/google.xml r, /usr/share/firefox/searchplugins/wikipedia.src r, /usr/share/firefox/searchplugins/yahoo.xml r, /usr/share/myspell/dicts/ r, /usr/share/ubuntu-artwork/home/firefox-index.html r, /usr/share/ubuntu-artwork/img/header.png r, /usr/share/ubuntu-artwork/img/headerlogo.png r, /usr/share/ubuntu-artwork/ubuntu.css r, }	over 4 years ago	test change	239	asfj	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename { #include <abstractions/base> /bin/basename mr, }	over 4 years ago	20071015	281	davepl	Edit	History
opensuse10.3	/opt/kde3/bin/kontact	#include <tunables/global> /opt/kde3/bin/kontact flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kontact mr, /opt/kde3/lib/libso mr, /usr/lib/qt3/lib/libso mr, }	over 4 years ago	1	244	robsn81	Edit	History
opensuse11.0	/usr/sbin/nmbd	#include <tunables/global> /usr/sbin/nmbd flags=(complain) { #include <abstractions/base> }	about 1 year ago	nmbdchanges	63	chaseblu	Edit	History
opensuse10.3	/usr/bin/vmware	#include <tunables/global> /usr/bin/vmware { #include <abstractions/base> #include <abstractions/bash> /bin/* ixr, /dev/tty rw, /etc/vmware/locations r, /usr/** Uxmr, /usr/lib/vmware/lib/wrapper-gtk24.sh Px, }	over 4 years ago	vmware	318	knoble	Edit	History
opensuse10.3	/usr/sbin/vsftpd	#include <tunables/global> /usr/sbin/vsftpd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, /etc/pam.d/* r, /etc/vsftpd.conf r, /srv/ftp/ r, /srv/ftp/* r, /srv/ftp// r, /srv/ftp/pub/OSL103/ r, /srv/ftp/pub/OSL103/suse/i586/openvpn-2.0.9-44.i586.rpm r, /srv/ftp/pub/OSL103_addon/ r, /srv/ftp/pub/skolenie/ r, /srv/ftp/pub/skolenie/ kr, /srv/ftp/pub/skolenie/Linux_I/ r, /srv/ftp/pub/skolenie/Linux_II/ r, /srv/ftp/pub/skolenie/Linux_III/ r, /srv/ftp/pub/skolenie/Linux_IV/ r, /usr/sbin/vsftpd mr, }	over 4 years ago		164	ftpd	Edit	History
opensuse10.3	/usr/lib/gdm/gdmgreeter	#include <tunables/global> /usr/lib/gdm/gdmgreeter flags=(complain) { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gdm/locale.alias r, /proc/meminfo r, /usr/bin/fvwm Px, /usr/bin/gnome Px, /usr/bin/twm Px, /usr/lib/gdm/gdmgreeter mr, /usr/share/gdm/BuiltInSessions/ r, /usr/share/gdm/BuiltInSessions/.desktop r, /usr/share/gdm/themes/GDM-SuSE/.desktop r, /usr/share/gdm/themes/GDM-SuSE/.png r, /usr/share/gdm/themes/GDM-SuSE/.svg r, /usr/share/gdm/themes/GDM-SuSE/.xml r, /usr/share/xsessions/ r, /usr/share/xsessions/.desktop r, /var/cache/libx11/compose/* r, /var/lib/gdm/* r, /var/lib/gdm/.fontconfig/* r, /var/run/gdm_socket w, }	over 4 years ago	few extra changes	183	jmichael	Edit	History
ubuntu-gutsy	/usr/lib/fast-user-switch-applet/fast-user-switch-applet	#include <tunables/global> /usr/lib/fast-user-switch-applet/fast-user-switch-applet { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/ r, /etc/gdm/ r, /etc/shells r, /etc/sound/events/* r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc//mounts r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/bin/gnome-about-me Px, /usr/lib/fast-user-switch-applet/fast-user-switch-applet mr, /usr/share/gnome-2.0/ui/* r, /var/run/gdm_socket w, }	over 4 years ago	gnome	198	hbpteam	Edit	History
opensuse11.0	prueba	prueba	about 1 year ago		63	imdsevilla	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> deny /dev/ r, deny /dev/shm/ r, owner /dev/shm/pulse-shm-1143239359 mrw, owner /dev/shm/pulse-shm-3932873158 mr, owner /dev/shm/pulse-shm-4261196888 mrw, /dev/snd/* mrw, /dev/video0 rw, /etc/kde4rc r, /etc/pulse/client.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, /home//.config/Trolltech.conf rk, /home//.fontconfig/ r, owner /home//.kde/share/config/kioslaverc r, owner /home//.kde4/share/config/kdeglobals rk, /home//.mozilla/ r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, owner /home//.mozilla/firefox/3i3ngug8.default/ABE/ r, owner /home//.mozilla/firefox/3i3ngug8.default/ABE/rules/ r, owner /home//.mozilla/firefox/3i3ngug8.default/adblockplus/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/components/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/content/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/defaults/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/defaults/preferences/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/idl/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/cs/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/da-DK/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/de-DE/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/en-GB/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/en-US/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/es-AR/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/es-ES/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/et-EE/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/fr/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/he-IL/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/hu-HU/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/it-IT/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/ja/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/ko-KR/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/nl-NL/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/pl-PL/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/pt-BR/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/ru-RU/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/sv-SE/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/uk/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/vi/ r, owner /home//.mozilla/firefox/3i3ngug8.default/extensions/\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8\}/locale/zh-CN/ r, owner /home/marcinz/.mozilla/extensions/ r, owner /home/marcinz/.mozilla/extensions/\{3550f703-e582-4d05-9a08-453d09bdfdc6\}/ r, /proc/interrupts r, /tmp/.ICE-unix/ w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/iconengines/ r, /usr/lib/qt4/plugins/imageformats/ r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/locale/* r, /usr/share/icons/** r, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, }	about 1 year ago	a	65	marcinz	Edit	History
opensuse11.0	Yuriy	suse_apparmor	over 2 years ago	syslog_apparmor	149	lucky_iya	Edit	History
opensuse11.0	/sbin/yast2	#include <tunables/global> /sbin/yast2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	thebahdest	160	thebahdness	Edit	History
ubuntu-gutsy	/usr/bin/nautilus	#include <tunables/global> /usr/bin/nautilus { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome/defaults.list r, /etc/sound/events/.soundlist r, /home//* rw, /home//.Trash/ rw, /home//.config/ r, /home//.config/user-dirs.dirs r, /home//.gnome/gnome-vfs/.trash_entry_cache rw, /home//.gnome2/ rw, /home//.gnome2/nautilus-scripts/ rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.kde/share/config/kdeglobals r, /home//.nautilus/metafiles/* rw, /home//.thumbnails/normal/ r, /home//.thumbnails/normal/.png r, /home//Desktop/ rw, /home//Desktop/ rw, /home//Documents/ rw, /home//Music/ rw, /home//Pictures/ rw, /home//Public/ rw, /home//Templates/ rw, /home//Videos/ rw, /home//themes/ r, /home/void/ rw, /proc//mounts r, /proc/filesystems r, /proc/meminfo r, /tmp/* klrw, /usr/bin/evince Px, /usr/bin/nautilus mr, /usr/lib/nautilus-cd-burner/mapping-daemon Px, /usr/local/share/applications/ r, /usr/local/share/applications/.cache r, /usr/local/share/icons/ r, /usr/share/applications/ r, /usr/share/applications/.cache r, /usr/share/applications/.desktop r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/.cache r, /usr/share/mime/application/.xml r, /usr/share/nautilus/ui/.xml r, }	over 4 years ago	gnome	301	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/update-manager	#include <tunables/global> /usr/bin/update-manager { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/update-manager mr, }	over 4 years ago	gnome	239	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/tracker-search-tool	#include <tunables/global> /usr/bin/tracker-search-tool { #include <abstractions/base> /usr/bin/tracker-search-tool mr, }	over 4 years ago	gnome	272	hbpteam	Edit	History
opensuse10.3	/usr/sbin/named	#include <tunables/global> /usr/sbin/named flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, /usr/sbin/named mr, /var/lib/named/127.0.0.zone r, /var/lib/named/dev/random r, /var/lib/named/etc/localtime r, /var/lib/named/etc/named.conf r, /var/lib/named/etc/named.conf.include r, /var/lib/named/etc/rndc.key r, /var/lib/named/localhost.zone r, /var/lib/named/root.hint r, /var/lib/named/var/run/named/named.pid w, }	over 2 years ago		153	tonnylu	Edit	History
opensuse11.0	/usr/bin/esd	#include <tunables/global> /usr/bin/esd { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /dev/shm/pulse* rw, /proc/cpuinfo r, /tmp/pulse* rwl, /usr/bin/esd mr, }	over 2 years ago		147	shimingzhou	Edit	History
opensuse10.3	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh flags=(complain) { #include <abstractions/base> /usr/bin/ssh mr, }	over 3 years ago	first	172	optimus	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		240	samavedam_vijay	Edit	History
opensuse10.3	/usr/bin/net	#include <tunables/global> /usr/bin/net flags=(complain) { #include <abstractions/base> network inet dgram, /etc/samba/dhcp.conf r, /etc/samba/smb.conf r, /usr/bin/net mr, }	over 4 years ago	argh, switch things back to complain for a while	182	jmichael	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/ifup-services	#include <tunables/global> /etc/sysconfig/network/scripts/ifup-services { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/sysconfig/network/config r, /etc/sysconfig/network/scripts/functions r, /etc/sysconfig/network/scripts/functions.common r, /etc/sysconfig/network/scripts/ifup-services mr, /proc/meminfo r, }	over 4 years ago	none	227	cinimod	Edit	History
opensuse10.3	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox { #include <abstractions/base> /etc/gre.d/ r, /etc/gre.d/* rpx, /usr/ rpx, /usr/* rpx, /usr/lib/firefox/firefox mrpx, }	over 3 years ago	x	161	internet2	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> audit network inet6 stream, audit network stream, /bin/basename rcx, /bin/bash rix, /bin/grep rix, /etc/gnome-vfs-2.0/modules/ r, /etc/gre.d/ r, /etc/gre.d/* r, /etc/mailcap r, /etc/mime.types r, /etc/opt/kde3/*/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.adobe/Flash_Player// r, owner /home//.config/Trolltech.conf r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.fontconfig/* r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/applications/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.macromedia/Flash_Player/* r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/* rwk, owner /home//.qt/qtrc r, owner /home//Documents/.etc/mozilla/extensions// r, owner /home//Documents/.etc/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//Documents/.etc/mozilla/firefox/ r, owner /home//Documents/.etc/mozilla/firefox// r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/ rwk, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default// rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash/Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache/ rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/adblockplus/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/chrome/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/extensions/* r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/gm_scripts/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/searchplugins/ rw, owner /home//downloads/ w, owner /home/draglor/Documents/Temp/ w, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/ark.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, owner /proc//cmdline r, owner /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /usr/bin/file rcx, /usr/lib/firefox/firefox mrpx, /usr/lib/firefox/firefox.sh rix, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/locale-bundle/de/LC_MESSAGES/ r, /usr/share/locale-bundle/ru/LC_MESSAGES/* r, /usr/share/mime/application/x-bzip.xml r, /usr/share/mozilla/extensions/*/ r, /var/cache/gio-2.0/defaults.list r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, profile /bin/basename { #include <abstractions/base> /bin/basename mr, } profile /usr/bin/file { #include <abstractions/base> /etc/magic r, /usr/bin/file mr, /usr/share/misc/magic.mgc r, } }	over 3 years ago		213	netxxx	Edit	History
opensuse10.3	/FYP/FileReadWrite1	#include <tunables/global> /FYP/FileReadWrite1 flags=(complain) { #include <abstractions/base> /FYP/FileReadWrite1 mr, /FYP/prices.dat rw, }	over 4 years ago	11111	222	FYPJ	Edit	History
opensuse10.3	/opt/kde3/bin/kmail	#include <tunables/global> /opt/kde3/bin/kmail flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kmail mr, /opt/kde3/lib/libso mr, }	over 4 years ago	qaz	264	vismanza	Edit	History
opensuse10.3	/usr/bin/gnome-wm	#include <tunables/global> /usr/bin/gnome-wm { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/grep ixr, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/compiz Px, /usr/bin/gnome-wm mr, /usr/bin/xdpyinfo Px, }	over 4 years ago	none	239	cinimod	Edit	History
opensuse10.3	/usr/sbin/vmware-serverd	#include <tunables/global> /usr/sbin/vmware-serverd flags=(complain) { #include <abstractions/base> /usr/sbin/vmware-serverd mr, }	over 4 years ago	vmware_server_delta	385	jfernandez	Edit	History
ubuntu-gutsy	/usr/lib/postfix/anvil	# $Id: usr.lib.postfix.anvil 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/anvil { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /etc/mailname r, /etc/postfix/main.cf r, /usr/lib/postfix/anvil rmix, /{var/spool/postfix/,}pid/unix.anvil rw, /{var/spool/postfix/,}private/anvil rw, @{PROC}/net/if_inet6 r, }	over 3 years ago		229	stive	Edit	History
opensuse10.3	/usr/bin/setxkbmap	#include <tunables/global> /usr/bin/setxkbmap { #include <abstractions/base> /usr/bin/setxkbmap mr, }	over 4 years ago	none	213	cinimod	Edit	History
opensuse10.3	/usr/bin/eog	#include <tunables/global> /usr/bin/eog { #include <abstractions/X> #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/accels/eog rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//.thumbnails/* rw, /home//Desktop/* r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /usr/bin/eog mr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/eog/* r, /usr/share/gdm/applications/ r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, }	over 4 years ago	Import of jmichaels profiles	261	dominic	Edit	History
opensuse10.3	/usr/lib/vte/gnome-pty-helper	#include <tunables/global> /usr/lib/vte/gnome-pty-helper flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> /dev/ptmx rw, /usr/lib/vte/gnome-pty-helper mr, /var/log/wtmp kw, /var/run/utmp krw, }	over 4 years ago	argh, switch things back to complain for a while	258	jmichael	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/ifup-services	#include <tunables/global> /etc/sysconfig/network/scripts/ifup-services { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/sysconfig/network/config r, /etc/sysconfig/network/scripts/functions r, /etc/sysconfig/network/scripts/functions.common r, /etc/sysconfig/network/scripts/ifup-services mr, /proc/meminfo r, }	over 4 years ago	Import of jmichaels profiles	266	dominic	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	firefox	159	osmo	Edit	History
opensuse11.0	/usr/local/bin/balsa	#include <tunables/global> /usr/local/bin/balsa flags=(complain) { #include <abstractions/base> network dgram, network stream, /etc/bonobo-activation/bonobo-activation-config.xml r, /etc/fonts/** r, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/hosts r, /etc/nsswitch.conf r, /etc/opt/kde3/share/icons/ r, /etc/opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.balsa/config r, owner /home//.balsa/config-private r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.esd_auth r, owner /home//.fontconfig/a8d626dfaa99cb0ebf0eba05ac19f7aa-x86.cache-2 r, owner /home//.gnome2/accels/balsa r, owner /home//.gnome2/balsa rw, owner /home//.gnome2/balsa.8ABKLU rw, owner /home//.gnome2/balsa.BY8JLU rw, owner /home//.gnome2/balsa.TIBKLU rw, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.qt/qtrc r, owner /home//mail/ r, owner /home//mail/draftbox r, owner /home//mail/outbox r, owner /home//mail/sentbox r, owner /home//mail/trash r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/16x16/actions/editdelete.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/button_ok.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/editdelete.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/fileprint.png r, /opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /opt/kde3/share/icons/crystalsvg/index.theme r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, owner /proc//cmdline r, owner /proc//fd/ r, /tmp/ r, /tmp/.X11-unix/X0 w, owner /tmp/gconfd-maku/lock/ior r, owner /tmp/orbit-maku/ w, owner /tmp/orbit-maku/bonobo-activation-register.lock rwk, owner /tmp/orbit-maku/bonobo-activation-server-ior rw, owner /tmp/orbit-maku/linc-10de-0-7c60b88a30767 w, owner /tmp/orbit-maku/linc-10e0-0-6eb0bc863ef9b w, owner /tmp/orbit-maku/linc-e0a-0-23e2c9e19c70b w, /usr/bin/dbus-launch rix, /usr/lib/ mr, /usr/lib/bonobo/bonobo-activation-server rix, /usr/local/bin/balsa r, /usr/local/lib/bonobo/servers/ r, /usr/local/lib/bonobo/servers/GNOME_Balsa.server r, /usr/local/share/balsa/ r, /usr/local/share/balsa/hicolor/16x16/apps/ r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-mark-all.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-mbox-draft.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-mbox-sent.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-mbox-tray-empty.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-mbox-tray-full.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-next-flagged.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-next-part.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-next-unread.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-next.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-postpone.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-previous-part.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-previous.png r, /usr/local/share/balsa/hicolor/16x16/apps/balsa-reply-all.png r, /usr/local/share/balsa/hicolor/24x24/apps/ r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-mark-all.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-marked-new.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-next-flagged.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-next-part.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-next-unread.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-next.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-postpone.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-preview.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-previous-part.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-previous.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-reply-all.png r, /usr/local/share/balsa/hicolor/24x24/apps/balsa-trash-empty.png r, /usr/local/share/balsa/pixmaps/balsa_icon.png r, /usr/local/share/locale/pl/LC_MESSAGES/balsa.mo r, /usr/local/share/pixmaps/ r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/fonts/ r, /usr/share/icons/ r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/sb_v_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/Gilouche/icon-theme.cache r, /usr/share/icons/Gilouche/index.theme r, /usr/share/icons/Tango/icon-theme.cache r, /usr/share/icons/Tango/index.theme r, /usr/share/icons/crystalsvg/128x128/actions/ r, /usr/share/icons/crystalsvg/128x128/apps/ r, /usr/share/icons/crystalsvg/128x128/devices/ r, /usr/share/icons/crystalsvg/128x128/filesystems/ r, /usr/share/icons/crystalsvg/128x128/mimetypes/ r, /usr/share/icons/crystalsvg/16x16/actions/ r, /usr/share/icons/crystalsvg/16x16/apps/ r, /usr/share/icons/crystalsvg/16x16/devices/ r, /usr/share/icons/crystalsvg/16x16/filesystems/ r, /usr/share/icons/crystalsvg/16x16/mimetypes/ r, /usr/share/icons/crystalsvg/22x22/actions/ r, /usr/share/icons/crystalsvg/22x22/apps/ r, /usr/share/icons/crystalsvg/22x22/devices/ r, /usr/share/icons/crystalsvg/22x22/filesystems/ r, /usr/share/icons/crystalsvg/22x22/mimetypes/ r, /usr/share/icons/crystalsvg/32x32/actions/ r, /usr/share/icons/crystalsvg/32x32/apps/ r, /usr/share/icons/crystalsvg/32x32/devices/ r, /usr/share/icons/crystalsvg/32x32/filesystems/ r, /usr/share/icons/crystalsvg/32x32/mimetypes/ r, /usr/share/icons/crystalsvg/48x48/actions/ r, /usr/share/icons/crystalsvg/48x48/apps/ r, /usr/share/icons/crystalsvg/48x48/devices/ r, /usr/share/icons/crystalsvg/48x48/filesystems/ r, /usr/share/icons/crystalsvg/48x48/mimetypes/ r, /usr/share/icons/crystalsvg/64x64/actions/ r, /usr/share/icons/crystalsvg/64x64/apps/ r, /usr/share/icons/crystalsvg/64x64/devices/ r, /usr/share/icons/crystalsvg/64x64/filesystems/ r, /usr/share/icons/crystalsvg/64x64/mimetypes/ r, /usr/share/icons/crystalsvg/scalable/actions/ r, /usr/share/icons/crystalsvg/scalable/apps/ r, /usr/share/icons/crystalsvg/scalable/devices/ r, /usr/share/icons/crystalsvg/scalable/filesystems/ r, /usr/share/icons/crystalsvg/scalable/mimetypes/ r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/locale-bundle/pl/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libbonoboui-2.0.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libgnomeui-2.0.mo r, /usr/share/pixmaps/ r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/lib/dbus/machine-id r, /var/run/nscd/socket w, }	over 3 years ago	balsa	145	maku	Edit	History
opensuse10.3	/usr/bin/konqueror	#include <tunables/global> /usr/bin/konqueror flags=(complain) { #include <abstractions/base> /usr/bin/konqueror mr, }	over 4 years ago		133	coco	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-router	#include <tunables/global> /usr/sbin/jabberd2-router flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-router mr, }	over 4 years ago		222	igoriii	Edit	History
opensuse10.3	/usr/bin/iceauth	#include <tunables/global> /usr/bin/iceauth { #include <abstractions/base> /home//.ICEauthority lrw, /home//.ICEauthority* lw, /usr/bin/iceauth mr, }	over 4 years ago	none	155	cinimod	Edit	History
opensuse10.3	/usr/bin/gnome-wm	#include <tunables/global> /usr/bin/gnome-wm { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/grep ixr, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/compiz Px, /usr/bin/gnome-wm mr, /usr/bin/xdpyinfo Px, }	over 4 years ago	Import of jmichaels profiles	268	dominic	Edit	History
opensuse11.0	/root/Desktop/Google-googleearth.desktop	#include <tunables/global> /root/Desktop/Google-googleearth.desktop flags=(complain) { #include <abstractions/base> }	about 1 year ago	googleEarth	100	frayedknot2	Edit	History
opensuse11.0	/usr/bin/emesene	#include <tunables/global> /usr/bin/emesene flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	emesene_reg	126	leandroux	Edit	History
ubuntu-gutsy	/etc/cron.daily/5snort	#include <tunables/global> /etc/cron.daily/5snort { #include <abstractions/base> /bin/dash ixr, /etc/cron.daily/5snort mr, }	over 3 years ago		137	stive	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	# ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> / r, / r, /bin/basename mixr, /bin/bash mixr, /bin/gawk mixr, /bin/grep mixr, /bin/ps Uxr, /cur/ rw, /dat/*/ rw, /home//** rw, /home//.mozilla/firefox/* krw, /opt/kde3/bin/kpdf Px, /usr/bin/audacity px, /usr/bin/file mixr, /usr/bin/gtk-gnash Px, /usr/bin/mplayer px, /usr/bin/which mixr, /usr/lib/GConf/2/gconfd-2 Px, /usr/lib/browser-plugins/* mr, /usr/lib/firefox/firefox ixr, /usr/lib/firefox/firefox-bin px, /usr/lib/firefox/firefox.sh rmix, /usr/lib/firefox/mozilla-xremote-client px, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update16/jre/bin/java_vm Px, /usr/lib/win32/drvc.so mr, /usr/lib/xine/plugins/1.23/*.so mr, /usr/lib/xine/plugins/1.23/post/xineplug_post_goom.so mr, /usr/lib/xine/plugins/1.23/post/xineplug_post_tvtime.so mr, /var/tmp/ rw, }	over 3 years ago	internet radio u.a.	223	shivver-fox	Edit	History
opensuse10.3	/usr/bin/nm-applet	#include <tunables/global> /usr/bin/nm-applet flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /usr/bin/bug-buddy ixr, /usr/bin/nm-applet mr, /usr/share/nm-applet/.glade r, }	over 4 years ago	some bug-buddy rules and other misc updates	292	jmichael	Edit	History
opensuse10.3	/usr/bin/setxkbmap	#include <tunables/global> /usr/bin/setxkbmap { #include <abstractions/base> /usr/bin/setxkbmap mr, }	over 4 years ago	Import of jmichaels profiles	227	dominic	Edit	History
opensuse10.3	/usr/bin/deluge	#include <tunables/global> /usr/bin/deluge flags=(complain) { #include <abstractions/base> /tmp/* r, /usr/bin/deluge mr, /usr/bin/python2.5 ix, }	over 4 years ago		222	mdemsar	Edit	History
opensuse10.3	/usr/bin/eog	#include <tunables/global> /usr/bin/eog { #include <abstractions/X> #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/accels/eog rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//.thumbnails/* rw, /home//Desktop/* r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /usr/bin/eog mr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/eog/* r, /usr/share/gdm/applications/ r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, }	over 4 years ago	none	230	cinimod	Edit	History
opensuse10.3	/usr/lib/gnome-screensaver/gnome-screensaver-dialog	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-dialog flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /home//.Xauthority r, /home//.fontconfig/* lrw, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/unix2_chkpwd Px, /usr/bin/gdmflexiserver Px, /usr/bin/hal-find-by-property Pxmr, /usr/lib/gnome-screensaver/gnome-screensaver-dialog mr, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/gnome-screensaver/*.glade r, }	over 4 years ago	more updates	187	jmichael	Edit	History
ubuntu-gutsy	/usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws	#include <tunables/global> /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws { #include <abstractions/base> /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws mr, }	over 4 years ago	gnome	316	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/libgconf2-4/gconf-sanity-check-2	#include <tunables/global> /usr/lib/libgconf2-4/gconf-sanity-check-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home/*/.Xauthority r, /tmp/gconf-test-locking-file-05V9ZT klrw, /usr/lib/libgconf2-4/gconf-sanity-check-2 mr, }	over 4 years ago	gnome	246	hbpteam	Edit	History
opensuse11.0	/usr/bin/totem	#include <tunables/global> /usr/bin/totem flags=(complain) { #include <abstractions/base> /dev/shm/ r, owner /dev/shm/pulse-shm-1579451937 r, owner /dev/shm/pulse-shm-2903800023 r, owner /dev/shm/pulse-shm-2933723921 rw, owner /dev/shm/pulse-shm-4283548248 r, /etc/fonts/** r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtkrc r, /etc/pango/pango.modules r, /etc/pulse/client.conf r, owner /home//.ICEauthority r, owner /home//.config/gtk-2.0/gtkfilechooser.ini r, owner /home//.config/gtk-2.0/gtkfilechooser.ini.6XUP7U w, owner /home//.config/totem/state.ini r, owner /home/*/.config/user-dirs.dirs r, }	9 months ago		35	AlexDudko	Edit	History
opensuse10.3	/usr/bin/wine	#include <tunables/global> /usr/bin/wine { #include <abstractions/base> /usr/bin/wine mr, }	over 4 years ago	wabi	183	axary	Edit	History
opensuse10.3	/opt/skype_static-1.4.0.118-oss/skype	#include <tunables/global> /opt/skype_static-1.4.0.118-oss/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /opt/skype_static-1.4.0.118-oss/skype mr, }	over 4 years ago		157	CarlosAlbertoRibeiro	Edit	History
ubuntu-gutsy	/usr/bin/Xorg	#include <tunables/global> /usr/bin/Xorg { #include <abstractions/base> #include <abstractions/nvidia> #include <abstractions/user-tmp> capability dac_override, capability ipc_owner, capability setgid, capability setuid, capability sys_admin, capability sys_rawio, capability sys_tty_config, /bin/dash Px, /dev/input/mice rw, /dev/mem r, /dev/tty0 w, /dev/tty7 rw, /etc/X11/xorg.conf r, /etc/X11/xserver/SecurityPolicy r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home/void/.gnome2/share/fonts/* r, /proc/bus/pci/00/00.0 r, /proc/bus/pci/00/01.0 r, /proc/bus/pci/00/01.1 r, /proc/bus/pci/00/02.0 r, /proc/bus/pci/00/02.1 r, /proc/bus/pci/00/02.2 r, /proc/bus/pci/00/05.0 r, /proc/bus/pci/00/06.0 r, /proc/bus/pci/00/08.0 r, /proc/bus/pci/00/0a.0 r, /proc/bus/pci/00/0b.0 rw, /proc/bus/pci/00/0e.0 r, /proc/bus/pci/00/18.0 r, /proc/bus/pci/00/18.1 r, /proc/bus/pci/00/18.2 r, /proc/bus/pci/00/18.3 r, /proc/bus/pci/01/00.0 rw, /proc/bus/pci/02/08.0 r, /proc/bus/pci/02/08.1 r, /proc/bus/pci/02/0a.0 r, /proc/driver/nvidia/registry r, /proc/meminfo r, /proc/modules r, /sys/bus/pci/devices/ r, /sys/devices/pci0000:00/0000:00:00.0/resource r, /sys/devices/pci0000:00/0000:00:01.0/resource r, /sys/devices/pci0000:00/0000:00:01.1/resource r, /sys/devices/pci0000:00/0000:00:02.0/resource r, /sys/devices/pci0000:00/0000:00:02.1/resource r, /sys/devices/pci0000:00/0000:00:02.2/resource r, /sys/devices/pci0000:00/0000:00:05.0/resource r, /sys/devices/pci0000:00/0000:00:06.0/resource r, /sys/devices/pci0000:00/0000:00:08.0/resource r, /sys/devices/pci0000:00/0000:00:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/0000:01:00.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.1/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/resource r, /sys/devices/pci0000:00/0000:00:18.0/resource r, /sys/devices/pci0000:00/0000:00:18.1/resource r, /sys/devices/pci0000:00/0000:00:18.2/resource r, /sys/devices/pci0000:00/0000:00:18.3/resource r, /usr/bin/Xorg mr, /usr/lib/ mr, /usr/share/X11/xkb/rules/base r, /usr/share/fonts/ r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.alias r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.dir r, /var/lib/gdm/:0.Xauth r, /var/lib/xkb/server-0.xkm rw, /var/log/Xorg.0.log rw, /var/log/Xorg.0.log.old w, /var/run/acpid.socket w, }	over 4 years ago	gnome	297	hbpteam	Edit	History
opensuse10.3	/usr/sbin/ntpdate	#include <tunables/global> /usr/sbin/ntpdate { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability sys_nice, capability sys_time, /etc/gai.conf r, /proc/meminfo r, /usr/sbin/ntpdate mr, /var/run/nscd/services r, }	over 4 years ago	none	197	cinimod	Edit	History
opensuse10.3	/usr/bin/mplayer	#include <tunables/global> /usr/bin/mplayer flags=(complain) { #include <abstractions/X> #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/nameservice> /etc/mplayer/input.conf r, /etc/mplayer/mplayer.conf r, /home//.Xauthority r, /home//.mplayer/* rw, /home//Desktop/ r, /home//Desktop/** r, /home//Documents/ r, /home//Documents/** r, /opt/kde3/lib/libso mr, /usr/bin/mplayer mr, /usr/lib/win32/.dll mr, /usr/share/terminfo/* r, }	over 4 years ago	few extra changes	207	jmichael	Edit	History
opensuse11.0	/usr/sbin/dnsmasq	# Last Modified: Sun Nov 2 17:22:57 2008 #include <tunables/global> /usr/sbin/dnsmasq { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, capability net_bind_service, capability setgid, capability setuid, network dgram, network inet raw, network stream, owner /etc/dnsmasq.conf r, /proc/** r, owner /usr/sbin/dnsmasq r, /var/lib/misc/dnsmasq.leases rw, owner /var/run/dnsmasq.pid a, }	over 3 years ago		218	jh4xsy	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	over 3 years ago	ss	191	bkracht	Edit	History
opensuse10.3	/etc/gdm/PreSession/Default	#include <tunables/global> /etc/gdm/PreSession/Default flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> capability setgid, capability setuid, /bin/bash ixr, /bin/sed ixr, /etc/gdm/PreSession/Default mr, /usr/bin/gdmflexiserver Px, /usr/bin/xsetroot Px, }	over 4 years ago	argh, switch things back to complain for a while	181	jmichael	Edit	History
opensuse11.0	/usr/bin/sftp	#include <tunables/global> /usr/bin/sftp flags=(complain) { #include <abstractions/base> }	over 2 years ago	sftp.lmg.changelog	144	elemgee	Edit	History
opensuse10.3	/sbin/ifconfig	#include <tunables/global> /sbin/ifconfig flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, capability sys_module, /proc/net/ r, /proc/net/* r, /sbin/ifconfig mr, }	over 4 years ago	few minor changes	181	jmichael	Edit	History
opensuse10.3	/usr/sbin/ntpdate	#include <tunables/global> /usr/sbin/ntpdate { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability sys_nice, capability sys_time, /etc/gai.conf r, /proc/meminfo r, /usr/sbin/ntpdate mr, /var/run/nscd/services r, }	over 4 years ago	Import of jmichaels profiles	211	dominic	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c mrw, /dev/snd/pcmC0D0p mrw, /dev/snd/pcmC0D1c mrw, /dev/snd/pcmC0D1p mrw, /dev/snd/pcmC1D0c mrw, /dev/snd/timer r, /dev/tty rw, /dev/v4l/video0 rw, /etc/Trolltech.conf kr, /etc/fonts/** r, /etc/gai.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.fontconfig/* r, /home//.fonts.conf r, /home//.kde/share/config/kioslaverc r, /proc//maps r, /proc/interrupts r, /proc/sys/kernel/osrelease r, /proc/sys/kernel/ostype r, /tmp/* w, /usr/bin/skype mr, /usr/lib/ mr, /usr/share/X11/ r, /usr/share/alsa/ r, /usr/share/apps/konsole/fonts/ mr, /usr/share/fonts/ mr, /usr/share/icons/default/index.theme r, /usr/share/icons/wonderland/cursors/hand2 r, /usr/share/icons/wonderland/cursors/left_ptr r, /usr/share/icons/wonderland/cursors/xterm r, /usr/share/locale/ mr, /usr/share/skype/ kmr, /var/cache/fontconfig/ mr, }	over 4 years ago		186	mirkenstein	Edit	History
opensuse10.3	/usr/bin/fetchmail	#include <tunables/global> /usr/bin/fetchmail { #include <abstractions/base> network all, /etc r, /etc/fetchmailrc r, /etc/passwd r, /etc/resolv.conf r, /usr/bin/fetchmail mr, /var/log/fetchmail Ux, /var/run/nscd/socket w, }	over 4 years ago		190	gunter	Edit	History
opensuse10.3	/usr/bin/which	#include <tunables/global> /usr/bin/which { #include <abstractions/base> /usr/bin/which mrpx, }	over 3 years ago	/usr/lib/seamonkey/seamonkey-bin	188	internet2	Edit	History
opensuse10.3	/usr/bin/mailx	#include <tunables/global> /usr/bin/mailx flags=(complain) { #include <abstractions/base> /usr/bin/mailx mr, }	over 3 years ago	mail-aaprofile	218	serg	Edit	History
opensuse11.0	/bin/sed	#include <tunables/global> /bin/sed flags=(complain) { #include <abstractions/base> /bin/sed mr, owner /home/*/.qt/qtrc r, }	over 3 years ago	opera	133	vojtaeus	Edit	History
ubuntu-gutsy	/usr/bin/gnome-dictionary	#include <tunables/global> /usr/bin/gnome-dictionary { #include <abstractions/base> /usr/bin/gnome-dictionary mr, }	over 4 years ago	gnome	249	hbpteam	Edit	History
opensuse10.3	/usr/local/bin/mkntpwd	#include <tunables/global> /usr/local/bin/mkntpwd { #include <abstractions/base> /usr/local/bin/mkntpwd mr, }	over 4 years ago		261	arclyde	Edit	History
ubuntu-gutsy	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh { #include <abstractions/base> /usr/bin/ssh mr, }	over 4 years ago		245	guyome	Edit	History
ubuntu-gutsy	/usr/lib/postfix/tlsmgr	# $Id: usr.lib.postfix.tlsmgr 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/tlsmgr { #include <abstractions/base> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /etc/postfix/prng_exch rw, /usr/lib/postfix/tlsmgr rmix, /var/lib/postfix/* krw, /var/run/__db.smtpd_tls_session_cache.db rw, /var/run/smtpd_tls_session_cache.db rw, /{var/spool/postfix/,}private/tlsmgr r, }	over 3 years ago		246	stive	Edit	History
opensuse10.3	/usr/lib/openldap/slapd	#include <tunables/global> /usr/lib/openldap/slapd flags=(complain) { #include <abstractions/base> /usr/lib/openldap/slapd mr, }	over 3 years ago	Ldap neu	194	franksuess	Edit	History
ubuntu-gutsy	/usr/bin/evince	#include <tunables/global> /usr/bin/evince { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/dash ixr, /etc/esound/esd.conf r, /etc/sound/events/.soundlist r, /home//* rw, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.icons/OSX_Cursors_v0.2/cursors/ r, /home//Desktop/.pdf r, /proc//mounts r, /usr/bin/evince mr, /usr/local/share/icons/ r, /usr/share/evince/.glade r, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/**/ r, }	over 4 years ago	kradio1	252	jophn	Edit	History
opensuse11.0	/usr/bin/dtomcat6	#include <tunables/global> /usr/bin/dtomcat6 { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> /bin/bash ix, /bin/sed rix, /dev/tty rw, /etc/java/java.conf r, /etc/tomcat6/catalina.properties r, /etc/tomcat6/context.xml r, /etc/tomcat6/logging.properties r, /etc/tomcat6/server.xml r, owner /etc/tomcat6/tomcat-users.xml rw, owner /etc/tomcat6/tomcat-users.xml.new rw, owner /etc/tomcat6/tomcat-users.xml.old w, /etc/tomcat6/tomcat6.conf r, /etc/tomcat6/web.xml r, owner /proc//coredump_filter w, owner /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/sched_compat_yield r, /proc/uptime r, /srv/tomcat6/webapps/ r, /srv/tomcat6/webapps/ROOT/WEB-INF/ r, /srv/tomcat6/webapps/ROOT/WEB-INF/web.xml r, /srv/tomcat6/webapps/examples/WEB-INF/ r, /srv/tomcat6/webapps/examples/WEB-INF// r, /srv/tomcat6/webapps/examples/WEB-INF// r, /srv/tomcat6/webapps/examples/WEB-INF/// r, /srv/tomcat6/webapps/examples/WEB-INF//*/ r, /srv/tomcat6/webapps/examples/WEB-INF/web.xml r, /sys/devices/system/cpu/ r, owner /tmp/.com_ibm_tools_attach/ r, owner /tmp/.com_ibm_tools_attach/* rwk, owner /tmp/.com_ibm_tools_attach/** rwk, /usr/bin/build-classpath rix, /usr/bin/dtomcat6 r, /usr/lib64/jvm/java-1_6_0-ibm-1.6.0/jre/bin/java rix, /usr/share/java-utils/java-functions r, /usr/share/java/* r, /usr/share/java/tomcat6/ r, /usr/share/java/tomcat6/* r, /usr/share/tomcat6/bin/* r, /usr/share/zoneinfo/ r, owner /var/cache/tomcat6/Catalina/localhost/ r, owner /var/cache/tomcat6/Catalina/localhost/_/SESSIONS.ser rw, owner /var/cache/tomcat6/Catalina/localhost/examples/SESSIONS.ser rw, owner /var/log/tomcat6/* w, owner /var/run/tomcat6.pid w, }	about 1 month ago	222	15	laurel	Edit	History
ubuntu-gutsy	/usr/bin/gstm	#include <tunables/global> /usr/bin/gstm { #include <abstractions/base> /usr/bin/gstm mr, }	over 4 years ago	gnome	361	hbpteam	Edit	History
opensuse10.3	/usr/bin/gnome-cups-icon	#include <tunables/global> /usr/bin/gnome-cups-icon flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.cups/lpoptions r, /home//.gnome2_private/ w, /tmp/orbit-*/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/gnome-cups-icon mr, /var/run/cups/cups.sock w, /var/run/nscd/services r, }	over 4 years ago	some bug-buddy rules and other misc updates	251	jmichael	Edit	History
opensuse10.3	/usr/bin/beagle-search	#include <tunables/global> /usr/bin/beagle-search flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/beagle-search mr, }	over 4 years ago	few more profile tweaks	326	jmichael	Edit	History
opensuse10.3	/usr/bin/eog	#include <tunables/global> /usr/bin/eog { #include <abstractions/X> #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> / r, /Archiv/ r, /Archiv/** r, /etc/esd.conf r, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xpdfrc r, /etc/xpdfrc-cjk r, /etc/xpdfrc-cjk-auto r, /etc/xpdfrc-cjk.sjis r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.beagle/socket w, /home//.config/gtk-2.0/gtkfilechooser.ini r, /home//.config/gtk-2.0/gtkfilechooser.ini.* w, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/accels/eog rw, /home//.gnome2/accels/evince rw, /home//.gnome2/eog/ w, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/mime.cache r, /home//.local/share/mime/subclasses r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//.thumbnails/* rw, /home//Desktop/ rw, /home//Desktop/ rw, "/media/UDISK 2.0/" r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//mounts r, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/eog mr, /usr/bin/evince ixr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/eog/** r, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/16x16/actions/ r, /usr/share/evince/icons/hicolor/22x22/actions/ r, /usr/share/evince/icons/hicolor/24x24/actions/ r, /usr/share/evince/icons/hicolor/24x24/actions/zoom-fit-page.png r, /usr/share/evince/icons/hicolor/24x24/actions/zoom-fit-width.png r, /usr/share/evince/icons/hicolor/32x32/actions/ r, /usr/share/evince/icons/hicolor/48x48/actions/ r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/mimeinfo.cache r, /usr/share/locale-bundle/de/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/eog.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/evince.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gnome-vfs-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnomeui-2.0.mo r, /usr/share/mime/inode/directory.xml r, /usr/share/xpdf/thai/Thai.nameToUnicode r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, /var/run/cups/cups.sock w, /var/run/nscd/services r, }	over 4 years ago		175	overwrite	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox { #include <abstractions/base> #include <abstractions/gnome> deny owner /home/student/.bash_history r, deny owner /home/student/.bashrc r, deny owner /home/student/.config/gtk-2.0/gtkfilechooser.ini rw, deny owner /home/student/.config/gtk-2.0/gtkfilechooser.ini.BRIPTV rw, deny owner /home/student/.config/gtk-2.0/gtkfilechooser.ini.G7K5TV rw, deny owner /home/student/.config/gtk-2.0/gtkfilechooser.ini.KZ2OTV rw, deny owner /home/student/.config/gtk-2.0/gtkfilechooser.ini.O0V4TV rw, deny owner /home/student/.config/gtk-2.0/gtkfilechooser.ini.QXHOTV rw, deny owner /home/student/.config/user-dirs.dirs r, deny owner /home/student/.dmrc r, deny owner /home/student/.esd_auth r, deny owner /home/student/.gtk-bookmarks r, deny owner /home/student/.gtkrc-2.0-kde4 r, deny owner /home/student/.gvimrc r, deny owner /home/student/.lesshst r, deny owner /home/student/.local/share/applications/defaults.list r, deny owner /home/student/.pulse-cookie r, deny owner /home/student/.recently-used.xbel r, deny owner /home/student/.viminfo r, deny owner /home/student/.vimrc r, deny owner "/home/student/Desktop/Onet.pl - Polski Portal Internetowy.html" w, deny /usr/share/applications/MozillaFirefox.desktop r, deny /usr/share/applications/abiword.desktop r, deny /usr/share/applications/eog.desktop r, deny /usr/share/applications/f-spot-view.desktop r, deny /usr/share/applications/flashplayer.desktop r, deny /usr/share/applications/gimp.desktop r, deny /usr/share/applications/google-chrome.desktop r, deny /usr/share/applications/gpicview.desktop r, deny /usr/share/applications/kde4/gwenview.desktop r, deny /usr/share/applications/kde4/kfmclient_html.desktop r, deny /usr/share/applications/kde4/krita_jpeg.desktop r, deny /usr/share/applications/kde4/krita_png.desktop r, deny /usr/share/applications/kde4/okularApplication_kimgio.desktop r, deny /usr/share/applications/kde4/showfoto.desktop r, deny /usr/share/applications/kompozer.desktop r, deny /usr/share/applications/mimeinfo.cache r, deny /usr/share/applications/mtpaint.desktop r, deny /usr/share/applications/opera-browser.desktop r, deny /usr/share/applications/pgadmin3.desktop r, / r, /etc/fstab r, /etc/gai.conf r, /etc/gre.d/ r, /etc/gre.d/1.9.2.13-64bit.system.conf r, /etc/host.conf r, /etc/hosts r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/nsswitch.conf r, /etc/opt/kde3/share/** r, /etc/passwd r, /etc/resolv.conf r, /etc/rpc r, /etc/services r, owner /home// r, /home//* r, owner /home//.config/* w, owner /home//.icons/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.mozilla/* rwk, owner /home//Desktop/ r, owner /home//Desktop/* r, owner /home//Downloads/ r, /opt/kde3/share/* r, owner /proc//mounts r, /proc/filesystems r, /usr/lib64/* mr, /usr/share/** r, /var/cache/gio-2.0/defaults.list r, }	about 1 year ago	entry10	64	alfito	Edit	History
opensuse11.0	/etc/init.d/apache2	#include <tunables/global> /etc/init.d/apache2 { #include <abstractions/base> #include <abstractions/bash> audit network all, /bin/bash rwix, ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	over 2 years ago		141	systems	Edit	History
opensuse11.0	/usr/bin/wine-preloader	#include <tunables/global> /usr/bin/wine-preloader { #include <abstractions/base> }	over 2 years ago		167	Aleksandr	Edit	History
ubuntu-gutsy	/usr/sbin/postfix	#include <tunables/global> /usr/sbin/postfix { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability kill, capability setgid, capability setuid, capability sys_chroot, capability sys_tty_config, /bin/dash ixr, /bin/grep ixr, /bin/sed ixr, /bin/sleep ixr, /bin/uname Px, /dev/tty a, /etc/mailname r, /etc/postfix/* r, /etc/postfix/postfix-script ixr, /etc/ssl/certs/ssl-cert-snakeoil.pem r, /etc/ssl/openssl.cnf r, /etc/ssl/private/ssl-cert-snakeoil.key r, /home//.forward r, /home//.maildir/ lw, /proc/sys/kernel/ngroups_max r, /root/.maildir/ lw, /usr/bin/mawk ixr, /usr/lib/postfix/* mr, /usr/lib/postfix/anvil ixr, /usr/lib/postfix/bounce ixr, /usr/lib/postfix/cleanup ixr, /usr/lib/postfix/error ixr, /usr/lib/postfix/flush ixr, /usr/lib/postfix/local ixr, /usr/lib/postfix/master ixr, /usr/lib/postfix/pickup ixr, /usr/lib/postfix/proxymap ixr, /usr/lib/postfix/qmgr ixr, /usr/lib/postfix/scache ixr, /usr/lib/postfix/showq ixr, /usr/lib/postfix/smtp ixr, /usr/lib/postfix/smtpd ixr, /usr/lib/postfix/tlsmgr ixr, /usr/lib/postfix/trivial-rewrite ixr, /usr/sbin/postconf ixr, /usr/sbin/postfix mr, /usr/sbin/postlog ixr, /usr/sbin/postsuper ixr, /var/lib/amavis/.maildir/** lw, /var/lib/postfix/prng_exch krw, /var/lib/postfix/smtp_scache.db krw, /var/lib/postfix/smtpd_scache.db krw, /var/spool/postfix/active/ r, /var/spool/postfix/active/* krw, /var/spool/postfix/defer/ krw, /var/spool/postfix/deferred/ r, /var/spool/postfix/deferred/ rw, /var/spool/postfix/etc/* r, /var/spool/postfix/flush/ r, /var/spool/postfix/flush/* krw, /var/spool/postfix/hold/ r, /var/spool/postfix/incoming/ r, /var/spool/postfix/incoming/* rw, /var/spool/postfix/lib/libso mr, /var/spool/postfix/maildrop/ r, /var/spool/postfix/maildrop/* rw, /var/spool/postfix/pid/* krw, /var/spool/postfix/private/* w, /var/spool/postfix/public/* rw, /var/spool/postfix/trace/* krw, /var/www/.maildir/** lw, }	over 3 years ago		129	stive	Edit	History
opensuse11.0	/usr/bin/a11y	#include <tunables/global> /usr/bin/a11y { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	a2psa11ychange	212	ravee	Edit	History
opensuse11.0	/usr/lib/opera/9.62/opera	#include <tunables/global> /usr/lib/opera/9.62/opera flags=(complain) { #include <abstractions/base> #include <abstractions/bash> network dgram, network inet dgram, network inet stream, network inet6 stream, network stream, deny owner /home/maku/.opera/cache4/opr00479 w, deny owner /home/maku/.opera/cache4/opr0048J a, deny owner /home/maku/.opera/cache4/opr0048K a, deny owner /home/maku/.opera/cache4/opr0048L a, deny owner /home/maku/.opera/cache4/opr0048M a, deny owner /home/maku/.opera/cache4/opr0048N a, deny owner /home/maku/.opera/cache4/opr0048O a, deny owner /home/maku/.opera/cache4/opr0048P a, deny owner /home/maku/.opera/cache4/opr0048Q a, deny owner /home/maku/.opera/cache4/opr0048R a, deny owner /home/maku/.opera/cache4/opr0048S a, deny owner /home/maku/.opera/cache4/opr0048T a, deny owner /home/maku/.opera/cache4/opr0048U a, deny owner /home/maku/.opera/cache4/opr0048V a, deny owner /home/maku/.opera/cache4/opr0048W a, deny owner /home/maku/.opera/cache4/opr0048X a, deny owner /home/maku/.opera/cache4/opr0048Y a, deny owner /home/maku/.opera/cache4/opr0048Z a, deny owner /home/maku/.opera/cache4/opr00490 a, deny owner /home/maku/.opera/cache4/opr00491 a, deny owner /home/maku/.opera/cache4/opr00492 a, deny owner /home/maku/.opera/cache4/opr00493 a, deny owner /home/maku/.opera/cache4/opr00494 a, deny owner /home/maku/.opera/cache4/opr00495 a, deny owner /home/maku/.opera/cache4/opr00496 a, deny owner /home/maku/.opera/cache4/opr00497 a, deny owner /home/maku/.opera/cache4/opr00498 a, deny owner /home/maku/.opera/cache4/opr00499 a, deny owner /home/maku/.opera/cache4/opr0049A a, deny owner /home/maku/.opera/cache4/opr0049B a, deny owner /home/maku/.opera/cache4/opr0049C a, deny owner /home/maku/.opera/cache4/opr0049D a, deny owner /home/maku/.opera/cache4/opr0049E a, deny owner /home/maku/.opera/cache4/opr0049F a, deny owner /home/maku/.opera/cache4/opr0049G a, deny owner /home/maku/.opera/cache4/opr0049H a, deny owner /home/maku/.opera/cache4/opr0049I a, deny owner /home/maku/.opera/cache4/opr0049J a, deny owner /home/maku/.opera/cache4/opr0049K a, deny owner /home/maku/.opera/cache4/opr0049L a, deny owner /home/maku/.opera/cache4/opr0049M a, deny owner /home/maku/.opera/cache4/opr0049N a, deny owner /home/maku/.opera/cache4/opr0049O a, deny owner /home/maku/.opera/cache4/opr0049P a, deny owner /home/maku/.opera/cache4/opr0049Q a, deny owner /home/maku/.opera/cache4/revocation/oprc9nt5z a, deny owner /home/maku/.opera/images/www.f-prot.com.idx r, deny owner /home/maku/.opera/images/www.google.com.idx r, deny owner /home/maku/.opera/opr9s77ak a, deny owner /home/maku/.opera/oprand.dat w, deny owner /home/maku/.opera/opssl6.dat w, deny owner /home/maku/.opera/typed_history.xml w, deny owner /home/maku/.opera/vps/0004/wb.vx-j a, deny /usr/share/opera/styles/error.css r, /bin/gunzip rix, /etc/X11/kstylerc r, /etc/X11/qt_plugins_3.3rc r, /etc/X11/qtrc r, /etc/fonts/** r, /etc/group r, /etc/host.conf r, /etc/hosts r, /etc/mailcap rk, /etc/nsswitch.conf r, /etc/opera6rc rk, /etc/opera6rc.fixed rk, /etc/opt/kde3/share/applications/mimeinfo.cache rk, /etc/opt/kde3/share/icons/ r, /etc/passwd r, /etc/resolv.conf r, owner /home// rw, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.fontconfig/a8d626dfaa99cb0ebf0eba05ac19f7aa-x86.cache-2 r, owner /home//.kde/share/config/kcmnspluginrc rwk, owner /home//.opera/ rw, owner /home//.opera/browser.js rk, owner /home//.opera/cache4/ r, owner /home//.opera/cache4/dcache4.url rwk, owner /home//.opera/cache4/opr0043W rk, owner /home//.opera/cache4/opr0046R rk, owner /home//.opera/cache4/opr0046S rk, owner /home//.opera/cache4/opr0046T rk, owner /home//.opera/cache4/opr0046U rk, owner /home//.opera/cache4/opr0046W rk, owner /home//.opera/cache4/opr0046Z rk, owner /home//.opera/cache4/opr00470 rk, owner /home//.opera/cache4/opr00471 rk, owner /home//.opera/cache4/opr00474 rk, owner /home//.opera/cache4/opr00475 rk, owner /home//.opera/cache4/opr00476 rk, owner /home//.opera/cache4/opr00478 rk, owner /home//.opera/cache4/opr00479 rk, owner /home//.opera/cache4/opr0047A rk, owner /home//.opera/cache4/opr0047C rk, owner /home//.opera/cache4/opr0047D rk, owner /home//.opera/cache4/opr0047E rk, owner /home//.opera/cache4/opr0047J rk, owner /home//.opera/cache4/opr0047K rk, owner /home//.opera/cache4/opr0047L rk, owner /home//.opera/cache4/opr0047M rk, owner /home//.opera/cache4/opr0047N rk, owner /home//.opera/cache4/opr0047O rk, owner /home//.opera/cache4/opr0047P rk, owner /home//.opera/cache4/opr0047Q rk, owner /home//.opera/cache4/opr0047S rk, owner /home//.opera/cache4/opr0047W rk, owner /home//.opera/cache4/opr00483 w, owner /home//.opera/cache4/opr00485 w, owner /home//.opera/cache4/opr00487 rk, owner /home//.opera/cache4/opr0048A wk, owner /home//.opera/cache4/opr0048B wk, owner /home//.opera/cache4/opr0048D wk, owner /home//.opera/cache4/opr0048E rwk, owner /home//.opera/cache4/opr0048F wk, owner /home//.opera/cache4/opr0048G rwk, owner /home//.opera/cache4/opr0048H rwk, owner /home//.opera/cache4/opr0048I wk, owner /home//.opera/cache4/oprHjb7yH rwk, owner /home//.opera/cache4/oprKK3maZ rwk, owner /home//.opera/cache4/oprbqzPkh rwk, owner /home//.opera/cache4/opsrp3XZ6Kw rw, owner /home//.opera/cache4/opsrpHLJwPF rw, owner /home//.opera/cache4/opsrpkPCLkH rw, owner /home//.opera/cache4/revocation/ r, owner /home//.opera/cache4/revocation/dcache4.url rwk, owner /home//.opera/cache4/revocation/opr0TdhZP rwk, owner /home//.opera/cache4/revocation/opr1w7qkj rwk, owner /home//.opera/cache4/revocation/oprBL6s5f rwk, owner /home//.opera/cache4/revocation/oprHbpv5T rwk, owner /home//.opera/cache4/revocation/opsrpDj3pgy rw, owner /home//.opera/cache4/revocation/opsrpEvfp5z rw, owner /home//.opera/cache4/revocation/opsrpvlimgW rw, owner /home//.opera/cache4/revocation/opsrpvpVLE4 rw, owner /home//.opera/cache4/revocation/vlink4.dat rwk, owner /home//.opera/cookies4.dat rwk, owner /home//.opera/download.dat rwk, owner /home//.opera/fontswitch.ini rwk, owner /home//.opera/global.dat rwk, owner /home//.opera/images/http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgoogle%2Ffavicon.ico rk, owner /home//.opera/images/http%3A%2F%2Ftechnet.microsoft.com%2Ffavicon.ico rk, owner /home//.opera/images/redir.opera.com.idx rk, owner /home//.opera/images/technet.microsoft.com.idx rk, owner /home//.opera/lock rwk, owner /home//.opera/mail/ w, owner /home//.opera/mail/accounts.ini rwk, owner /home//.opera/mail/index.ini rwk, owner /home//.opera/mail/indexer/indexer.ax rwk, owner /home//.opera/mail/indexer/indexer.bx rwk, owner /home//.opera/mail/indexer/message_id rwk, owner /home//.opera/mail/lexicon/lexicon.ax rwk, owner /home//.opera/mail/lexicon/lexicon.bx rwk, owner /home//.opera/mail/omailbase.dat rwk, owner /home//.opera/mail/opr4NYOBc rwk, owner /home//.opera/mail/opr7k0eKT rwk, owner /home//.opera/mail/oprAKscmI rwk, owner /home//.opera/mail/oprM4zcXO rwk, owner /home//.opera/mail/oprp74u7k rwk, owner /home//.opera/mail/oprsT7GIj rwk, owner /home//.opera/mail/opsrp7ZAVmS rw, owner /home//.opera/mail/opsrp7q2EAR rw, owner /home//.opera/mail/opsrpCLRiMw rw, owner /home//.opera/mail/opsrpZrg0d8 rw, owner /home//.opera/mail/opsrpc0ZRnR rw, owner /home//.opera/mail/opsrpqKcALJ rw, owner /home//.opera/notes.adr rk, owner /home//.opera/opcache/ r, owner /home//.opera/opcache/dcache4.url rwk, owner /home//.opera/opcache/opr0047I w, owner /home//.opera/opcache/opr00484 w, owner /home//.opera/opcache/opr0048C wk, owner /home//.opera/opcache/opr0048I wk, owner /home//.opera/opcache/opr0048J wk, owner /home//.opera/opcache/opr0048W wk, owner /home//.opera/opcache/opr7NYlOI rwk, owner /home//.opera/opcache/oprGx8PfN rwk, owner /home//.opera/opcache/oprNgmhvC rwk, owner /home//.opera/opcache/opsrpUGRFbI rw, owner /home//.opera/opcache/opsrpeQWJPi rw, owner /home//.opera/opcache/opsrpq9Jfi2 rw, owner /home//.opera/opera6.adr rk, owner /home//.opera/opera6.ini rwk, owner /home//.opera/opr0AkJUf rwk, owner /home//.opera/opr13XdAh rwk, owner /home//.opera/opr1EdG4O rwk, owner /home//.opera/opr1JeV0y rwk, owner /home//.opera/opr1XQgre rwk, owner /home//.opera/opr2MvSem rwk, owner /home//.opera/opr4sPrGq rwk, owner /home//.opera/opr5S4EbR rwk, owner /home//.opera/opr5yMZq0 rwk, owner /home//.opera/opr64S7XQ rwk, owner /home//.opera/opr6IpXT6 rwk, owner /home//.opera/opr6YxXDn rwk, owner /home//.opera/opr6nrtB4 rwk, owner /home//.opera/opr760Uu9 rwk, owner /home//.opera/opr7Jzgsh rwk, owner /home//.opera/opr7x0RbW rwk, owner /home//.opera/opr85zW0N rwk, owner /home//.opera/opr8pSEig rwk, owner /home//.opera/opr9J2Vfv rwk, owner /home//.opera/oprAEdjx4 rwk, owner /home//.opera/oprAVkB1R rwk, owner /home//.opera/oprAsEEM6 rwk, owner /home//.opera/oprC0FvSB rwk, owner /home//.opera/oprC5tv2v rwk, owner /home//.opera/oprCleweB rwk, owner /home//.opera/oprDd3cZT rwk, owner /home//.opera/oprEGLhMF rwk, owner /home//.opera/oprEi75rn rwk, owner /home//.opera/oprFBlwI0 rwk, owner /home//.opera/oprI3jgXK rwk, owner /home//.opera/oprJIJ9Cp rwk, owner /home//.opera/oprM8L8Gu rwk, owner /home//.opera/oprMqntWG rwk, owner /home//.opera/oprNophB0 rwk, owner /home//.opera/oprOc8skG rwk, owner /home//.opera/oprPMh0SN rwk, owner /home//.opera/oprQRfyfW rwk, owner /home//.opera/oprQuCg0e rwk, owner /home//.opera/oprQwNh7G rwk, owner /home//.opera/oprR1JWNR rwk, owner /home//.opera/oprRGoiAU rwk, owner /home//.opera/oprRaI3Am rwk, owner /home//.opera/oprSkexcy rwk, owner /home//.opera/oprV1zfzO rwk, owner /home//.opera/oprVOPAXD rwk, owner /home//.opera/oprVWjUOE rwk, owner /home//.opera/oprVg0Y90 rwk, owner /home//.opera/oprWVh6VZ rwk, owner /home//.opera/oprWuZ9dA rwk, owner /home//.opera/oprXHQPR9 rwk, owner /home//.opera/oprYDqkQd rwk, owner /home//.opera/oprYIWFBi rwk, owner /home//.opera/oprYdPCHn rwk, owner /home//.opera/oprYfPBDT rwk, owner /home//.opera/oprZ70DrD rwk, owner /home//.opera/oprZAf3Km rwk, owner /home//.opera/opra2XnTt rwk, owner /home//.opera/oprand.dat rk, owner /home//.opera/oprbZFvqy rwk, owner /home//.opera/oprd604m7 rwk, owner /home//.opera/oprdoG0qb rwk, owner /home//.opera/opreUrgOq rwk, owner /home//.opera/oprfJFnsM rwk, owner /home//.opera/oprfUfQlL rwk, owner /home//.opera/oprg4sbcM rwk, owner /home//.opera/oprg8xL8O rwk, owner /home//.opera/oprhH0toG rwk, owner /home//.opera/oprhMMyAM rwk, owner /home//.opera/oprhQJTuK rwk, owner /home//.opera/opriVSLRw rwk, owner /home//.opera/oprizrtJn rwk, owner /home//.opera/oprj1DWy7 rwk, owner /home//.opera/oprj673K8 rwk, owner /home//.opera/oprkPmCaK rwk, owner /home//.opera/oprlsmQ9y rwk, owner /home//.opera/oprml3vjd rwk, owner /home//.opera/oproPH4pn rwk, owner /home//.opera/oprozOsTK rwk, owner /home//.opera/oprpoDTJT rwk, owner /home//.opera/oprr68v5Z rwk, owner /home//.opera/oprrVAk59 rwk, owner /home//.opera/oprrlFuZn rwk, owner /home//.opera/oprrnoGsV rwk, owner /home//.opera/oprroZaiK rwk, owner /home//.opera/oprs70Hsa rwk, owner /home//.opera/oprsWbhhD rwk, owner /home//.opera/oprscA81N rwk, owner /home//.opera/oprt9frvm rwk, owner /home//.opera/oprtANhRV rwk, owner /home//.opera/oprv3Oj7Q rwk, owner /home//.opera/oprvQNpuO rwk, owner /home//.opera/oprvoPOIC rwk, owner /home//.opera/oprw7Tqri rwk, owner /home//.opera/oprwVtMU3 rwk, owner /home//.opera/oprxOeKZD rwk, owner /home//.opera/oprxntDLn rwk, owner /home//.opera/opryFgulN rwk, owner /home//.opera/opryn47pQ rwk, owner /home//.opera/opsrp0DwU4G rw, owner /home//.opera/opsrp0gdbAL rw, owner /home//.opera/opsrp1CQglH rw, owner /home//.opera/opsrp2YXJlc rw, owner /home//.opera/opsrp3WFDVO rw, owner /home//.opera/opsrp4p1j8W rw, owner /home//.opera/opsrp58wM5P rw, owner /home//.opera/opsrp6nF0ht rw, owner /home//.opera/opsrp7Pq0IX rw, owner /home//.opera/opsrp7jk3PF rw, owner /home//.opera/opsrp7yTpfK rw, owner /home//.opera/opsrp9MzOAv rw, owner /home//.opera/opsrpB62Ip3 rw, owner /home//.opera/opsrpBnnSVK rw, owner /home//.opera/opsrpC6L7Yl rw, owner /home//.opera/opsrpChfzZK rw, owner /home//.opera/opsrpH2Hqx3 rw, owner /home//.opera/opsrpJ80Xy6 rw, owner /home//.opera/opsrpJjo52u rw, owner /home//.opera/opsrpK0vPg4 rw, owner /home//.opera/opsrpKeu4tJ rw, owner /home//.opera/opsrpLJfSdN rw, owner /home//.opera/opsrpLNn29s rw, owner /home//.opera/opsrpLb7UmG rw, owner /home//.opera/opsrpLtkKYk rw, owner /home//.opera/opsrpM1O8N1 rw, owner /home//.opera/opsrpM8Nb3g rw, owner /home//.opera/opsrpMEnDrR rw, owner /home//.opera/opsrpN5dXt3 rw, owner /home//.opera/opsrpN65rkh rw, owner /home//.opera/opsrpNLccRe rw, owner /home//.opera/opsrpNV5mmM rw, owner /home//.opera/opsrpPDa5wT rw, owner /home//.opera/opsrpQXBxf3 rw, owner /home//.opera/opsrpRMq7BT rw, owner /home//.opera/opsrpRNwSvr rw, owner /home//.opera/opsrpS2kbQQ rw, owner /home//.opera/opsrpSnTGyr rw, owner /home//.opera/opsrpTYjPya rw, owner /home//.opera/opsrpULSdNb rw, owner /home//.opera/opsrpUzy3bd rw, owner /home//.opera/opsrpWH8G4X rw, owner /home//.opera/opsrpWcrXip rw, owner /home//.opera/opsrpXdBi8b rw, owner /home//.opera/opsrpY6aybY rw, owner /home//.opera/opsrpYWyBYV rw, owner /home//.opera/opsrpYyEulc rw, owner /home//.opera/opsrpZgGvF6 rw, owner /home//.opera/opsrpZuljsl rw, owner /home//.opera/opsrpaW4yRl rw, owner /home//.opera/opsrpbrjNZa rw, owner /home//.opera/opsrpdRuXk7 rw, owner /home//.opera/opsrpe3V8MK rw, owner /home//.opera/opsrpeyWdxd rw, owner /home//.opera/opsrpfHzAkT rw, owner /home//.opera/opsrpfRNEub rw, owner /home//.opera/opsrpfeFDGO rw, owner /home//.opera/opsrphnOxXo rw, owner /home//.opera/opsrpiGef9O rw, owner /home//.opera/opsrpipbJ73 rw, owner /home//.opera/opsrpj7oPkZ rw, owner /home//.opera/opsrpji4tN4 rw, owner /home//.opera/opsrpjnJLxl rw, owner /home//.opera/opsrpkNABqJ rw, owner /home//.opera/opsrpktj3lM rw, owner /home//.opera/opsrpllfvxb rw, owner /home//.opera/opsrpmDUMk0 rw, owner /home//.opera/opsrpoXc5mB rw, owner /home//.opera/opsrpoc04Qw rw, owner /home//.opera/opsrpp7kwGi rw, owner /home//.opera/opsrpq1tfxL rw, owner /home//.opera/opsrpqXBlRO rw, owner /home//.opera/opsrpqhaU8d rw, owner /home//.opera/opsrprJFLWY rw, owner /home//.opera/opsrprPiIrm rw, owner /home//.opera/opsrprX5yQE rw, owner /home//.opera/opsrprzwvAb rw, owner /home//.opera/opsrpstfLgF rw, owner /home//.opera/opsrptALu1m rw, owner /home//.opera/opsrptZ52Kq rw, owner /home//.opera/opsrptlZbmJ rw, owner /home//.opera/opsrpubkr6w rw, owner /home//.opera/opsrpvC7rQe rw, owner /home//.opera/opsrpvWw1Za rw, owner /home//.opera/opsrpvbRx7a rw, owner /home//.opera/opsrpvuoEQt rw, owner /home//.opera/opsrpw6MvHx rw, owner /home//.opera/opsrpwPWPBG rw, owner /home//.opera/opsrpwRN3zT rw, owner /home//.opera/opsrpwRm3Qs rw, owner /home//.opera/opsrpwsaNzs rw, owner /home//.opera/opsrpxMSvkC rw, owner /home//.opera/opsrpxu7WHP rw, owner /home//.opera/opsrpyACMA0 rw, owner /home//.opera/opsrpyDEEkP rw, owner /home//.opera/opsrpyiNidS rw, owner /home//.opera/opsrpzAO9uQ rw, owner /home//.opera/opssl6.dat rk, owner /home//.opera/opthumb.dat rk, owner /home//.opera/override_downloaded.ini rk, owner /home//.opera/pluginpath.ini rwk, owner /home//.opera/sessions/ rw, owner /home//.opera/sessions/autosave.win rwk, owner /home//.opera/sessions/autosave.win.bak a, owner /home//.opera/sessions/opr0Gssa4 rwk, owner /home//.opera/sessions/oprA1pLYO rwk, owner /home//.opera/sessions/oprJa4t2X rwk, owner /home//.opera/sessions/oprRQ94hB rwk, owner /home//.opera/sessions/oprUAYYJS rwk, owner /home//.opera/sessions/oprlG5GJv rwk, owner /home//.opera/sessions/oprrHnVOi rwk, owner /home//.opera/sessions/opsrp4YQfJJ rw, owner /home//.opera/sessions/opsrp58Pqb7 rw, owner /home//.opera/sessions/opsrpVC8Rlc rw, owner /home//.opera/sessions/opsrpYAMOkW rw, owner /home//.opera/sessions/opsrpaKPt3p rw, owner /home//.opera/sessions/opsrpgd3Hnb rw, owner /home//.opera/sessions/opsrpsrpb08 rw, owner /home//.opera/speeddial.ini rwk, owner /home//.opera/styles/user/ r, owner /home//.opera/styles/user/accessibility.css rwk, owner /home//.opera/styles/user/altdebugger.css rwk, owner /home//.opera/styles/user/classid.css rwk, owner /home//.opera/styles/user/contrastbw.css rwk, owner /home//.opera/styles/user/contrastwb.css rwk, owner /home//.opera/styles/user/disablebreaks.css rwk, owner /home//.opera/styles/user/disablefloats.css rwk, owner /home//.opera/styles/user/disableforms.css rwk, owner /home//.opera/styles/user/disablepositioning.css rwk, owner /home//.opera/styles/user/disabletables.css rwk, owner /home//.opera/styles/user/outline.css rwk, owner /home//.opera/styles/user/structureblock.css rwk, owner /home//.opera/styles/user/structureinline.css rwk, owner /home//.opera/styles/user/structuretables.css rwk, owner /home//.opera/styles/user/tablelayout.css rwk, owner /home//.opera/styles/user/toc.css rwk, owner /home//.opera/typed_history.xml rk, owner /home//.opera/vlink4.dat rwk, owner /home//.opera/vps/ r, owner /home//.opera/vps/0000/adoc.bx rwk, owner /home//.opera/vps/0000/md.dat rwk, owner /home//.opera/vps/0000/url.ax rwk, owner /home//.opera/vps/0000/w.ax rwk, owner /home//.opera/vps/0000/wb.vx rwk, owner /home//.opera/vps/0001/adoc.bx rwk, owner /home//.opera/vps/0001/md.dat rwk, owner /home//.opera/vps/0001/url.ax rwk, owner /home//.opera/vps/0001/w.ax rwk, owner /home//.opera/vps/0001/wb.vx rwk, owner /home//.opera/vps/0002/adoc.bx rwk, owner /home//.opera/vps/0002/md.dat rwk, owner /home//.opera/vps/0002/url.ax rwk, owner /home//.opera/vps/0002/w.ax rwk, owner /home//.opera/vps/0002/wb.vx rwk, owner /home//.opera/vps/0003/adoc.bx rwk, owner /home//.opera/vps/0003/md.dat rwk, owner /home//.opera/vps/0003/url.ax rwk, owner /home//.opera/vps/0003/w.ax rwk, owner /home//.opera/vps/0003/wb.vx rwk, owner /home//.opera/vps/0004/adoc.bx rwk, owner /home//.opera/vps/0004/md.dat rwk, owner /home//.opera/vps/0004/url.ax rwk, owner /home//.opera/vps/0004/w.ax rwk, owner /home//.opera/vps/0004/wb.vx rwk, owner /home//.qt/.qt_plugins_3.3rc.lock rwk, owner /home//.qt/.qtrc.lock rwk, owner /home//.qt/qt_plugins_3.3rc r, owner /home//.qt/qtrc r, owner /home//Desktop/ rw, owner /home//Desktop/Autoruns.zip ak, /opt/kde3/bin/ark px, /opt/kde3/bin/kfmclient rix, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib/kde3/plugins/styles/plastik.so mr, /opt/kde3/lib/libso mr, /opt/kde3/share/applications/kde/ark.desktop rk, /opt/kde3/share/applications/mimeinfo.cache rk, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/32x32/mimetypes/tgz.png rk, /opt/kde3/share/icons/crystalsvg/index.theme rk, /opt/kde3/share/mimelnk/application/x-zip-compressed.desktop rk, /tmp/.X11-unix/X0 w, /usr/lib/ mr, /usr/lib/opera/9.62/operapluginwrapper rix, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/applications/mimeinfo.cache rk, /usr/share/desktop-data/qtrc r, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/** r, /usr/share/icons/ r, /usr/share/icons/DMZ/cursors/bd_double_arrow r, /usr/share/icons/DMZ/cursors/copy r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/left_ptr_watch r, /usr/share/icons/DMZ/cursors/link r, /usr/share/icons/DMZ/cursors/move r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/watch r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/DMZ/index.theme r, /usr/share/icons/hicolor/index.theme rk, /usr/share/mime/aliases rk, /usr/share/mime/application/x-compressed-tar.xml rk, /usr/share/mime/application/zip.xml rk, /usr/share/mime/globs rk, /usr/share/mime/subclasses rk, /usr/share/opera/encoding.bin rk, /usr/share/opera/ini/dialog.ini rk, /usr/share/opera/ini/fastforward.ini rk, /usr/share/opera/ini/font.ini rk, /usr/share/opera/ini/pluginpath.ini rk, /usr/share/opera/ini/standard_keyboard.ini rk, /usr/share/opera/ini/standard_menu.ini rk, /usr/share/opera/ini/standard_mouse.ini rk, /usr/share/opera/ini/standard_toolbar.ini rk, /usr/share/opera/locale/english.lng rk, /usr/share/opera/locale/pl/polski.lng rk, /usr/share/opera/locale/pl/search.ini rk, /usr/share/opera/skin/standard_skin.zip rk, /usr/share/opera/styles/contentblock.css rk, /usr/share/opera/styles/mathml.css rk, /usr/share/opera/styles/wml.css rk, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/gio-2.0/defaults.list rk, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/nscd/socket w, }	over 3 years ago	1	370	maku	Edit	History
opensuse10.3	/home/roma/bin/Neliesti,netrinti/CONON PIXMA MP140/WWUFORedirectTarget.do	#include <tunables/global> "/home/roma/bin/Neliesti,netrinti/CONON PIXMA MP140/WWUFORedirectTarget.do" flags=(complain) { #include <abstractions/base> "/home/roma/bin/Neliesti,netrinti/CONON PIXMA MP140/WWUFORedirectTarget.do" mr, }	over 3 years ago	roma	200	roma	Edit	History
opensuse10.3	/usr/sbin/privoxy	#include <tunables/global> /usr/sbin/privoxy { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /usr/sbin/privoxy mr, /var/lib/privoxy/etc/* r, /var/lib/privoxy/lib/libso mr, /var/lib/privoxy/log/logfile w, /var/run/privoxy.pid w, }	over 4 years ago	Import of jmichaels profiles	177	dominic	Edit	History
opensuse10.3	/usr/bin/helix-dbus-server	#include <tunables/global> /usr/bin/helix-dbus-server { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /proc/meminfo r, /usr/bin/helix-dbus-server mr, /usr/lib/helix-dbus-server/helix-dbus-server.bin px, }	over 4 years ago	none	155	cinimod	Edit	History
ubuntu-gutsy	/usr/sbin/vsftpd	#include <tunables/global> /usr/sbin/vsftpd flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /etc/ftpusers r, /etc/pam.d/* r, /etc/shadow r, /etc/shells r, /etc/vsftpd.user_list r, /home/user-ftp/ r, /home/user-ftp/** krw, /lib/security/pam_.so mr, /proc//mounts r, /usr/sbin/vsftpd mr, /var/log/vsftpd.log kw, }	over 4 years ago	vsftpd	220	renato-test	Edit	History
ubuntu-gutsy	/usr/lib/postgresql/8.3/bin/postgres	#include <tunables/global> /usr/lib/postgresql/8.3/bin/postgres { #include <abstractions/base> #include <abstractions/nameservice> /etc/postgresql-common/* r, /etc/postgresql/ r, /etc/ssl/ r, /usr/lib/** mr, /usr/shar/share/zoneinfo/ r, /usr/share/postgresql/8.3/timezonesets/* r, /usr/share/zoneinfo/ r, /var/lib/postgresql/8.3/main/** lrw, /var/run/postgresql/* w, }	over 3 years ago		262	stive	Edit	History
opensuse10.3	/bin/hostname	#include <tunables/global> /bin/hostname flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability sys_admin, /bin/hostname mr, }	over 3 years ago		201	arturk	Edit	History
opensuse10.3	/usr/sbin/postfix	#include <tunables/global> /usr/sbin/postfix { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /bin/bash ixr, /bin/egrep ixr, /bin/grep ixr, /bin/ls ixmr, /bin/uname ixr, /dev/console rw, /dev/tty rw, /etc/gai.conf r, /etc/postfix/ r, /etc/postfix/dynamicmaps.cf r, /etc/postfix/main.cf r, /etc/postfix/master.cf r, /etc/postfix/post-install r, /etc/postfix/postfix-files r, /etc/postfix/postfix-script ixr, /etc/postfix/relocated.db krw, /etc/postfix/transport.db krw, /etc/postfix/virtual.db krw, /proc/meminfo r, /proc/net/if_inet6 r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/cmp ixr, /usr/bin/find ixr, /usr/lib/postfix/bounce ixr, /usr/lib/postfix/error ixr, /usr/lib/postfix/master ixr, /usr/lib/postfix/pickup ixr, /usr/lib/postfix/qmgr ixr, /usr/lib/postfix/smtp ixr, /usr/lib/postfix/trivial-rewrite ixr, /usr/sbin/ r, /usr/sbin/postconf ixr, /usr/sbin/postfix mr, /usr/sbin/postlog ixr, /usr/sbin/postqueue ixr, /usr/sbin/postsuper ixr, /usr/sbin/sendmail r, /usr/share/doc/packages/postfix/README_FILES/QMQP_README r, /var/run/nscd/services r, /var/spool/postfix/ r, /var/spool/postfix/active/ r, /var/spool/postfix/active/100091AF41CB krw, /var/spool/postfix/active/4BE3E1AF41C1 krw, /var/spool/postfix/active/4CE981AF41C2 krw, /var/spool/postfix/active/644E71AF41C4 krw, /var/spool/postfix/active/A3C3F1AF41B0 krw, /var/spool/postfix/active/BDB231AF41B6 krw, /var/spool/postfix/active/CAE441AF41C0 krw, /var/spool/postfix/bounce/ r, /var/spool/postfix/corrupt/ r, /var/spool/postfix/defer/ r, /var/spool/postfix/defer/1/ r, /var/spool/postfix/defer/1/100091AF41CB kw, /var/spool/postfix/defer/4/ r, /var/spool/postfix/defer/4/4BE3E1AF41C1 kw, /var/spool/postfix/defer/4/4CE981AF41C2 kw, /var/spool/postfix/defer/6/ r, /var/spool/postfix/defer/6/644E71AF41C4 kw, /var/spool/postfix/defer/A/ r, /var/spool/postfix/defer/A/A3C3F1AF41B0 kw, /var/spool/postfix/defer/B/ r, /var/spool/postfix/defer/B/BDB231AF41B6 kw, /var/spool/postfix/defer/C/ r, /var/spool/postfix/defer/C/CAE441AF41C0 kw, /var/spool/postfix/deferred/ r, /var/spool/postfix/deferred/1/ r, /var/spool/postfix/deferred/1/100091AF41CB rw, /var/spool/postfix/deferred/4/ r, /var/spool/postfix/deferred/4/4BE3E1AF41C1 rw, /var/spool/postfix/deferred/4/4CE981AF41C2 rw, /var/spool/postfix/deferred/6/ r, /var/spool/postfix/deferred/6/644E71AF41C4 rw, /var/spool/postfix/deferred/A/ r, /var/spool/postfix/deferred/A/A3C3F1AF41B0 rw, /var/spool/postfix/deferred/B/ r, /var/spool/postfix/deferred/B/BDB231AF41B6 rw, /var/spool/postfix/deferred/C/ r, /var/spool/postfix/deferred/C/CAE441AF41C0 rw, /var/spool/postfix/flush/ r, /var/spool/postfix/hold/ r, /var/spool/postfix/incoming/ r, /var/spool/postfix/maildrop/ r, /var/spool/postfix/pid/master.pid krw, /var/spool/postfix/pid/unix.defer krw, /var/spool/postfix/pid/unix.retry krw, /var/spool/postfix/pid/unix.smtp krw, /var/spool/postfix/private/ r, /var/spool/postfix/private/anvil w, /var/spool/postfix/private/bounce w, /var/spool/postfix/private/bsmtp w, /var/spool/postfix/private/cyrus w, /var/spool/postfix/private/defer w, /var/spool/postfix/private/discard w, /var/spool/postfix/private/error w, /var/spool/postfix/private/ifmail w, /var/spool/postfix/private/lmtp w, /var/spool/postfix/private/local w, /var/spool/postfix/private/maildrop w, /var/spool/postfix/private/procmail w, /var/spool/postfix/private/proxymap w, /var/spool/postfix/private/relay w, /var/spool/postfix/private/retry w, /var/spool/postfix/private/rewrite w, /var/spool/postfix/private/scache w, /var/spool/postfix/private/smtp w, /var/spool/postfix/private/trace w, /var/spool/postfix/private/uucp w, /var/spool/postfix/private/verify w, /var/spool/postfix/private/virtual w, /var/spool/postfix/public/ r, /var/spool/postfix/public/cleanup w, /var/spool/postfix/public/flush w, /var/spool/postfix/public/pickup rw, /var/spool/postfix/public/qmgr rw, /var/spool/postfix/public/showq w, /var/spool/postfix/trace/ r, }	over 3 years ago	Postfix Ldap	161	franksuess	Edit	History
ubuntu-gutsy	/usr/bin/xdpyinfo	#include <tunables/global> /usr/bin/xdpyinfo { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/xdpyinfo mr, }	over 4 years ago	gnome	375	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c rw, /dev/snd/pcmC0D0p rw, /dev/snd/pcmC0D1c rw, /dev/snd/pcmC0D2c rw, /dev/snd/pcmC0D2p rw, /dev/snd/pcmC0D3c rw, /dev/snd/pcmC0D4p rw, /dev/snd/pcmC1D0c rw, /dev/snd/timer r, /etc/fonts/** r, /etc/gai.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.mozilla/ r, /home//.mozilla/eclipse/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox/wl87hxn7.default/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/favicons/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/images/ r, /home//.mozilla/firefox/wl87hxn7.default/adblockplus/ r, /home//.mozilla/firefox/wl87hxn7.default/bookmarkbackups/ r, /home//.mozilla/firefox/wl87hxn7.default/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/images/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/skin/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/prefs.js r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5393 w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/ICH4.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/fonts/* r, /usr/share/icons/DMZ-White/cursor.theme r, /usr/share/icons/DMZ-White/cursors/arrow r, /usr/share/icons/DMZ-White/cursors/double_arrow r, /usr/share/icons/DMZ-White/cursors/xterm r, /usr/share/icons/DMZ-White/index.theme r, /usr/share/icons/Human/index.theme r, /usr/share/icons/Tangerine/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/skype/** kr, /var/cache/fontconfig/059138ec877db160474b4d5de1248d14-x86.cache-2 r, /var/cache/fontconfig/089dead882dea3570ffc31a9898cfb69-x86.cache-2 r, /var/cache/fontconfig/0f32d3adc6a232110812e17374eaa446-x86.cache-2 r, /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2 r, /var/cache/fontconfig/102e5142c2e9e50c5e8ece26694a2dad-x86.cache-2 r, /var/cache/fontconfig/118d8d5311348bbdf5fe3b106d7c13d4-x86.cache-2 r, /var/cache/fontconfig/142ecfc435bad6f1fbc2648c1119d5eb-x86.cache-2 r, /var/cache/fontconfig/20bd79ad97094406f7d1b9654bfbd926-x86.cache-2 r, /var/cache/fontconfig/21a99156bb11811cef641abeda519a45-x86.cache-2 r, /var/cache/fontconfig/2561679576a9c7fd2ce41d281d4e00d1-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4123634e9c08547d899d0aaff05ebe69-x86.cache-2 r, /var/cache/fontconfig/4794a0821666d79190d59a36cb4f44b5-x86.cache-2 r, /var/cache/fontconfig/4c599c202bc5c08e2d34565a40eac3b2-x86.cache-2 r, /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2 r, /var/cache/fontconfig/61c830dfac3fd78a12654da5e9ba3f56-x86.cache-2 r, /var/cache/fontconfig/6330322105e0c4105d7c7a6ea2974107-x86.cache-2 r, /var/cache/fontconfig/6333f38776742d18e214673cd2c24e34-x86.cache-2 r, /var/cache/fontconfig/6386b86020ecc1ef9690bb720a13964f-x86.cache-2 r, /var/cache/fontconfig/646addb8444faa74ee138aa00ab0b6a0-x86.cache-2 r, /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2 r, /var/cache/fontconfig/707971e003b4ae6c8121c3a920e507f5-x86.cache-2 r, /var/cache/fontconfig/75a2cd575a62c63e802c11411fb87c37-x86.cache-2 r, /var/cache/fontconfig/7b4a97c10f6c0166998ddfa1cf7392fb-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8ab5f685cd6d8ba67c37c908faf08172-x86.cache-2 r, /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2 r, /var/cache/fontconfig/92a571655fb1c0ec1c4d6f496220600a-x86.cache-2 r, /var/cache/fontconfig/9404ff413c67fc2a1526fd14eb4163a8-x86.cache-2 r, /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2 r, /var/cache/fontconfig/9c0624108b9a2ae8552f664125be8356-x86.cache-2 r, /var/cache/fontconfig/a1131b7be650f9abae4907495aa5815d-x86.cache-2 r, /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86.cache-2 r, /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2 r, /var/cache/fontconfig/a960c40fc9306f090224a04585f8a963-x86.cache-2 r, /var/cache/fontconfig/b21a91cee725896328b8cee8091cf747-x86.cache-2 r, /var/cache/fontconfig/b3fedf7c409f006ca1a6fceffceb77cf-x86.cache-2 r, /var/cache/fontconfig/b5a4f3f568a71026ccdc6a3a51afa9b4-x86.cache-2 r, /var/cache/fontconfig/b8613a33de00eecd32d5a94c3c617829-x86.cache-2 r, /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2 r, /var/cache/fontconfig/c855463f699352c367813e37f3f70ea7-x86.cache-2 r, /var/cache/fontconfig/cabbd14511b9e8a55e92af97fb3a0461-x86.cache-2 r, /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2 r, /var/cache/fontconfig/d82eb4fd963d448e2fcb7d7b793b5df3-x86.cache-2 r, /var/cache/fontconfig/da1bd5ca8443ffe22927a23ce431d198-x86.cache-2 r, /var/cache/fontconfig/ddc79d3ea06a7c6ffa86ede85f3bb5df-x86.cache-2 r, /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2 r, /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2 r, /var/cache/fontconfig/e0f9e95429e756d56293ed4d63866094-x86.cache-2 r, /var/cache/fontconfig/e13b20fdb08344e0e664864cc2ede53d-x86.cache-2 r, /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2 r, /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2 r, /var/cache/fontconfig/e7071f4a29fa870f4323321c154eba04-x86.cache-2 r, /var/cache/fontconfig/e9e44584608a73233979f764b5f9dd81-x86.cache-2 r, /var/cache/fontconfig/eeebfc908bd29a90773fd860017aada4-x86.cache-2 r, /var/cache/fontconfig/f5a93ac943883aa0fd9a7bfe0f6ec3c1-x86.cache-2 r, /var/cache/fontconfig/f71c1c7b3f795e5e20ad4a8800a9d397-x86.cache-2 r, /var/cache/fontconfig/fcff1cd55d48a2c86a175e9943c3506d-x86.cache-2 r, /var/cache/fontconfig/fd9416c4b92f07c6f59a3a8cf496e9dc-x86.cache-2 r, /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86.cache-2 r, /var/cache/fontconfig/fe547fea3a41b43a38975d292a2b19c7-x86.cache-2 r, /var/lib/defoma/fontconfig.d/fonts.conf r, }	over 4 years ago	skype 1.4 running on Ubuntu 7.10	246	nirudha	Edit	History
ubuntu-gutsy	/usr/bin/gnome-screenshot	#include <tunables/global> /usr/bin/gnome-screenshot { #include <abstractions/base> /usr/bin/gnome-screenshot mr, }	over 4 years ago	gnome	260	hbpteam	Edit	History
opensuse11.0	/usr/bin/opera	#include <tunables/global> /usr/bin/opera { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	1	173	student	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	Add Firefox	149	alturner	Edit	History
opensuse10.3	/usr/sbin/sshd	# $Id: usr.sbin.sshd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # will need to revalidate this profile once we finish re-architecting # the change_hat patch. # #include <tunables/global> /usr/sbin/sshd { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_tty_config, /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/environment r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/modules.conf r, /etc/motd r, /etc/ssh/* r, /etc/ssh/moduli r, /sbin/nologin Ux, /tmp/ssh-/agent.[0-9] rwl, /tmp/ssh-[0-9]/ w, /usr/sbin/sshd mrix, /var/run w, /var/run/sshd{,.init}.pid wl, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]/fd/ r, @{PROC}/[0-9]/loginuid w, @{PROC}/[0-9]/mounts r, } /usr/sbin/sshd//AUTHENTICATED { #include <abstractions/authentication> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability setgid, capability setuid, capability sys_tty_config, /dev/log w, /dev/ptmx rw, /etc/default/passwd r, /etc/localtime r, /etc/login.defs r, /etc/motd r, /tmp/ssh-/agent.[0-9]* rwl, /tmp/ssh-[0-9]/ w, } /usr/sbin/sshd//EXEC { #include <abstractions/base> /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /sbin/nologin Ux, } /usr/sbin/sshd//PRIVSEP { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, } /usr/sbin/sshd//PRIVSEP_MONITOR { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability setgid, capability setuid, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ssh/moduli r, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]*/mounts r, }	over 2 years ago	b-ssh1	129	bertholdct	Edit	History
ubuntu-gutsy	/etc/cron.daily/roundcube-core	#include <tunables/global> /etc/cron.daily/roundcube-core { #include <abstractions/base> capability dac_override, capability dac_read_search, / r, /bin/dash ixr, /bin/rm ixr, /etc/cron.daily/roundcube-core mr, /usr/bin/find ixr, /usr/bin/xargs ixr, /var/lib/roundcube/ r, /var/lib/roundcube/temp/ r, /var/lib/roundcube/temp/* w, }	over 3 years ago		192	stive	Edit	History
opensuse10.3	/usr/bin/totem-video-thumbnailer	#include <tunables/global> /usr/bin/totem-video-thumbnailer flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home//.gstreamer-0.10/registry.i686.xml r, /home//Desktop/** r, /usr/bin/totem-video-thumbnailer mr, }	over 4 years ago	argh, switch things back to complain for a while	348	jmichael	Edit	History
opensuse10.3	/usr/sbin/privoxy	#include <tunables/global> /usr/sbin/privoxy { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /usr/sbin/privoxy mr, /var/lib/privoxy/etc/* r, /var/lib/privoxy/lib/libso mr, /var/lib/privoxy/log/logfile w, /var/run/privoxy.pid w, }	over 4 years ago	none	163	cinimod	Edit	History
opensuse10.3	/usr/bin/helix-dbus-server	#include <tunables/global> /usr/bin/helix-dbus-server { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /proc/meminfo r, /usr/bin/helix-dbus-server mr, /usr/lib/helix-dbus-server/helix-dbus-server.bin px, }	over 4 years ago	Import of jmichaels profiles	179	dominic	Edit	History
opensuse11.0	/opt/lampp/lampp	#include <tunables/global> /opt/lampp/lampp flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago	new	37	campuraduk	Edit	History
opensuse11.0	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld { #include <abstractions/base> }	over 2 years ago		155	sputin	Edit	History
opensuse10.3	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ixr, /bin/hostname Px, /bin/ping ixr, /bin/uname Px, /usr/bin/manpath px, /usr/bin/tput ixr, /usr/bin/tty Px, /usr/sbin/sshd mr, }	over 3 years ago		199	arturk	Edit	History
opensuse10.3	/usr/lib/jvm/java-1.6.0.u5-sun-1.6.0.u5/jre/bin/java	#include <tunables/global> /usr/lib/jvm/java-1.6.0.u5-sun-1.6.0.u5/jre/bin/java { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/jvm/java-1.6.0.u5-sun-1.6.0.u5/jre/bin/java mr, }	over 4 years ago	java	232	rockets	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-s2s	#include <tunables/global> /usr/sbin/jabberd2-s2s flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-s2s mr, }	over 4 years ago		227	igoriii	Edit	History
opensuse11.0	/opt/google/chrome/google-chrome	#include <tunables/global> /opt/google/chrome/google-chrome flags=(complain) { #include <abstractions/base> #include <abstractions/bash> capability dac_override, capability sys_admin, capability sys_ptrace, /bin/bash rix, /bin/readlink cx, /dev/tty rw, /etc/fonts/** r, /etc/gtk-2.0/gdk-pixbuf.loaders r, owner /home//.Xauthority r, owner /home//.config/google-chrome/Default/Preferences r, owner "/home//.config/google-chrome/Local State" r, owner /home//.config/google-chrome/SingletonSocket w, owner /home//.fonts.conf r, /opt/google/chrome/chrome rix, /opt/google/chrome/chrome-sandbox rix, /opt/google/chrome/chrome.pak mr, /opt/google/chrome/google-chrome r, /opt/google/chrome/locales/en-US.pak mr, owner /proc/ r, /proc//fd/ r, owner /proc//mounts r, /proc/meminfo r, /tmp/.X11-unix/X0 w, /usr/bin/dirname rix, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-x86.cache-2 mr, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 mr, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 mr, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 mr, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 mr, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/c16af864172909159ced9a806109b5c1-x86.cache-2 mr, /var/cache/fontconfig/c36a5ca5419b5200dcfc86d54b5d311a-x86.cache-2 r, /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86.cache-2 mr, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 mr, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 mr, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 mr, profile /bin/readlink flags=(complain) { /bin/readlink mr, /dev/urandom r, /etc/ld.so.cache r, /lib64/ld-.so mrpx, /lib64/libc-.so mr, /usr/lib/locale/* r, /usr/lib64/gconv/gconv-modules.cache r, /usr/share/locale/** r, } }	about 1 year ago	Opt google-chrom von apparmor aus dem web	92	vzandy001	Edit	History
opensuse11.0	/usr/bin/gimp-2.6	#include <tunables/global> /usr/bin/gimp-2.6 flags=(complain) { #include <abstractions/base> }	about 1 year ago		60	ramatevish	Edit	History
opensuse11.0	/etc/init.d/apache2	#include <tunables/global> /etc/init.d/apache2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	over 3 years ago		144	gzdenek	Edit	History
ubuntu-gutsy	/usr/lib/postfix/local	# $Id: usr.lib.postfix.local 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/local { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/user-mail> #include <program-chunks/postfix-common> /bin/bash mixr, /bin/date mixr, /dev/tty rw, /etc/mailname r, /etc/postfix/lists.db r, /etc/postfix/virtual.db r, /etc/ssl/openssl.cnf r, /etc/{postfix/,}aliases.db krw, /home//.Maildir/* lw, /home//.maildir/* lw, /root/.maildir/ lw, /usr/bin/mlmmj-recieve Px, /usr/bin/procmail Px, /usr/lib/mailman/mail/mailman Px, /usr/lib/postfix/local rmix, /var/lib/amavis/.maildir/ lw, /var/lib/mailman/data/aliases.db r, /var/mailman/mail/wrapper Px, /var/spool/postfix/active/* krw, /var/www/.maildir/** lw, /{var/spool/postfix/,}active/[0-9A-F]/ rw, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rw, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rw, /{var/spool/postfix/,}pid/unix.local krw, /{var/spool/postfix/,}private/{bounce,defer,flush,lmtp,rewrite} rw, /{var/spool/postfix/,}public/{cleanup,flush} rw, }	over 3 years ago		232	stive	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/.digest r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/gai.conf r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/** r, /etc/php.ini r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/ r, /etc/php5/conf.d/ctype.ini r, /etc/php5/conf.d/dom.ini r, /etc/php5/conf.d/hash.ini r, /etc/php5/conf.d/iconv.ini r, /etc/php5/conf.d/json.ini r, /etc/php5/conf.d/pdo.ini r, /etc/php5/conf.d/pdo_sqlite.ini r, /etc/php5/conf.d/sqlite.ini r, /etc/php5/conf.d/tokenizer.ini r, /etc/php5/conf.d/xmlreader.ini r, /etc/php5/conf.d/xmlwriter.ini r, /home// r, /srv/www/htdocs r, /srv/www/htdocs/* r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/** mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/python[12].[0-9]/.{py,pyc,pth,so} mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mixr, /usr/share/apache2/ r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index wr, /usr/share/ssl/openssl.cnf r, /var/dav/lock/lockdb.dir krw, /var/dav/lock/lockdb.pag rw, /var/lib/php/sess_ rwl, /var/lib/php5/session_mm_apache2handler0.sem kw, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } /usr/sbin/httpd2-prefork//DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mixr, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, }	over 3 years ago		327	ytakeda	Edit	History
opensuse10.3	/usr/bin/vlc	#include <tunables/global> /usr/bin/vlc flags=(complain) { #include <abstractions/base> /usr/bin/vlc mr, }	over 4 years ago	vlc Player	187	Falko_Gehde	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago	Firefox-browser	58	ritslinux	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/base> }	about 1 year ago	skype	55	jjochec_cz_js	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> deny capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /etc/magic r, /usr/bin/file rix, /usr/lib/firefox/firefox px, /usr/share/misc/magic.mgc r, }	over 2 years ago		114	alice	Edit	History
opensuse11.0	/usr/games/xscrab	#include <tunables/global> /usr/games/xscrab flags=(complain) { #include <abstractions/base> }	over 3 years ago		198	crespo	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/basename ixr, /bin/bash ixr, /bin/grep ixr, /etc/magic r, /usr/bin/expr ixr, /usr/bin/file ixr, /usr/lib/firefox/firefox-bin Pxr, /usr/lib/firefox/firefox.sh mr, /usr/share/misc/magic.mgc r, }	over 4 years ago		188	robsn81	Edit	History
opensuse10.3	/usr/bin/gnome-terminal	#include <tunables/global> /usr/bin/gnome-terminal flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash Ux, /dev/ptmx rw, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/gnome-terminal mr, /usr/lib/vte/gnome-pty-helper Px, /usr/share/terminfo/** r, /usr/share/vte/termcap/* r, /var/cache/libx11/compose/* r, }	over 4 years ago	misc update	284	jmichael	Edit	History
opensuse10.3	/usr/sbin/NetworkManagerDispatcher	#include <tunables/global> /usr/sbin/NetworkManagerDispatcher flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/ r, /etc/NetworkManager/dispatcher.d/autofs Px, /etc/NetworkManager/dispatcher.d/netcontrol_global_hooks Px, /etc/NetworkManager/dispatcher.d/netcontrol_services Px, /etc/NetworkManager/dispatcher.d/nfs Px, /etc/NetworkManager/dispatcher.d/privoxy Px, /proc/meminfo r, /usr/sbin/NetworkManagerDispatcher mr, /var/run/NetworkManagerDispatcher.pid w, }	over 4 years ago	argh, switch things back to complain for a while	291	jmichael	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	# ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/user-tmp> /bin/basename mixr, /bin/bash mixr, /bin/gawk mixr, /bin/grep mixr, /etc/magic r, /usr/bin/file mixr, /usr/bin/which mixr, /usr/lib/firefox/* r, /usr/lib/firefox/firefox-bin px, /usr/lib/firefox/firefox.sh rmix, /usr/lib/firefox/mozilla-xremote-client px, /usr/share/misc/magic.mgc r, }	over 4 years ago	firefoxlog	178	Northern	Edit	History
opensuse11.0	/home/dga/cat_hosts.ksh	#include <tunables/global> /home/dga/cat_hosts.ksh flags=(complain) { #include <abstractions/base> }	about 1 year ago	/home/dga/cat_hosts.log	95	dga	Edit	History
opensuse11.0	/bin/duplicatebash	#include <tunables/global> /bin/duplicatebash { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/cat rix, /bin/duplicatebash r, /bin/gawk rix, /bin/ls rix, /bin/sed rix, /bin/uname rix, /etc/manpath.config r, /etc/opt/ r, /etc/sysconfig/console r, /etc/sysconfig/mail r, /etc/sysconfig/mpi-selector r, /etc/sysconfig/news r, /etc/sysconfig/proxy r, /etc/sysconfig/suseconfig r, /etc/sysconfig/windowmanager r, owner /home//.bash_history r, owner /home//.inputrc r, owner /home//.profile r, /opt/ r, owner /proc//exe r, owner /proc/*/mounts r, /usr/bin/dircolors rix, /usr/bin/less rix, /usr/bin/manpath rix, /usr/bin/tty rix, /usr/bin/which rix, /usr/lib64/jvm/java-1.6.0-sun-1.6.0/bin/java rix, /usr/lib64/jvm/java-1.6.0-sun-1.6.0/bin/javac rix, /usr/lib64/jvm/java-1.6.0-sun-1.6.0/jre/bin/java rix, /usr/share/X11/XKeysymDB r, /usr/share/modules/init/.modulespath r, /usr/share/modules/init/sh r, /var/mpi-selector/data/openmpi-1.2.8.sh r, }	over 2 years ago		100	stu	Edit	History
opensuse11.0	/usr/sbin/proftpd	#include <tunables/global> /usr/sbin/proftpd { #include <abstractions/base> audit network all, /home/ftp rw, }	over 2 years ago		165	alok	Edit	History
opensuse10.3	/usr/bin/gpg2	#include <tunables/global> /usr/bin/gpg2 flags=(complain) { #include <abstractions/base> #include <abstractions/kde> #include <abstractions/nvidia> capability ipc_lock, /home//.gnupg/ rw, /usr/bin/gpg2 mr, /var/** r, }	over 3 years ago	internet radio u.a.	186	shivver-fox	Edit	History
ubuntu-gutsy	/usr/sbin/vsftpd	#include <tunables/global> /usr/sbin/vsftpd flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /etc/ftpusers r, /etc/pam.d/* r, /etc/shadow r, /etc/shells r, /etc/vsftpd.user_list r, /home/user-ftp/ r, /home/user-ftp/** krw, /lib/security/pam_.so mr, /proc//mounts r, /usr/sbin/vsftpd mr, /var/log/vsftpd.log kw, }	over 4 years ago		249	igoriii	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> deny owner /home/reda/.mozilla/extensions/ r, deny owner /home/reda/.mozilla/extensions/\{3550f703-e582-4d05-9a08-453d09bdfdc6\}/ r, deny owner /home/reda/.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, deny owner /home/reda/.mozilla/firefox/d74q776t.default/minidumps/ r, /dev/ r, /dev/snd/* mrw, /dev/video0 rw, /etc/X11/fs/config r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, owner /home//.config/Trolltech.conf w, /home//.config/Trolltech.conf rk, /home//.fontconfig/* r, owner /home//.kde4/share/config/kdeglobals rk, /home//.mozilla/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, /proc//net/arp r, /proc//net/route r, owner /proc//task/ r, owner /proc//task/* r, /proc/interrupts r, /proc/sys/kernel/osrelease r, /proc/sys/kernel/ostype r, /sys/devices/system/cpu/ r, /sys/devices/system/cpu/cpu0/cpufreq/scaling_cur_freq r, /sys/devices/system/cpu/cpu0/cpufreq/scaling_max_freq r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/iconengines/ r, /usr/lib/qt4/plugins/imageformats/ r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/XKeysymDB r, /usr/share/X11/locale/* r, /usr/share/fonts/ mr, /usr/share/ghostscript/fonts/ mr, /usr/share/icons/ r, /usr/share/locale/ mr, /usr/share/skype/lang/skype_fr.qm mr, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, }	about 1 year ago	skype01	42	redamex	Edit	History
opensuse10.3	/var/lib/distccd/flashgot.m384mqii.default/flashgot.fgt	#include <tunables/global> /var/lib/distccd/flashgot.m384mqii.default/flashgot.fgt { #include <abstractions/base> /var/lib/distccd/flashgot.m384mqii.default/flashgot.fgt mr, }	over 3 years ago		258	hello	Edit	History
opensuse10.3	/usr/bin/gnome-screensaver-command	#include <tunables/global> /usr/bin/gnome-screensaver-command flags=(complain) { #include <abstractions/base> /usr/bin/gnome-screensaver-command mr, }	over 4 years ago	argh, switch things back to complain for a while	264	jmichael	Edit	History
opensuse10.3	/usr/bin/printenv	#include <tunables/global> /usr/bin/printenv flags=(complain) { #include <abstractions/base> /usr/bin/printenv mr, }	over 4 years ago	few more changes to get gnome session working elsewhere	249	jmichael	Edit	History
opensuse11.0	/apps/nagios/bin/nagios	#include <tunables/global> /apps/nagios/bin/nagios { #include <abstractions/base> }	6 months ago		40	EricLoman	Edit	History
opensuse10.3	/usr/sbin/wpa_supplicant	#include <tunables/global> /usr/sbin/wpa_supplicant { #include <abstractions/base> capability net_admin, capability net_raw, capability sys_module, network inet dgram, network packet dgram, /proc/net/ r, /proc/net/unix r, /usr/sbin/wpa_supplicant mr, /var/run/NetworkManager/wpa_ctrl_* w, /var/run/wpa_supplicant-global w, /var/run/wpa_supplicant/ w, /var/run/wpa_supplicant/* w, }	over 4 years ago	Import of jmichaels profiles	221	dominic	Edit	History
opensuse10.3	/usr/lib/thunderbird/thunderbird-bin	#include <tunables/global> /usr/lib/thunderbird/thunderbird-bin { #include <abstractions/base> /bin/netstat px, /usr/lib/GConf/2/gconfd-2 px, /usr/lib/thunderbird/thunderbird-bin mr, /usr/lib/thunderbird/thunderbird.sh px, }	over 4 years ago	20071015	203	davepl	Edit	History
opensuse11.0	/usr/sbin/cron	#include <tunables/global> /usr/sbin/cron flags=(complain) { #include <abstractions/base> }	about 1 year ago	df	68	debetsm	Edit	History
opensuse11.0	/usr/sbin/dovecot	#include <tunables/global> /usr/sbin/dovecot flags=(complain) { #include <abstractions/base> }	about 1 year ago		61	Jety	Edit	History
opensuse11.0	/opt/kde3/bin/kopete	#include <tunables/global> /opt/kde3/bin/kopete flags=(complain) { #include <abstractions/base> #include <abstractions/kde> #include <abstractions/nameservice> /bin/netstat mrpx, /etc/networks r, /etc/rpc r, owner /home//.DCOPserver_localhost__0 r, owner /home//.ICEauthority r, owner /home//.fontconfig/ r, owner /home//.fonts/ r, owner /home//.kde/share/apps/kabc/std.vcf rw, owner /home//.kde/share/apps/kopete/** rw, owner /home//.kde/share/config/ rw, owner /home//.kde/share/config/kresources/contact/ rw, owner /home//.qt/.qt_plugins_3.3rc.lock rwk, owner /home//.qt/.qtrc.lock rwk, owner /home//.qt/qt_plugins_3.3rc r, owner /home//.qt/qtrc r, /opt/kde3/bin/kopete r, /opt/kde3/lib64/kde3/kabc_file.la r, /opt/kde3/lib64/kde3/kabc_file.so mr, /opt/kde3/lib64/kde3/kopete_chatwindow.la r, /opt/kde3/lib64/kde3/kopete_chatwindow.so mr, /opt/kde3/lib64/kde3/kopete_connectionstatus.la r, /opt/kde3/lib64/kde3/kopete_connectionstatus.so mr, /opt/kde3/lib64/kde3/kopete_emailwindow.la r, /opt/kde3/lib64/kde3/kopete_emailwindow.so mr, /opt/kde3/lib64/kde3/kopete_history.la r, /opt/kde3/lib64/kde3/kopete_history.so mr, /opt/kde3/lib64/kde3/kopete_icq.la r, /opt/kde3/lib64/kde3/kopete_icq.so mr, /opt/kde3/lib64/kde3/kopete_irc.la r, /opt/kde3/lib64/kde3/kopete_irc.so mr, /opt/kde3/lib64/kde3/kopete_jabber.la r, /opt/kde3/lib64/kde3/kopete_jabber.so mr, /opt/kde3/share/apps/kabc/formats/ r, /opt/kde3/share/apps/kabc/formats/binary.desktop r, /opt/kde3/share/apps/kabc/formats/kdeaccountsplugin.desktop r, /opt/kde3/share/apps/khtml/css/html4.css r, /opt/kde3/share/apps/khtml/css/quirks.css r, /opt/kde3/share/apps/khtml/icons/crystalsvg/128x128/actions/ r, /opt/kde3/share/apps/khtml/icons/crystalsvg/16x16/actions/ r, /opt/kde3/share/apps/khtml/icons/crystalsvg/22x22/actions/ r, /opt/kde3/share/apps/khtml/icons/crystalsvg/32x32/actions/ r, /opt/kde3/share/apps/khtml/icons/crystalsvg/48x48/actions/ r, /opt/kde3/share/apps/khtml/icons/crystalsvg/64x64/actions/ r, /opt/kde3/share/apps/khtml/khtml.rc r, /opt/kde3/share/apps/khtml/khtml_popupmenu.rc r, /opt/kde3/share/apps/kopete/ r, /opt/kde3/share/apps/kopete_history/ r, /opt/kde3/share/apps/kopeterichtexteditpart/ r, /opt/kde3/share/config/ipv6blacklist r, /opt/kde3/share/config/kio_httprc r, /opt/kde3/share/config/profilerc r, /opt/kde3/share/config/ui/ui_standards.rc r, /opt/kde3/share/emoticons/ r, /opt/kde3/share/locale/all_languages r, /opt/kde3/share/locale/de/LC_MESSAGES/kdelibs.mo r, /opt/kde3/share/locale/de/LC_MESSAGES/kio.mo r, /opt/kde3/share/locale/de/LC_MESSAGES/kopete.mo r, /opt/kde3/share/locale/de/LC_MESSAGES/susetranslations.mo r, /opt/kde3/share/locale/de/entry.desktop r, /opt/kde3/share/locale/en_US/LC_MESSAGES/susetranslations.mo r, /opt/kde3/share/locale/l10n/** r, /opt/kde3/share/locale/pt_BR/LC_MESSAGES/kdelibs.mo r, /opt/kde3/share/locale/pt_BR/LC_MESSAGES/kio.mo r, /opt/kde3/share/locale/pt_BR/LC_MESSAGES/kopete.mo r, /opt/kde3/share/locale/pt_BR/LC_MESSAGES/susetranslations.mo r, /proc//net/route r, /usr/share/desktop-data/qtrc r, /usr/share/i18n/charmaps/IBM852.gz r, /var/cache/libx11/compose/ r, owner /var/run/gdm/** r, }	over 3 years ago	kopete	195	estellnb	Edit	History
opensuse10.3	/usr/sbin/NetworkManager	#include <tunables/global> /usr/sbin/NetworkManager flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/nameservice> capability net_admin, capability net_raw, capability sys_module, network packet packet, /etc/resolv.conf w, /etc/resolv.conf.tmp rw, /etc/sysconfig/network/ r, /etc/sysconfig/network/dhcp r, /proc/net/psched r, /sbin/ip Px, /usr/lib/NetworkManager/nm-crash-logger Px, /usr/sbin/NetworkManager mr, /usr/sbin/nscd Px, /usr/sbin/wpa_supplicant Px, /var/run/NetworkManager.pid w, /var/run/NetworkManager/wpa_ctrl_* w, /var/run/wpa_supplicant-global w, /var/run/wpa_supplicant/* w, }	over 4 years ago	argh, switch things back to complain for a while	310	jmichael	Edit	History
opensuse11.0	/usr/bin/kopete	#include <tunables/global> /usr/bin/kopete flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /etc/fonts/** r, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/rpc r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf rk, owner /home//.fontconfig/05f98b157de9571a4191e527c1faf6b7-x86.cache-2 r, owner /home//.kde/share/config/kdeglobals rk, owner /home//.kde4/share/ w, owner /home//.kde4/share/apps/kabc/ rw, owner /home//.kde4/share/apps/kabc/std.vcf rw, owner /home//.kde4/share/apps/kopete/ r, owner /home//.kde4/share/apps/kopete/contactlist.xml r, owner /home//.kde4/share/apps/kopete/statuses.xml r, owner /home//.kde4/share/config/ w, owner /home//.kde4/share/config/kdeglobals r, owner /home//.kde4/share/config/kopeterc rw, owner /home//.kde4/share/config/kresources/contact/stdrc rw, owner /home//.kde4/share/config/kresources/contact/stdrc.lock w, owner /home//.kde4/share/config/kresources/contact/stdrc.lock.dT6237 w, owner /home//.kde4/share/config/kresources/contact/stdrc.lock.fB6237 w, owner /home//.kde4/share/config/kresources/contact/stdrcCj6237.new rw, owner /home//.kde4/share/config/kresources/contact/stdrcJH6237.new rw, /opt/kde3/share/icons/hicolor/ r, /tmp/.X11-unix/X0 w, /usr/bin/kopete r, /usr/lib/ mr, /usr/lib/kde4/libexec/drkonqi rix, /usr/share/ghostscript/fonts/ r, /usr/share/icons/Oxygen_White/cursors/left_ptr r, /usr/share/icons/hicolor/ r, /usr/share/icons/oxygen/ r, /usr/share/kde4/apps/kabc/formats/ r, /usr/share/kde4/apps/kabc/formats/binary.desktop r, /usr/share/kde4/apps/kopete/kopeteui.rc r, /usr/share/kde4/apps/kopete_history/historyui.rc r, /usr/share/kde4/config/kopeterc r, /usr/share/kde4/config/ui/ui_standards.rc r, /usr/share/locale-bundle/en_US/LC_MESSAGES/kde4-openSUSE.mo r, /var/cache/fontconfig/* r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.data rw, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.index rw, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.FW6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.MT6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.PE6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.SL6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.Tw6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.ZK6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.ZT6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.Zb6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.hX6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.ik6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.nn6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.th6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.lock.wX6237 w, owner /var/tmp/kdecache-amir/kpc/kde-icon-cache.updated w, owner /var/tmp/kdecache-amir/ksycoca4 r, }	over 2 years ago	asd	182	amir	Edit	History
opensuse11.0	/usr/lib/avast4workstation/bin/wrapper-script.sh	#include <tunables/global> /usr/lib/avast4workstation/bin/wrapper-script.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		276	ankur_aiw9	Edit	History
opensuse11.0	/usr/bin/playonlinux	#include <tunables/global> /usr/bin/playonlinux flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	playonlinux	307	chrieder	Edit	History
opensuse11.0	/etc/init.d/rc.vpn	#include <tunables/global> /etc/init.d/rc.vpn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	vpn	205	Hades	Edit	History
ubuntu-gutsy	/usr/bin/ooffice	#include <tunables/global> /usr/bin/ooffice { #include <abstractions/base> /bin/dash ix, /usr/bin/ooffice mr, }	over 4 years ago	gnome	190	hbpteam	Edit	History
opensuse10.3	/bin/ps	#include <tunables/global> /bin/ps flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability sys_admin, capability sys_ptrace, /bin/ps mr, /proc/ r, /proc//attr/current r, /proc//cmdline r, /proc//stat r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, }	over 4 years ago	argh, switch things back to complain for a while	323	jmichael	Edit	History
opensuse10.3	/usr/sbin/wpa_supplicant	#include <tunables/global> /usr/sbin/wpa_supplicant { #include <abstractions/base> capability net_admin, capability net_raw, capability sys_module, network inet dgram, network packet dgram, /proc/net/ r, /proc/net/unix r, /usr/sbin/wpa_supplicant mr, /var/run/NetworkManager/wpa_ctrl_* w, /var/run/wpa_supplicant-global w, /var/run/wpa_supplicant/ w, /var/run/wpa_supplicant/* w, }	over 4 years ago	none	194	cinimod	Edit	History
opensuse11.0	/usr/bin/kadu	#include <tunables/global> /usr/bin/kadu flags=(complain) { #include <abstractions/base> /dev/snd/controlC0 rw, /dev/snd/pcmC0D0p rw, /dev/snd/timer r, /etc/fonts/** r, /etc/issue r, /etc/kde4rc r, /etc/resolv.conf r, owner /home//.config/Trolltech.conf rk, owner /home//.fontconfig/43b42a87d38a0879d927e1668d2c4b6c-x86.cache-2 r, owner /home//.kadu/ r, owner /home//.kadu/agent-unknownslist r, owner /home//.kadu/history/10174303 rw, owner /home//.kadu/history/10174303.idx w, owner /home//.kadu/history/10174303.message_dates w, owner /home//.kadu/history/10174303.new w, owner /home//.kadu/kadu.conf.xml rw, owner /home//.kadu/kadu.conf.xml.backup.2010.06.15.18.41.29 w, owner /home//.kadu/kadu.conf.xml.backup.2010.06.15.18.41.29.tmp rw, owner /home//.kadu/kadu.conf.xml.tmp rw, owner /home//.kadu/kadu.msgs rw, owner /home//.kadu/last_seen.data r, owner /home//.kadu/lock rwk, owner /home//.kde4/share/config/kdeglobals rk, owner /home/marcinz/.ICEauthority r, owner /home/marcinz/.Xauthority r, /usr/lib/ mr, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/HDA-Intel.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/hdmi.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/modem.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/alsa/pcm/surround71.conf r, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/** r, /usr/share/icons/Oxygen_White/cursors/left_ptr r, /usr/share/kadu/modules/account_management.desc r, /usr/share/kadu/modules/advanced_userlist.desc r, /usr/share/kadu/modules/agent.desc r, /usr/share/kadu/modules/alsa_sound.desc r, /usr/share/kadu/modules/amarok2_mediaplayer.desc r, /usr/share/kadu/modules/anonymous_check.desc r, /usr/share/kadu/modules/antistring.desc r, /usr/share/kadu/modules/auto_hide.desc r, /usr/share/kadu/modules/cenzor.desc r, /usr/share/kadu/modules/config_wizard.desc r, /usr/share/kadu/modules/data/filtering/clear.png r, /usr/share/kadu/modules/dbus.desc r, /usr/share/kadu/modules/dcc.desc r, /usr/share/kadu/modules/default_sms.desc r, /usr/share/kadu/modules/docking.desc r, /usr/share/kadu/modules/encryption.desc r, /usr/share/kadu/modules/filtering.desc r, /usr/share/kadu/modules/hints.desc r, /usr/share/kadu/modules/history.desc r, /usr/share/kadu/modules/idle.desc r, /usr/share/kadu/modules/last_seen.desc r, /usr/share/kadu/modules/mail.desc r, /usr/share/kadu/modules/mediaplayer.desc r, /usr/share/kadu/modules/notify.desc r, /usr/share/kadu/modules/pajacyk.desc r, /usr/share/kadu/modules/parser_extender.desc r, /usr/share/kadu/modules/profiles.desc r, /usr/share/kadu/modules/qt4_docking.desc r, /usr/share/kadu/modules/qt4_docking_notify.desc r, /usr/share/kadu/modules/screenshot.desc r, /usr/share/kadu/modules/senthistory.desc r, /usr/share/kadu/modules/sms.desc r, /usr/share/kadu/modules/sound.desc r, /usr/share/kadu/modules/spellchecker.desc r, /usr/share/kadu/modules/split_messages.desc r, /usr/share/kadu/modules/tabs.desc r, /usr/share/kadu/modules/translations/account_management_pl.qm r, /usr/share/kadu/modules/translations/advanced_userlist_pl.qm r, /usr/share/kadu/modules/translations/agent_pl.qm r, /usr/share/kadu/modules/translations/alsa_sound_pl.qm r, /usr/share/kadu/modules/translations/anonymous_check.qm r, /usr/share/kadu/modules/translations/antistring_pl.qm r, /usr/share/kadu/modules/translations/auto_hide_pl.qm r, /usr/share/kadu/modules/translations/cenzor_pl.qm r, /usr/share/kadu/modules/translations/config_wizard_pl.qm r, /usr/share/kadu/modules/translations/dcc_pl.qm r, /usr/share/kadu/modules/translations/default_sms_pl.qm r, /usr/share/kadu/modules/translations/docking_pl.qm r, /usr/share/kadu/modules/translations/encryption_pl.qm r, /usr/share/kadu/modules/translations/filtering_pl.qm r, /usr/share/kadu/modules/translations/hints_pl.qm r, /usr/share/kadu/modules/translations/history_pl.qm r, /usr/share/kadu/modules/translations/last_seen_pl.qm r, /usr/share/kadu/modules/translations/mail_pl.qm r, /usr/share/kadu/modules/translations/mediaplayer_pl.qm r, /usr/share/kadu/modules/translations/notify_pl.qm r, /usr/share/kadu/modules/translations/pajacyk_pl.qm r, /usr/share/kadu/modules/translations/parser_extender_pl.qm r, /usr/share/kadu/modules/translations/profiles_pl.qm r, /usr/share/kadu/modules/translations/qt4_docking_notify_pl.qm r, /usr/share/kadu/modules/translations/screenshot_pl.qm r, /usr/share/kadu/modules/translations/senthistory_pl.qm r, /usr/share/kadu/modules/translations/sms_pl.qm r, /usr/share/kadu/modules/translations/sound_pl.qm r, /usr/share/kadu/modules/translations/spellchecker_pl.qm r, /usr/share/kadu/modules/translations/split_messages_pl.qm r, /usr/share/kadu/modules/translations/tabs_pl.qm r, /usr/share/kadu/modules/translations/voice_pl.qm r, /usr/share/kadu/modules/translations/window_notify_pl.qm r, /usr/share/kadu/modules/voice.desc r, /usr/share/kadu/modules/window_notify.desc r, /usr/share/kadu/syntax/infopanel/default.syntax r, /usr/share/kadu/themes// r, /usr/share/kadu/themes/emoticons/gg6_compatible/ r, /usr/share/kadu/themes/emoticons/penguins/ r, /usr/share/kadu/themes/emoticons/penguins/emots.txt r, /usr/share/kadu/themes/icons/default/external_modules/module_tabs-close.png r, /usr/share/kadu/themes/icons/default/icons.conf r, /usr/share/kadu/themes/icons/default/kadu/ r, /usr/share/kadu/themes/icons/default/protocols/gg/* r, /usr/share/kadu/themes/sounds/default/* r, /usr/share/kadu/translations/* r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/1890317d8a3fded7854d26fdd2e67c05-x86.cache-2 r, /var/cache/fontconfig/293fdca5c5a4717fef867b577c7f75e0-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_080ce3b2_36fac6bd r, }	about 1 year ago	nowy	83	marcinz	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-s2s	#include <tunables/global> /usr/sbin/jabberd2-s2s flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-s2s mr, }	over 2 years ago		202	Amanda	Edit	History
ubuntu-gutsy	/usr/sbin/apache2	#include <tunables/global> /usr/sbin/apache2 { #include <abstractions/base> /usr/sbin/apache2 mr, } /usr/sbin/apache2//DEFAULT_URI { } /usr/sbin/apache2//HANDLING_UNTRUSTED_INPUT { }	over 3 years ago	apache2	233	jmfrank63	Edit	History
opensuse10.3	/usr/share/amsn/amsn	#include <tunables/global> /usr/share/amsn/amsn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/share/amsn/amsn mr, }	over 4 years ago		152	CRibeiro	Edit	History
opensuse10.3	/usr/bin/tomboy-panel	#include <tunables/global> /usr/bin/tomboy-panel { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.tomboy.log w, /home//.tomboy/ rw, /home//.tomboy/** rw, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/mono ixr, /usr/bin/tomboy-panel mr, /usr/lib/aspell-0.60/.rws mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/lib/tomboy/.dll mr, /usr/lib/tomboy/Tomboy.exe mr, /usr/lib/tomboy/addins/.dll mr, /usr/share/fonts/* mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	Import of jmichaels profiles	193	dominic	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> /usr/bin/amule mr, }	over 4 years ago	amule	309	spiky781	Edit	History
opensuse10.3	/usr/lib/cups/backend/parallel	#include <tunables/global> /usr/lib/cups/backend/parallel flags=(complain) { #include <abstractions/base> /usr/lib/cups/backend/parallel mr, }	over 4 years ago	cups testing	236	dominic	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	11 months ago	/home	37	EzekielDataCenter	Edit	History
opensuse11.0	/usr/sbin/named	#include <tunables/global> /usr/sbin/named flags=(complain) { #include <abstractions/base> }	over 2 years ago		150	wtvirtual	Edit	History
ubuntu-gutsy	/usr/sbin/amavisd-new	#include <tunables/global> /usr/sbin/amavisd-new { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> #include <abstractions/python> capability chown, capability dac_override, capability setgid, capability setuid, capability sys_tty_config, /bin/dash ixr, /bin/hostname Pxmr, /bin/run-parts ixr, /etc/amavis/** r, /etc/dspam/default.prefs r, /etc/dspam/dspam.conf r, /etc/dspam/dspam.d/ r, /etc/magic r, /etc/mailname r, /etc/razor/razor-agent.conf r, /etc/shadow r, /etc/spamassassin/ r, /etc/spamassassin/* r, /proc/meminfo r, /usr/bin/arj ixr, /usr/bin/dspam Pxmr, /usr/bin/file ixr, /usr/bin/head ixr, /usr/bin/perl ix, /usr/bin/python2.5 ixr, /usr/bin/pyzor ixr, /usr/bin/ripole Pxmr, /usr/lib/** mr, /usr/sbin/amavisd-new mr, /usr/share/amavis// r, /usr/share/amavis/conf.d/ r, /usr/share/file/magic.mgc r, /usr/share/spamassassin/ r, /usr/share/spamassassin/* r, /var/lib/amavis// rw, /var/lib/amavis/.pyzor/servers rw, /var/lib/amavis/.spamassassin/ lrw, /var/lib/amavis/amavisd.sock w, /var/lib/amavis/db/ rw, /var/lib/amavis/tmp/ lrw, /var/lib/amavis/virusmails/ w, /var/lib/spamassassin/ r, /var/run/amavis/amavisd.lock kw, /var/run/amavis/amavisd.pid w, /var/run/clamav/clamd.ctl w, }	over 3 years ago	some perl abs	136	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/spamassassin	#include <tunables/global> /etc/cron.daily/spamassassin { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> /bin/dash ixr, /bin/sleep ixr, /etc/cron.daily/spamassassin mr, /etc/default/spamassassin r, /etc/perl/Net/* r, /etc/shadow r, /tmp/* w, /usr/bin/expr ixr, /usr/bin/od ixr, /usr/bin/perl ix, /usr/bin/sa-update ixr, /usr/lib/ mr, /usr/share/perl/ r, /usr/share/perl5/ r, /var/lib/spamassassin/ r, }	over 3 years ago		196	stive	Edit	History
opensuse11.0	/bin/dbus-cleanup-sockets	#include <tunables/global> /bin/dbus-cleanup-sockets flags=(complain) { #include <abstractions/base> }	over 3 years ago	Armor1	155	lauren	Edit	History
opensuse11.0	/sbin/mingetty	#include <tunables/global> /sbin/mingetty flags=(complain) { #include <abstractions/base> }	over 3 years ago	mingetty	141	ali2119	Edit	History
opensuse10.3	/usr/lib/deskbar-applet/deskbar-applet	#include <tunables/global> /usr/lib/deskbar-applet/deskbar-applet { #include <abstractions/base> /usr/bin/env ix, /usr/lib/deskbar-applet/deskbar-applet mr, }	over 4 years ago	none	200	cinimod	Edit	History
opensuse11.0	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /proc/*/mounts r, /tmp/.X11-unix/X0 w, /usr/bin/pidgin r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20.mo r, }	about 1 year ago	1	78	shy22shy	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	firefox	165	therealmilo	Edit	History
opensuse11.0	/usr/share/amsn/amsn	#include <tunables/global> /usr/share/amsn/amsn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	amsn	325	rey_buzz	Edit	History
opensuse11.0	/usr/bin/compiz	#include <tunables/global> /usr/bin/compiz { #include <abstractions/base> }	over 3 years ago		140	DiSKuN	Edit	History
opensuse10.3	/usr/bin/tomboy-panel	#include <tunables/global> /usr/bin/tomboy-panel { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.tomboy.log w, /home//.tomboy/ rw, /home//.tomboy/** rw, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/mono ixr, /usr/bin/tomboy-panel mr, /usr/lib/aspell-0.60/.rws mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/lib/tomboy/.dll mr, /usr/lib/tomboy/Tomboy.exe mr, /usr/lib/tomboy/addins/.dll mr, /usr/share/fonts/* mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	none	187	cinimod	Edit	History
opensuse10.3	/usr/bin/opera	#include <tunables/global> /usr/bin/opera flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/opera mr, }	over 4 years ago	opera	232	Falko_Gehde	Edit	History
opensuse10.3	/usr/lib/cyrus/bin/master	#include <tunables/global> /usr/lib/cyrus/bin/master { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability setgid, capability setuid, capability sys_resource, /etc/cyrus.conf r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/imapd.annotation_definitions r, /etc/imapd.conf r, /etc/kolab/cert.pem r, /etc/kolab/key.pem r, /etc/postfix/dynamicmaps.cf r, /etc/postfix/main.cf r, /etc/slp.conf r, /etc/slp.spi r, /mnt/mail/config/ krw, /mnt/mail/sieve/ rw, /mnt/mail/spool/** klrw, /usr/lib/cyrus/bin/ctl_cyrusdb px, /usr/lib/cyrus/bin/cyr_expire px, /usr/lib/cyrus/bin/idled px, /usr/lib/cyrus/bin/imapd px, /usr/lib/cyrus/bin/lmtpd ixr, /usr/lib/cyrus/bin/master mr, /usr/lib/cyrus/bin/notifyd px, /usr/lib/cyrus/bin/pop3d ixr, /usr/lib/cyrus/bin/timsieved ixr, /usr/lib/cyrus/bin/tls_prune px, /usr/lib/postfix/lmtp rw, /usr/sbin/postdrop ixr, /usr/sbin/sendmail ixr, /var/lib/imap/socket/notify w, /var/run/cyrus.pid krw, /var/run/cyrus.pid.lock krw, /var/run/sasl2/mux w, /var/spool/postfix/maildrop/* rw, /var/spool/postfix/public/pickup w, }	over 4 years ago		242	arclyde	Edit	History
opensuse10.3	/usr/bin/ekiga	#include <tunables/global> /usr/bin/ekiga flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /dev/ r, /dev/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.beagle/socket w, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2/gnomemeeting rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel.* rw, /proc/meminfo r, /proc/net/if_inet6 r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/ekiga mr, /usr/lib/pwlib/devices/sound/.so mr, /usr/lib/pwlib/devices/videoinput/.so mr, /usr/share/mime/.xml r, /var/cache/libx11/compose/ r, }	over 4 years ago	argh, switch things back to complain for a while	321	jmichael	Edit	History
ubuntu-gutsy	/usr/sbin/apache2	#include <tunables/global> /usr/sbin/apache2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/perl> capability dac_override, capability dac_read_search, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, /etc//htpasswd.users r, /etc/apache2/* r, /etc/drupal/6/* r, /etc/drupal/6/sites/default/dbconfig.php r, /etc/drupal/6/sites/default/settings.php r, /etc/javascript-common/javascript-common.conf r, /etc/mime.types r, /etc/mtab r, /etc/nagios-pnp/* r, /etc/nagios2/* r, /etc/perl/Net/libnet.cfg r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/* r, /etc/roundcube/* r, /etc/shadow r, /etc/ssl/openssl.cnf r, /home/nonexistent/ krw, /home/www/ r, /proc//mounts r, /tmp/ r, /tmp/ w, /usr/bin/perl ix, /usr/bin/sperl5.8.8 ixr, /usr/lib/** mr, /usr/sbin/apache2 mr, /usr/share/apache2/icons/* r, /usr/share/drupal6/ r, /usr/share/file/magic.mime r, /usr/share/perl/ r, /usr/share/php/ r, /usr/share/roundcube/ r, /usr/share/zoneinfo/ r, /var/lib/drupal6/files/ w, /var/lib/roundcube/** r, /var/log/apache2/* w, /var/log/openwebmail.log a, /var/log/roundcube/errors a, /var/run/apache2.pid rw, /var/run/apache2/ssl_mutex w, /var/run/mysqld/mysqld.sock w, /var/tmp/* w, /var/www/** r, /var/www//cgi-bin/openwebmail/etc/sessions/* krw, /var/www//cgi-bin/openwebmail/etc/users/* klrw, /var/www//cgi-bin/openwebmail/openwebmail-abook.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-main.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-read.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-send.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-viewatt.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail.pl ixr, } /usr/sbin/apache2//DEFAULT_URI { } /usr/sbin/apache2//HANDLING_UNTRUSTED_INPUT { }	over 3 years ago		198	stive	Edit	History
opensuse10.3	/usr/bin/top	#include <tunables/global> /usr/bin/top flags=(complain) { #include <abstractions/base> /proc/ r, /proc//stat r, /proc//statm r, /proc/loadavg r, /proc/sys/kernel/pid_max r, /proc/uptime r, /usr/bin/top mr, /usr/share/terminfo/x/xterm r, /var/run/nscd/passwd r, /var/run/nscd/socket w, /var/run/utmp kr, }	over 4 years ago	top-log	294	Sakthivel Rajan N	Edit	History
opensuse11.0	/usr/sbin/cron	#include <tunables/global> /usr/sbin/cron { #include <abstractions/base> }	about 1 year ago	prof_cron	56	prof	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> deny capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /etc/magic r, /usr/bin/file rix, /usr/lib/firefox/firefox px, /usr/share/misc/magic.mgc r, }	over 2 years ago	/home/docs/apparmor.log	286	raulliborio	Edit	History
opensuse11.0	/usr/lib64/cups/daemon/cups-driverd	#include <tunables/global> /usr/lib64/cups/daemon/cups-driverd flags=(complain) { #include <abstractions/base> }	over 3 years ago	CUPS-Grundkonfiguration	133	estellnb	Edit	History
ubuntu-gutsy	/usr/lib/postfix/trivial-rewrite	# $Id: usr.lib.postfix.trivial-rewrite 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/trivial-rewrite { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /etc/postfix/relocated.db r, /etc/postfix/transport.db r, /etc/postfix/virtual.db r, /etc/{m,fs}tab r, /usr/lib/postfix/trivial-rewrite rmix, /var/spool/postfix/etc/hosts r, /var/spool/postfix/etc/resolv.conf r, /var/spool/postfix/lib/libso r, /var/spool/postfix/pid/unix.rewrite rw, }	over 2 years ago		196	stive	Edit	History
opensuse11.0	/usr/lib/opera/9.52/operaplugincleaner	#include <tunables/global> /usr/lib/opera/9.52/operaplugincleaner flags=(complain) { #include <abstractions/base> /usr/lib/** mr, }	over 3 years ago	opera	237	vojtaeus	Edit	History
opensuse10.3	/opt/kde3/bin/kmail	#include <tunables/global> /opt/kde3/bin/kmail flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kmail mr, /opt/kde3/lib/libso mr, }	over 4 years ago	kmail1	247	mmm	Edit	History
opensuse10.3	/etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh	#include <tunables/global> /etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh mr, /proc/meminfo r, /usr/sbin/sabayon-apply Px, }	over 4 years ago	few more changes to get gnome session working elsewhere	422	jmichael	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> deny capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /etc/magic r, /usr/bin/file rix, /usr/lib/firefox/firefox px, /usr/share/misc/magic.mgc r, }	over 3 years ago		222	juan	Edit	History
opensuse11.0	/usr/lib/man-db/manconv	#include <tunables/global> /usr/lib/man-db/manconv { #include <abstractions/base> /usr/lib/man-db/manconv mr, }	over 3 years ago		204	cboltz-server	Edit	History
opensuse10.3	/home/dominic/bin/url_handler.sh	#include <tunables/global> /home/dominic/bin/url_handler.sh { #include <abstractions/base> /home/dominic/bin/url_handler.sh mr, }	over 4 years ago	none	233	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/soundconverter	#include <tunables/global> /usr/bin/soundconverter { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/soundconverter mr, }	over 4 years ago	gnome	306	hbpteam	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ix, ^null-11 { #include <abstractions/base> } ^null-13 { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gre.d/ r, /etc/gre.d/.conf r, /etc/kde4/share/* r, /etc/kde4rc r, owner /home//.Xauthority r, owner /home//.config/* rk, owner /home//.fontconfig/ r, owner /home//.fonts.conf r, owner /home//.gtkrc-2.0-kde4 r, owner /home//.kde4/share/* rk, owner /home//.mozilla/* rwk, /proc/cpuinfo r, /proc/filesystems r, /proc/meminfo r, owner /usr/lib64/ w, /usr/lib64/ mr, /usr/share/locale-bundle/ r, /usr/share/mozilla/ r, } ^null-d { #include <abstractions/base> } ^null-f { #include <abstractions/base> /etc/magic r, /usr/share/** r, } }	about 1 year ago		97	NthDeGeek	Edit	History
opensuse11.0	/bin/confined_bash	#include <tunables/global> /bin/confined_bash { #include <abstractions/base> #include <abstractions/nameservice> capability net_raw, capability setuid, network inet raw, deny /bin/confined_bash r, deny /bin/cp x, deny /bin/gawk x, deny /bin/ping x, deny /bin/sed mrx, deny /bin/uname mrx, deny /dev/tty rw, deny /etc/DIR_COLORS r, deny /etc/bash.bashrc r, deny /etc/group r, deny /etc/inputrc r, deny /etc/manpath.config r, deny /etc/nsswitch.conf r, deny /etc/opt/ r, deny /etc/passwd r, deny /etc/profile r, deny /etc/profile.d/ r, deny /etc/profile.d/alljava.sh r, deny /etc/profile.d/cvs.sh r, deny /etc/profile.d/desktop-data.sh r, deny /etc/profile.d/gvfs-bash-completion.sh r, deny /etc/profile.d/krb5.sh r, deny /etc/profile.d/lang.sh r, deny /etc/profile.d/mc.sh r, deny /etc/profile.d/modules.sh r, deny /etc/profile.d/mpi-selector.sh r, deny /etc/profile.d/opensp.sh r, deny /etc/profile.d/opera.sh r, deny /etc/profile.d/polkit-bash-completion.sh r, deny /etc/profile.d/profile.sh r, deny /etc/profile.d/python.sh r, deny /etc/profile.d/qt3.sh r, deny /etc/profile.d/setup.sh r, deny /etc/profile.d/sh.ssh r, deny /etc/profile.d/texlive.sh r, deny /etc/profile.d/xdg-environment.sh r, deny /etc/profile.d/zzz-glib2.sh r, deny /etc/profile.d/zzz-groff.sh r, deny /etc/sysconfig/console r, deny /etc/sysconfig/mail r, deny /etc/sysconfig/news r, deny /etc/sysconfig/proxy r, deny /etc/sysconfig/suseconfig r, deny /etc/sysconfig/windowmanager r, deny owner /home/userx/ r, deny owner /home/userx/.bash_history r, deny owner /home/userx/.inputrc r, deny owner /home/userx/.profile r, deny /opt/ r, deny owner /proc/6690/exe r, deny owner /proc/6692/mounts r, deny owner /proc/6758/mounts r, deny owner /proc/6794/mounts r, deny /usr/bin/dircolors mrx, deny /usr/bin/less x, deny /usr/bin/manpath mrx, deny /usr/bin/mc x, deny /usr/bin/tty mrx, deny /usr/bin/whatis x, deny /usr/bin/which x, deny /usr/lib64/jvm/java-1.6.0-sun-1.6.0/bin/java x, deny /usr/lib64/jvm/java-1.6.0-sun-1.6.0/bin/javac x, deny /usr/lib64/jvm/java-1.6.0-sun-1.6.0/jre/bin/java x, deny /usr/share/X11/XKeysymDB r, deny /usr/share/modules/init/.modulespath r, deny /usr/share/modules/init/sh r, deny /usr/share/terminfo/x/xterm r, deny /var/mpi-selector/data/openmpi-1.2.8.sh r, /bin/cat mrix, /bin/cp mr, /bin/gawk mr, /bin/ls mrix, /bin/ping mr, owner /dev/pts/4 rw, /etc/sysconfig/mpi-selector r, owner /home//.bash_history a, owner /home//.mc/ w, owner /home//.mc/Tree w, owner /home//.mc/Tree.tmp rw, owner /home//.mc/history w, owner /home//.mc/ini w, /opt/mpich/man/ r, owner /proc/*/mounts r, /proc/filesystems r, owner /tmp/mc-userx/ w, /usr/bin/mc mr, /usr/bin/whatis mr, /usr/lib64/mc/cons.saver rix, /usr/local/man/ r, /usr/share/man/ r, /usr/share/mc/extfs/extfs.ini r, /usr/share/mc/extfs/sfs.ini r, /usr/share/mc/mc.charsets r, /usr/share/mc/mc.hint r, /usr/share/mc/mc.lib r, /var/cache/man/index.db rk, /var/cache/man/local/index.db rk, }	over 2 years ago		151	userx	Edit	History
opensuse10.3	/sbin/ifconfig	#include <tunables/global> /sbin/ifconfig flags=(complain) { #include <abstractions/base> /sbin/ifconfig mr, }	over 4 years ago		269	AnThraxII	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/50-ntp	#include <tunables/global> /etc/sysconfig/network/scripts/50-ntp { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/init.d/ntp Px, /etc/sysconfig/network/scripts/50-ntp mr, /proc/meminfo r, /sbin/chkconfig Px, }	over 4 years ago	none	168	cinimod	Edit	History
ubuntu-gutsy	freeradius	# vim:syntax=apparmor # Last Modified: Thu Oct 30 14:30:22 2008 #include <tunables/global> /usr/sbin/freeradius flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /etc/freeradius/ r, /proc/net/if_inet6 r, /usr/sbin/freeradius mr, /var/run/freeradius/radiusd.pid w, /usr/lib/freeradius/ rm, # support for logs /var/log/freeradius/** rw, }	over 3 years ago	initial freeradius profile support for flat configuration files	196	playerx	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> network stream, /bin/basename rcx, /bin/bash rix, /bin/grep rix, /etc/gnome-vfs-2.0/modules/ r, /etc/gre.d/ r, /etc/gre.d/* r, /etc/mailcap r, /etc/mime.types r, /etc/opt/kde3/*/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.fontconfig/ r, owner /home//.fonts.conf r, owner /home//.kde/share/config/kdeglobals r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/applications/ r, owner /home//.local/share/mime/mime.cache r, owner /home//Documents/.etc/mozilla/extensions// r, owner /home//Documents/.etc/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//Documents/.etc/mozilla/firefox/ r, owner /home//Documents/.etc/mozilla/firefox// r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/ rwk, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default// rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash/Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache/ rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/adblockplus/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/chrome/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/extensions/* r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/gm_scripts/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/searchplugins/ rw, owner /home/draglor/Documents/Temp/ w, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, owner /proc//cmdline r, /proc/meminfo r, /usr/bin/file rcx, /usr/lib/firefox/firefox mrpx, /usr/lib/firefox/firefox.sh rix, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/locale-bundle/de/LC_MESSAGES/ r, /usr/share/mozilla/extensions/*/ r, /var/cache/gio-2.0/defaults.list r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, profile /bin/basename { #include <abstractions/base> /bin/basename mr, } profile /usr/bin/file { #include <abstractions/base> /etc/magic r, /usr/bin/file mr, /usr/share/misc/magic.mgc r, } }	over 3 years ago		240	Michi8383	Edit	History
opensuse10.3	/sda7/distributions/10.3/bin/zcat	#include <tunables/global> /sda7/distributions/10.3/bin/zcat { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /sda7/distributions/10.3/bin/zcat mr, }	over 4 years ago	sda	274	resqp2if	Edit	History
opensuse10.3	/opt/skype/skype	#include <tunables/global> /opt/skype/skype flags=(complain) { #include <abstractions/base> /opt/skype/skype mr, }	over 4 years ago		254	CarlosAlbertoRibeiro	Edit	History
opensuse11.0	/usr/sbin/privoxy	#include <tunables/global> /usr/sbin/privoxy { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, owner /usr/sbin/privoxy r, owner /var/lib/privoxy/etc/* w, /var/lib/privoxy/etc/* r, /var/lib/privoxy/etc/templates/* r, /var/lib/privoxy/lib/* mr, owner /var/lib/privoxy/log/logfile a, owner /var/run/privoxy.pid w, }	about 1 year ago		68	cityzen	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	#include <tunables/global> /usr/lib/firefox/firefox-bin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/grep ixr, /bin/netstat Px, /bin/ps Px, /etc/gai.conf r, /etc/gconf/2/path r, /etc/gnome-vfs-2.0/modules/ r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.adobe/Flash_Player/* r, /home//.beagle/ToIndex/.firefox-beagle-1b7aaaa74afc162f83a8893145441e40.html w, /home//.beagle/ToIndex/firefox-beagle-058f68d99a8a2c8cc613b509796a78ff.html w, /home//.beagle/ToIndex/firefox-beagle-06265edb505e1972daf0c46599e7e617.html w, /home//.beagle/ToIndex/firefox-beagle-13bef4ee5b7306ccbe56cbe1ba049465.html w, /home//.beagle/ToIndex/firefox-beagle-16011019dd2e2c96be6c5e0e7839e99e.html w, /home//.beagle/ToIndex/firefox-beagle-1b7aaaa74afc162f83a8893145441e40.html w, /home//.beagle/ToIndex/firefox-beagle-1e238e2b0cca4b3b1421a24af34a0469.html w, /home//.beagle/ToIndex/firefox-beagle-20873f88d5f4d7280dba59f2e52cea6f.html w, /home//.beagle/ToIndex/firefox-beagle-34c23cd8d767ef49028a03fcf9706ebc.html w, /home//.beagle/ToIndex/firefox-beagle-37fc1444bd61bd2db1d702f25668eb08.html w, /home//.beagle/ToIndex/firefox-beagle-39e80f13213638c10da36f231ecf62af.html w, /home//.beagle/ToIndex/firefox-beagle-415c482f64c03cfe16ad59814770fb2e.html w, /home//.beagle/ToIndex/firefox-beagle-45c2e0d6195b0d156b32655e58e6e2fe.html w, /home//.beagle/ToIndex/firefox-beagle-4b8aca5d0d18971ff7c2431bbcb5dcfd.html w, /home//.beagle/ToIndex/firefox-beagle-540dee6e767bee2ab54d6d784214bcfc.html w, /home//.beagle/ToIndex/firefox-beagle-61d6d7d3187e179e400ca5baaf79fe60.html w, /home//.beagle/ToIndex/firefox-beagle-6fcc7027e5b34964c9cec9aeecdc2694.html w, /home//.beagle/ToIndex/firefox-beagle-77698aa3731bb22b4f143646de559cd3.html w, /home//.beagle/ToIndex/firefox-beagle-7d7288931290a4bf75a5adb9eb9647cb.html w, /home//.beagle/ToIndex/firefox-beagle-7f8c0de864953671ffbb483cbe18c958.html w, /home//.beagle/ToIndex/firefox-beagle-8544ed0589250a2c769f5de1bed96a06.html w, /home//.beagle/ToIndex/firefox-beagle-8b93056381e9c2ef6472cbd166b4b023.html w, /home//.beagle/ToIndex/firefox-beagle-91fe23991706ee4bd6b3f424d565587d.html w, /home//.beagle/ToIndex/firefox-beagle-936068160232a077beb855002605a841.html w, /home//.beagle/ToIndex/firefox-beagle-9e6e2c6130f74e5218abd6c957fc27b3.html w, /home//.beagle/ToIndex/firefox-beagle-a5c2b7fc86950ec537a70b8d225842ee.html w, /home//.beagle/ToIndex/firefox-beagle-a78c31de2714905f71f8127402ab11d7.html w, /home//.beagle/ToIndex/firefox-beagle-a8694d1e44a9c6766543be2442a65e6a.html w, /home//.beagle/ToIndex/firefox-beagle-b2f14e7178187fa17e7bf482a28c7fe5.html w, /home//.beagle/ToIndex/firefox-beagle-c8f92f40baab89b06fe5e815d890323c.html w, /home//.beagle/ToIndex/firefox-beagle-d0d3fe2597f19742f701365fdf4ec636.html w, /home//.beagle/ToIndex/firefox-beagle-d482552fcc4c82aac64b488d4dd8630e.html w, /home//.beagle/ToIndex/firefox-beagle-d516025c887b6bcec8ec49879684f9c1.html w, /home//.beagle/ToIndex/firefox-beagle-d897e361e89f2e73401fbafe468a4b8e.html w, /home//.beagle/ToIndex/firefox-beagle-d9d1c57d6c8c426609ba333650f2cc45.html w, /home//.beagle/ToIndex/firefox-beagle-dad415e74101060de13afbdc4302ac4c.html w, /home//.beagle/ToIndex/firefox-beagle-db415a846a5709baedc069a6a0a5123a.html w, /home//.beagle/ToIndex/firefox-beagle-e03fb9b613e1a0ccbc7d978f8b143747.html w, /home//.beagle/ToIndex/firefox-beagle-e4ef1cc5323812775449b85a8f4a4999.html w, /home//.beagle/ToIndex/firefox-beagle-e53d9c50c42da3215e236c03d647ad4e.html w, /home//.beagle/ToIndex/firefox-beagle-f9659219743fb24d08dc4dc2c07e234c.html w, /home//.beagle/ToIndex/firefox-beagle-ff596d1e13b1320c8f1006d58c8dc1ea.html w, /home//.beagle/socket w, /home//.bookmarks.html rw, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.* rw, /home//.config/qtcurvestylerc r, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gconf/ r, /home//.gconf/.testing.writeability w, /home//.gnome2_private/ w, /home//.icons/ r, /home//.kde/share/config/gtkrc-2.0 r, /home//.kde/share/config/gtkrc-qtc rw, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.macromedia/Flash_Player/* r, /home//.mailcap r, /home//.mozilla/firefox/** krw, /home//.mozilla/plugins/ r, /home//.mozilla/plugins/libflashplayer.so mr, /home//.recently-used.xbel r, /home//.recently-used.xbel.IE516T w, /home//Desktop/ r, /home//Desktop/** rw, /home//Documents/* rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/amarok.desktop r, /opt/kde3/share/applications/kde/gwenview.desktop r, /opt/kde3/share/applications/kde/kaffeine.desktop r, /opt/kde3/share/applications/kde/realplay-kde.desktop r, /opt/kde3/share/applications/kde/showfoto.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//cmdline r, /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/** klrw, /usr/bin/acroread Px, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/file-roller Px, /usr/bin/gimp-remote-2.2 Px, /usr/bin/gvim-normal ixr, /usr/bin/mplayer Px, /usr/bin/realplay-gnome Px, /usr/lib/Acrobat7/Browser/intellinux/.so mr, /usr/lib/GConf/2/gconfd-2 ixr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/firefox.sh Px, /usr/lib/totem/totem-plugin-viewer Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/suse-help.svg r, /usr/share/gdm/applications/ r, /usr/share/locale-bundle/de/LC_MESSAGES/GConf2.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/mime/*.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	lista	216	660o174122	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule { #include <abstractions/base> /usr/bin/amule mr, }	over 4 years ago	apparmor.log	183	danny	Edit	History
ubuntu-gutsy	/usr/lib/j2se/1.4/jre/javaws/javaws	#include <tunables/global> /usr/lib/j2se/1.4/jre/javaws/javaws { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/j2se/1.4/jre/javaws/javaws mr, }	over 4 years ago	gnome	217	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-c2s	#include <tunables/global> /usr/sbin/jabberd2-c2s flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-c2s mr, }	over 4 years ago		277	igoriii	Edit	History
ubuntu-gutsy	/usr/games/iagno	#include <tunables/global> /usr/games/iagno { #include <abstractions/base> /usr/games/iagno mr, }	over 4 years ago	gnome	370	hbpteam	Edit	History
opensuse10.3	/usr/sbin/postfix	#include <tunables/global> /usr/sbin/postfix flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /bin/bash ixr, /bin/egrep ixr, /bin/grep ixr, /bin/ls ixmr, /bin/uname ixr, /dev/console rw, /dev/tty rw, /etc/gai.conf r, /etc/postfix/ r, /etc/postfix/dynamicmaps.cf r, /etc/postfix/main.cf r, /etc/postfix/master.cf r, /etc/postfix/post-install r, /etc/postfix/postfix-files r, /etc/postfix/postfix-script ixr, /etc/postfix/relocated.db krw, /etc/postfix/transport.db krw, /etc/postfix/virtual.db krw, /proc/meminfo r, /proc/net/if_inet6 r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/cmp ixr, /usr/bin/find ixr, /usr/lib/postfix/bounce ixr, /usr/lib/postfix/error ixr, /usr/lib/postfix/master ixr, /usr/lib/postfix/pickup ixr, /usr/lib/postfix/qmgr ixr, /usr/lib/postfix/smtp ixr, /usr/lib/postfix/trivial-rewrite ixr, /usr/sbin/ r, /usr/sbin/postconf ixr, /usr/sbin/postfix mr, /usr/sbin/postlog ixr, /usr/sbin/postqueue ixr, /usr/sbin/postsuper ixr, /usr/sbin/sendmail r, /usr/share/doc/packages/postfix/README_FILES/QMQP_README r, /var/run/nscd/services r, /var/spool/postfix/ r, /var/spool/postfix/active/ r, /var/spool/postfix/active/100091AF41CB krw, /var/spool/postfix/active/4BE3E1AF41C1 krw, /var/spool/postfix/active/4CE981AF41C2 krw, /var/spool/postfix/active/644E71AF41C4 krw, /var/spool/postfix/active/A3C3F1AF41B0 krw, /var/spool/postfix/active/BDB231AF41B6 krw, /var/spool/postfix/active/CAE441AF41C0 krw, /var/spool/postfix/bounce/ r, /var/spool/postfix/corrupt/ r, /var/spool/postfix/defer/ r, /var/spool/postfix/defer/1/ r, /var/spool/postfix/defer/1/100091AF41CB kw, /var/spool/postfix/defer/4/ r, /var/spool/postfix/defer/4/4BE3E1AF41C1 kw, /var/spool/postfix/defer/4/4CE981AF41C2 kw, /var/spool/postfix/defer/6/ r, /var/spool/postfix/defer/6/644E71AF41C4 kw, /var/spool/postfix/defer/A/ r, /var/spool/postfix/defer/A/A3C3F1AF41B0 kw, /var/spool/postfix/defer/B/ r, /var/spool/postfix/defer/B/BDB231AF41B6 kw, /var/spool/postfix/defer/C/ r, /var/spool/postfix/defer/C/CAE441AF41C0 kw, /var/spool/postfix/deferred/ r, /var/spool/postfix/deferred/1/ r, /var/spool/postfix/deferred/1/100091AF41CB rw, /var/spool/postfix/deferred/4/ r, /var/spool/postfix/deferred/4/4BE3E1AF41C1 rw, /var/spool/postfix/deferred/4/4CE981AF41C2 rw, /var/spool/postfix/deferred/6/ r, /var/spool/postfix/deferred/6/644E71AF41C4 rw, /var/spool/postfix/deferred/A/ r, /var/spool/postfix/deferred/A/A3C3F1AF41B0 rw, /var/spool/postfix/deferred/B/ r, /var/spool/postfix/deferred/B/BDB231AF41B6 rw, /var/spool/postfix/deferred/C/ r, /var/spool/postfix/deferred/C/CAE441AF41C0 rw, /var/spool/postfix/flush/ r, /var/spool/postfix/hold/ r, /var/spool/postfix/incoming/ r, /var/spool/postfix/maildrop/ r, /var/spool/postfix/pid/master.pid krw, /var/spool/postfix/pid/unix.defer krw, /var/spool/postfix/pid/unix.retry krw, /var/spool/postfix/pid/unix.smtp krw, /var/spool/postfix/private/ r, /var/spool/postfix/private/anvil w, /var/spool/postfix/private/bounce w, /var/spool/postfix/private/bsmtp w, /var/spool/postfix/private/cyrus w, /var/spool/postfix/private/defer w, /var/spool/postfix/private/discard w, /var/spool/postfix/private/error w, /var/spool/postfix/private/ifmail w, /var/spool/postfix/private/lmtp w, /var/spool/postfix/private/local w, /var/spool/postfix/private/maildrop w, /var/spool/postfix/private/procmail w, /var/spool/postfix/private/proxymap w, /var/spool/postfix/private/relay w, /var/spool/postfix/private/retry w, /var/spool/postfix/private/rewrite w, /var/spool/postfix/private/scache w, /var/spool/postfix/private/smtp w, /var/spool/postfix/private/trace w, /var/spool/postfix/private/uucp w, /var/spool/postfix/private/verify w, /var/spool/postfix/private/virtual w, /var/spool/postfix/public/ r, /var/spool/postfix/public/cleanup w, /var/spool/postfix/public/flush w, /var/spool/postfix/public/pickup rw, /var/spool/postfix/public/qmgr rw, /var/spool/postfix/public/showq w, /var/spool/postfix/trace/ r, }	over 4 years ago	dazuko	794	overwrite	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/50-ntp	#include <tunables/global> /etc/sysconfig/network/scripts/50-ntp { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/init.d/ntp Px, /etc/sysconfig/network/scripts/50-ntp mr, /proc/meminfo r, /sbin/chkconfig Px, }	over 4 years ago	Import of jmichaels profiles	194	dominic	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	about 1 year ago		72	mwnetsystems	Edit	History
opensuse11.0	/usr/bin/opera	#include <tunables/global> /usr/bin/opera flags=(complain) { #include <abstractions/base> #include <abstractions/bash> capability sys_ptrace, network dgram, network stream, /bin/bash rix, /bin/grep rix, /bin/ls mrix, /bin/ps rix, /bin/sed mrpx, /dev/tty rw, /etc/X11/kstylerc r, /etc/X11/qt_plugins_3.3rc r, /etc/X11/qtrc r, /etc/fonts/** r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/host.conf r, /etc/hosts r, /etc/mailcap rk, /etc/nsswitch.conf r, /etc/opera6rc rk, /etc/opera6rc.fixed rk, /etc/opt/kde3/share/applications/mimeinfo.cache rk, /etc/passwd r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.adobe/Flash_Player/AssetCache/ r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.fontconfig/ r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kcmnspluginrc rwk, owner /home//.kde/share/config/kdeglobals r, owner /home//.local/share/icons/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/ r, owner /home//.mozilla/firefox/* r, owner /home//.mozilla/plugins/ r, owner /home//.opera/ rw, owner /home//.opera/ rwk, owner /home//.opera/cache4/ r, owner /home//.opera/cache4/* rwk, owner /home//.opera/cache4/revocation/ r, owner /home//.opera/cache4/revocation/* rwk, owner /home//.opera/images/ rwk, owner /home//.opera/mail/ w, owner /home//.opera/mail/* rwk, owner /home//.opera/mail/indexer/ rwk, owner /home//.opera/mail/lexicon/ rwk, owner /home//.opera/opcache/ r, owner /home//.opera/opcache/* rwk, owner /home//.opera/sessions/ rw, owner /home//.opera/sessions/* rwk, owner /home//.opera/skin/ r, owner /home//.opera/skin/* rk, owner /home//.opera/styles/user/ r, owner /home//.opera/styles/user/* rwk, owner /home//.opera/thumbnails/ rk, owner /home//.opera/toolbar/ r, owner /home//.opera/toolbar/* rwk, owner /home//.opera/vps/ r, owner /home//.opera/vps/0000/* rwk, owner /home//.opera/widgets/ rwk, owner /home//.qt/.kstylerc.lock rwk, owner /home//.qt/.qt_plugins_3.3rc.lock rwk, owner /home//.qt/.qtrc.lock rwk, owner /home//.qt/kstylerc r, owner /home//.qt/qt_plugins_3.3rc r, owner /home//.qt/qtrc r, /opt/ r, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib/kde3/plugins/styles/* mr, /opt/kde3/lib/libso mr, /opt/kde3/share/applications/mimeinfo.cache rk, /opt/kde3/share/fonts/** r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/index.theme rk, /proc/ r, /proc//cmdline r, owner /proc//maps r, /proc//stat r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, /tmp/.X11-unix/X0 w, /usr/ r, /usr/X11R6/lib/ r, /usr/bin/opera r, /usr/lib/ r, /usr/lib/ mr, /usr/lib/opera/9.52/opera rix, /usr/lib/opera/9.52/operaplugincleaner px, /usr/lib/opera/9.52/operapluginwrapper rix, /usr/lib/opera/9.52/works px, /usr/local/ r, /usr/local/lib/ r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/applications/mimeinfo.cache rk, /usr/share/desktop-data/qtrc r, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/icons/ r, /usr/share/icons/ rk, /usr/share/locale-bundle/cs/LC_MESSAGES/coreutils.mo r, /usr/share/locale-bundle/cs/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/cs/LC_MESSAGES/gtk20.mo r, /usr/share/mime/aliases rk, /usr/share/mime/globs rk, /usr/share/mime/subclasses rk, /usr/share/opera/encoding.bin rk, /usr/share/opera/ini/dialog.ini rk, /usr/share/opera/ini/fastforward.ini rk, /usr/share/opera/ini/font.ini rk, /usr/share/opera/ini/pluginpath.ini rk, /usr/share/opera/ini/standard_keyboard.ini rk, /usr/share/opera/ini/standard_menu.ini rk, /usr/share/opera/ini/standard_mouse.ini rk, /usr/share/opera/ini/standard_toolbar.ini rk, /usr/share/opera/locale/en/search.ini rk, /usr/share/opera/locale/english.lng rk, /usr/share/opera/skin/ r, /usr/share/opera/skin/* rk, /usr/share/opera/styles/* rk, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/* r, /var/cache/gio-2.0/defaults.list rk, /var/cache/libx11/compose/* r, }	over 2 years ago		179	userusr	Edit	History
ubuntu-gutsy	/usr/lib/postfix/spawn	# $Id: usr.lib.postfix.spawn 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/spawn { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/spawn rmix, }	over 3 years ago		257	stive	Edit	History
opensuse10.3	/usr/local/BGRadiusDialup/radius.sh	#include <tunables/global> /usr/local/BGRadiusDialup/radius.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> /bin/bash ixr, /dev/tty rw, /etc/sysconfig/clock r, /proc//maps r, /proc/meminfo r, /proc/net/if_inet6 r, /proc/net/ipv6_route r, /proc/stat r, /tmp/* mrw, /usr/bin/nohup ixr, /usr/bin/readlink ixr, /usr/lib64/** mr, /usr/lib64/jvm/java-1.6.0.u4-sun-1.6.0.u4/jre/bin/java ixr, /usr/lib64/jvm/java-1.6.0.u4-sun-1.6.0.u4/jre/bin/java.bin ixr, /usr/local/BGRadiusDialup/dictionary.xml r, /usr/local/BGRadiusDialup/lib/ r, /usr/local/BGRadiusDialup/lib/activation.jar mr, /usr/local/BGRadiusDialup/lib/bsh-1.3.0.jar mr, /usr/local/BGRadiusDialup/lib/commons-collections.jar mr, /usr/local/BGRadiusDialup/lib/commons-dbcp-1.1.jar mr, /usr/local/BGRadiusDialup/lib/commons-pool-1.1.jar mr, /usr/local/BGRadiusDialup/lib/dialup.jar mr, /usr/local/BGRadiusDialup/lib/dnsjava.jar mr, /usr/local/BGRadiusDialup/lib/gnu-crypto.jar mr, /usr/local/BGRadiusDialup/lib/log4j-1.2.8.jar mr, /usr/local/BGRadiusDialup/lib/mail.jar mr, /usr/local/BGRadiusDialup/lib/mysql-5.0.3.jar mr, /usr/local/BGRadiusDialup/lib/snmp4_13.jar mr, /usr/local/BGRadiusDialup/lib/xalan.jar mr, /usr/local/BGRadiusDialup/lib/xercesImpl.jar mr, /usr/local/BGRadiusDialup/log/collector.log w, /usr/local/BGRadiusDialup/log/connection.log w, /usr/local/BGRadiusDialup/log/netflow.log w, /usr/local/BGRadiusDialup/log/processor.log w, /usr/local/BGRadiusDialup/log/radius.log w, /usr/local/BGRadiusDialup/log/radius.out w, /usr/local/BGRadiusDialup/log/script.log w, /usr/local/BGRadiusDialup/log4j_radius.properties r, /usr/local/BGRadiusDialup/radius.properties r, /usr/local/BGRadiusDialup/radius.sh mr, /usr/share/zoneinfo/ r, }	over 3 years ago	andrew	294	gankov	Edit	History
opensuse10.3	/sbin/portmap	#include <tunables/global> /sbin/portmap { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, /sbin/portmap mr, /var/run/portmap_mapping rw, }	over 4 years ago	none	184	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/bluetooth-applet	#include <tunables/global> /usr/bin/bluetooth-applet { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home/*/.Xauthority r, /usr/bin/bluetooth-applet mr, }	over 4 years ago	gnome	390	hbpteam	Edit	History
opensuse10.3	/usr/bin/fvwm	#include <tunables/global> /usr/bin/fvwm { #include <abstractions/base> /usr/bin/fvwm mr, }	over 4 years ago	Import of jmichaels profiles	204	dominic	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, /home//.config/Trolltech.conf rk, /home//.fontconfig/ r, /home//.mozilla/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, /proc/interrupts r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/iconengines/ r, /usr/lib/qt4/plugins/imageformats/ r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/locale/* r, /usr/share/icons/** r, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, }	about 1 year ago	Skype Installation	57	traude	Edit	History
opensuse10.3	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/netstat Px, /etc/gai.conf r, /home//.ICEauthority r, /home//.Xauthority r, /home//.fontconfig/ r, /home//.gstreamer-0.10/registry.i686.xml rw, /home//.gstreamer-0.10/registry.i686.xml.tmp* rw, /home//.icons/ r, /home//.local/share/icons/ r, /home//.purple/ r, /home//.purple/** rw, /home//.purple/cap.db krw, /proc/meminfo r, /usr/bin/gconftool-2 Px, /usr/bin/gnome-open Px, /usr/bin/pidgin mr, /usr/lib/pidgin/.so mr, /usr/lib/purple-2/.so mr, /usr/share/tcl/tcl/encoding/.enc r, /var/cache/libx11/compose/ r, }	over 4 years ago	argh, switch things back to complain for a while	229	jmichael	Edit	History
opensuse10.3	/usr/bin/file-roller	#include <tunables/global> /usr/bin/file-roller { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/cpio ixr, /bin/gzip ixr, /bin/tar ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/main rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel.* rw, /home//Desktop/* rw, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/ar ixr, /usr/bin/bzip2 ixr, /usr/bin/file-roller mr, /usr/bin/isoinfo ixr, /usr/bin/rpm2cpio ixr, /usr/bin/uncompress ixr, /usr/bin/unzip ixr, /usr/share/file-roller/icons/ r, /usr/share/file-roller/icons/ r, /usr/share/mime/.xml r, /var/cache/libx11/compose/* r, }	over 4 years ago	Import of jmichaels profiles	204	dominic	Edit	History
opensuse10.3	/usr/sbin/dhcdbd	#include <tunables/global> /usr/sbin/dhcdbd { #include <abstractions/base> #include <abstractions/dbus> /etc/HOSTNAME r, /etc/sysconfig/network/dhcp r, /sbin/dhclient Px, /usr/sbin/dhcdbd mr, /var/run/dhcdbd.pid w, }	over 4 years ago	Import of jmichaels profiles	212	dominic	Edit	History
opensuse10.3	/usr/bin/gnome-keyring-daemon	#include <tunables/global> /usr/bin/gnome-keyring-daemon flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability sys_ptrace, /home//.gnome2/keyrings/ r, /home//.gnome2/keyrings/.keyring* rw, /home//.gnome2/keyrings/default.keyring rw, /tmp/keyring-/ w, /tmp/keyring-*/socket w, /usr/bin/gnome-keyring-daemon mr, /usr/lib/gnome-keyring-1/gnome-keyring-ask Px, }	over 4 years ago	argh, switch things back to complain for a while	274	jmichael	Edit	History
opensuse11.0	/etc/init.d/postfix	#include <tunables/global> /etc/init.d/postfix { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		59	Jety	Edit	History
opensuse11.0	/usr/sbin/pure-ftpd	#include <tunables/global> /usr/sbin/pure-ftpd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, owner /proc/loadavg r, /srv/ftp/ r, owner /srv/ftp/* a, /srv/ftp/* r, owner /srv/ftp/.pureftpd-upload.4be9e1db.15.376b.4a162bed w, owner /usr/sbin/pure-ftpd r, owner /var/run/pure-ftpd.pid w, owner /var/run/pure-ftpd/ rw, owner /var/run/pure-ftpd/client-00032449 ra, /var/run/pure-ftpd/client-00032449 wk, }	about 1 year ago		78	geeko	Edit	History
ubuntu-gutsy	/etc/cron.daily/oink	#include <tunables/global> /etc/cron.daily/oink { #include <abstractions/base> #include <abstractions/perl> /bin/dash ixr, /etc/cron.daily/oink mr, /etc/oinkmaster.conf r, /etc/snort/rules/ r, /usr/bin/perl ix, /usr/lib/ mr, /usr/sbin/oinkmaster ixr, /usr/share/perl/ r, /usr/share/perl5/** r, }	over 3 years ago		122	stive	Edit	History
opensuse10.3	/usr/bin/gtk-gnash	#include <tunables/global> /usr/bin/gtk-gnash flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /cur/tmp/** w, /etc/* r, /home//* r, /home//.config/ rw, /proc/** r, /usr/bin/gtk-gnash mr, /usr/share/gnash/* r, }	over 3 years ago		186	shivver-fox	Edit	History
opensuse10.3	/sbin/portmap	#include <tunables/global> /sbin/portmap { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, /sbin/portmap mr, /var/run/portmap_mapping rw, }	over 4 years ago	Import of jmichaels profiles	207	dominic	Edit	History
opensuse10.3	/sbin/dhclient	#include <tunables/global> /sbin/dhclient { #include <abstractions/base> capability net_bind_service, capability net_raw, network inet dgram, network packet packet, /etc/dhclient.conf r, /etc/resolv.conf w, /etc/resolv.conf.saved.by.dhclient rw, /proc/net/dev r, /sbin/dhclient mr, /sbin/dhclient-script Px, /var/lib/dhcp/dhclient-.leases rw, /var/lib/dhcp/dhclient.leases rw, /var/run/dhclient-.pid rw, /var/run/dhclient.pid rw, /var/run/nscd/services r, /var/run/nscd/socket w, }	over 4 years ago	Import of jmichaels profiles	347	dominic	Edit	History
opensuse10.3	/usr/bin/xdpyinfo	#include <tunables/global> /usr/bin/xdpyinfo flags=(complain) { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/xdpyinfo mr, }	over 4 years ago	few more changes to get gnome session working elsewhere	322	jmichael	Edit	History
opensuse10.3	/usr/bin/fvwm	#include <tunables/global> /usr/bin/fvwm { #include <abstractions/base> /usr/bin/fvwm mr, }	over 4 years ago	none	206	cinimod	Edit	History
opensuse11.0	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/base> capability audit_control, capability setgid, capability setuid, capability sys_chroot, capability sys_tty_config, ^null-2e { deny capability sys_ptrace, } ^null-e { capability sys_ptrace, } }	about 1 year ago	pp	63	debetsm	Edit	History
opensuse10.3	/usr/bin/VirtualBox	#include <tunables/global> /usr/bin/VirtualBox flags=(complain) { #include <abstractions/base> /usr/bin/VirtualBox mr, }	over 3 years ago	Rich	237	ruscorp	Edit	History
opensuse10.3	/usr/bin/file-roller	#include <tunables/global> /usr/bin/file-roller { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/cpio ixr, /bin/gzip ixr, /bin/tar ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/main rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel.* rw, /home//Desktop/* rw, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/ar ixr, /usr/bin/bzip2 ixr, /usr/bin/file-roller mr, /usr/bin/isoinfo ixr, /usr/bin/rpm2cpio ixr, /usr/bin/uncompress ixr, /usr/bin/unzip ixr, /usr/share/file-roller/icons/ r, /usr/share/file-roller/icons/ r, /usr/share/mime/.xml r, /var/cache/libx11/compose/* r, }	over 4 years ago	none	175	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/Xorg	#include <tunables/global> /usr/bin/Xorg flags=(complain) { #include <abstractions/base> #include <abstractions/nvidia> #include <abstractions/user-tmp> capability dac_override, capability ipc_owner, capability setgid, capability setuid, capability sys_admin, capability sys_rawio, capability sys_tty_config, /bin/dash Px, /dev/input/mice rw, /dev/mem r, /dev/tty0 w, /dev/tty7 rw, /etc/X11/xorg.conf r, /etc/X11/xserver/SecurityPolicy r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home/void/.gnome2/share/fonts/* r, /proc/bus/pci/00/00.0 r, /proc/bus/pci/00/01.0 r, /proc/bus/pci/00/01.1 r, /proc/bus/pci/00/02.0 r, /proc/bus/pci/00/02.1 r, /proc/bus/pci/00/02.2 r, /proc/bus/pci/00/05.0 r, /proc/bus/pci/00/06.0 r, /proc/bus/pci/00/08.0 r, /proc/bus/pci/00/0a.0 r, /proc/bus/pci/00/0b.0 rw, /proc/bus/pci/00/0e.0 r, /proc/bus/pci/00/18.0 r, /proc/bus/pci/00/18.1 r, /proc/bus/pci/00/18.2 r, /proc/bus/pci/00/18.3 r, /proc/bus/pci/01/00.0 rw, /proc/bus/pci/02/08.0 r, /proc/bus/pci/02/08.1 r, /proc/bus/pci/02/0a.0 r, /proc/driver/nvidia/registry r, /proc/meminfo r, /proc/modules r, /sys/bus/pci/devices/ r, /sys/devices/pci0000:00/0000:00:00.0/resource r, /sys/devices/pci0000:00/0000:00:01.0/resource r, /sys/devices/pci0000:00/0000:00:01.1/resource r, /sys/devices/pci0000:00/0000:00:02.0/resource r, /sys/devices/pci0000:00/0000:00:02.1/resource r, /sys/devices/pci0000:00/0000:00:02.2/resource r, /sys/devices/pci0000:00/0000:00:05.0/resource r, /sys/devices/pci0000:00/0000:00:06.0/resource r, /sys/devices/pci0000:00/0000:00:08.0/resource r, /sys/devices/pci0000:00/0000:00:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/0000:01:00.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.1/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/resource r, /sys/devices/pci0000:00/0000:00:18.0/resource r, /sys/devices/pci0000:00/0000:00:18.1/resource r, /sys/devices/pci0000:00/0000:00:18.2/resource r, /sys/devices/pci0000:00/0000:00:18.3/resource r, /usr/bin/Xorg mr, /usr/lib/ mr, /usr/share/X11/xkb/rules/base r, /usr/share/fonts/ r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.alias r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.dir r, /var/lib/gdm/:0.Xauth r, /var/lib/xkb/server-0.xkm rw, /var/log/Xorg.0.log rw, /var/log/Xorg.0.log.old w, /var/run/acpid.socket w, }	over 4 years ago		336	igoriii	Edit	History
opensuse10.3	/usr/sbin/dhcdbd	#include <tunables/global> /usr/sbin/dhcdbd { #include <abstractions/base> #include <abstractions/dbus> /etc/HOSTNAME r, /etc/sysconfig/network/dhcp r, /sbin/dhclient Px, /usr/sbin/dhcdbd mr, /var/run/dhcdbd.pid w, }	over 4 years ago	none	210	cinimod	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	over 3 years ago	initial	196	pcaron	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, / r, // r, /bin/bash ixr, /bin/uname ixr, /data1 r, /data1/* rw, /data2/** rw, /dev/tty rw, /etc/gnome-vfs-2.0/modules/ r, /etc/opt/gnome/gnome-vfs-2.0/modules r, /etc/opt/gnome/gnome-vfs-2.0/modules/default-modules.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/font-method.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/mapping-modules.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/smb-module.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/theme-method.conf r, /etc/opt/gnome/gtk-2.0/gdk-pixbuf.loaders r, /etc/opt/gnome/gtk-2.0/gtk.immodules r, /etc/opt/gnome/gtk-2.0/gtkrc r, /etc/opt/gnome/pango/pango.modules r, /etc/opt/kde3/share/icons r, /etc/sound/events/gtk-events-2.soundlist r, /home/* r, /home// r, /home//* rw, /home//.aMule/ rw, /home//.aMule/** krw, /home//.beagle/socket w, /home//.config/gtk-2.0/* rw, /home//.config/qtcurve.gtk-colors rw, /home//.config/qtcurve.gtk-icons rw, /home//.fontconfig/ w, /home//.fontconfig/.cache-2 r, /home//.gnome2/Totem/state.ini rw, /home//.gnome2/Totem/state.ini.MBLUZT rw, /home//.gnome2/Totem/xine_config r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml r, /home//.icons/ r, /home//.icons/*/ r, /home//.icons/gnome/48x48/apps r, /home//.icons/hicolor/16x16/mimetypes r, /home//.icons/hicolor/32x32/mimetypes r, /home//.icons/hicolor/48x48/mimetypes r, /home//.icons/hicolor/icon-theme.cache r, /home//.icons/hicolor/scalable/mimetypes r, /home//.kde/share/config/gtkrc-2.0 r, /home//.kde/share/config/kdeglobals r, /home//.local/share/Trash/files/logfile w, /home//.local/share/icons r, /home//.local/share/icons/ r, /home//.local/share/icons/hicolor/16x16/mimetypes r, /home//.local/share/icons/hicolor/16x16/mimetypes/ r, /home//.local/share/icons/hicolor/32x32/mimetypes r, /home//.local/share/icons/hicolor/32x32/mimetypes/ r, /home//.local/share/icons/hicolor/48x48/mimetypes r, /home//.local/share/icons/hicolor/48x48/mimetypes/ r, /home//.local/share/icons/hicolor/icon-theme.cache r, /home//.local/share/icons/hicolor/scalable/mimetypes r, /home//.local/share/icons/hicolor/scalable/mimetypes/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/mime.cache r, /home//.local/share/mime/subclasses r, /home//.qt/qtrc r, /opt/gnome/lib/gtk-2.0/2.10.0/engines/libqtcurve.so mr, /opt/gnome/lib/gtk-2.0/2.10.0/immodules/im-xim.so mr, /opt/gnome/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so mr, /opt/gnome/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-xpm.so mr, /opt/gnome/lib/pango/1.5.0/modules/pango-arabic-fc.so m, /opt/gnome/lib/pango/1.5.0/modules/pango-basic-fc.so mr, /opt/gnome/lib/pango/1.5.0/modules/pango-hebrew-fc.so r, /opt/gnome/lib/pango/1.5.0/modules/pango-thai-fc.so m, /opt/gnome/share/icons r, /opt/gnome/share/icons/ r, /opt/gnome/share/icons/* r, /opt/gnome/share/locale/it/LC_MESSAGES/* r, /opt/gnome/share/mime/aliases r, /opt/gnome/share/mime/globs r, /opt/gnome/share/mime/magic r, /opt/gnome/share/mime/mime.cache r, /opt/gnome/share/mime/subclasses r, /opt/gnome/share/pixmaps r, /opt/gnome/share/pixmaps/ r, /opt/gnome/share/themes/QtCurve/** r, /opt/gnome/share/themes/Raleigh/gtk-2.0/gtkrc r, /opt/kde3/share/fonts r, /opt/kde3/share/icons r, /opt/kde3/share/pixmaps r, /opt/kde3/share/pixmaps/ r, /proc//cmdline r, /proc//maps r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /root/.aMule/ w, /tmp_script_enVWUv r, /tmp_script_rjMeeF r, /usr/X11R6/lib/X11/fonts r, /usr/X11R6/lib/X11/fonts/** r, /usr/bin/amule mr, /usr/bin/amuleweb ixr, /usr/bin/bug-buddy ixr, /usr/bin/mplayer Ux, /usr/bin/perl ixr, /usr/bin/totem ixr, /usr/bin/xterm ixr, /usr/share/amule// r, /usr/share/fonts r, /usr/share/ghostscript/fonts r, /usr/share/icons r, /usr/share/locale-bundle/de/.mo r, /usr/share/locale-bundle/it/LC_MESSAGES/ r, /usr/share/pixmaps r, /usr/share/totem/* r, /var/cache/libx11/compose/* r, }	over 4 years ago	amule	258	angel832	Edit	History
ubuntu-gutsy	/usr/bin/system-config-printer	#include <tunables/global> /usr/bin/system-config-printer { #include <abstractions/base> /bin/dash ix, /usr/bin/system-config-printer mr, }	over 4 years ago	gnome	252	hbpteam	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename { #include <abstractions/base> /bin/basename mr, }	over 4 years ago	Import of jmichaels profiles	283	dominic	Edit	History
opensuse10.3	/sbin/dhclient	#include <tunables/global> /sbin/dhclient { #include <abstractions/base> capability net_bind_service, capability net_raw, network inet dgram, network packet packet, /etc/dhclient.conf r, /etc/resolv.conf w, /etc/resolv.conf.saved.by.dhclient rw, /proc/net/dev r, /sbin/dhclient mr, /sbin/dhclient-script Px, /var/lib/dhcp/dhclient-.leases rw, /var/lib/dhcp/dhclient.leases rw, /var/run/dhclient-.pid rw, /var/run/dhclient.pid rw, /var/run/nscd/services r, /var/run/nscd/socket w, }	over 4 years ago	none	380	cinimod	Edit	History
opensuse11.0	/sbin/rsyslogd	#include <tunables/global> /sbin/rsyslogd { #include <abstractions/base> }	over 2 years ago	/var/log/rsyslog	213	virtualjack	Edit	History
opensuse11.0	/usr/bin/nspluginviewer	#include <tunables/global> /usr/bin/nspluginviewer flags=(complain) { #include <abstractions/base> }	over 3 years ago		230	purrcy	Edit	History
opensuse11.0	/usr/bin/evolution	#include <tunables/global> /usr/bin/evolution flags=(complain) { #include <abstractions/base> network dgram, network inet dgram, network inet stream, network stream, deny owner /home/maku/.evolution/.running w, deny owner /home/maku/.evolution/camel-cert.db~ a, deny owner /home/maku/.evolution/mail/.#searches.xml a, deny owner /home/maku/.evolution/mail/config/.#et-expanded-mbox:_home_maku_.evolution_mail_local_Inbox a, deny owner /home/maku/.evolution/mail/local/Outbox rw, deny owner /tmp/orbit-maku/linc-20bd-0-513de79c96411 w, deny /usr/share/evolution/2.22/errors/ r, deny /usr/share/evolution/2.22/images/ r, deny /usr/share/icons/Tango/16x16/status/dialog-warning.png r, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/hosts r, /etc/nsswitch.conf r, /etc/opt/kde3/share/icons/ r, /etc/opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, /etc/services r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.evolution/ r, owner /home//.evolution/.running a, owner /home//.evolution/cache/http/01/http:%2f%2frynekpracy.pl%2fgrafika_nowa%2fnewsletter%2fstopka_2.gif rw, owner /home//.evolution/cache/http/04/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2fnic.gif rw, owner /home//.evolution/cache/http/05/http:%2f%2frynekpracy.pl%2fgrafika_nowa%2fnewsletter%2fstopka_1.gif rw, owner /home//.evolution/cache/http/06/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_gora2.gif rw, owner /home//.evolution/cache/http/0f/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2flinia_niebieska.gif rw, owner /home//.evolution/cache/http/11/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fhumor.jpg rw, owner /home//.evolution/cache/http/16/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fanalizy.jpg rw, owner /home//.evolution/cache/http/16/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fzapytanie.jpg rw, owner /home//.evolution/cache/http/1d/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2fsonda_wynik.gif rw, owner /home//.evolution/cache/http/26/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fsedlak.jpg rw, owner /home//.evolution/cache/http/28/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fzyczenie.jpg rw, owner /home//.evolution/cache/http/31/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2flinia_szara.gif rw, owner /home//.evolution/cache/http/31/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fbrp.jpg rw, owner /home//.evolution/cache/http/31/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fnasze_raporty.gif rw, owner /home//.evolution/cache/http/32/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2ftop_newsletter_5.jpg rw, owner /home//.evolution/cache/http/34/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_rynku.gif rw, owner /home//.evolution/cache/http/37/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2f50plus.jpg rw, owner /home//.evolution/cache/http/38/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fdzial_analiz_new.jpg rw, owner /home//.evolution/cache/http/38/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_dol_2.gif rw, owner /home//.evolution/cache/http/3a/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fwynagrodzenia.jpg rw, owner /home//.evolution/cache/http/3b/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fmonitor_newsletter.gif rw, owner /home//.evolution/cache/http/3c/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_tlo.gif rw, owner /home//.evolution/cache/tmp/ r, owner /home//.evolution/cache/tmp/mail.log.W3uvlN a, owner /home//.evolution/cache/tmp/mail.log.sYeKFr a, owner /home//.evolution/cache/tmp/mail.log.tebp9Q a, owner /home//.evolution/cache/tmp/mail.log.xOOGFz a, owner /home//.evolution/camel-cert.db r, owner /home//.evolution/cert8.db rw, owner /home//.evolution/key3.db rw, owner /home//.evolution/mail/config/.#folder-tree-expand-state.xml rw, owner /home//.evolution/mail/config/et-expanded-mbox:_home_maku_.evolution_mail_local_Inbox r, owner /home//.evolution/mail/config/folder-tree-expand-state.xml rw, owner /home//.evolution/mail/config/gtkrc-mail-fonts r, owner /home//.evolution/mail/local/ r, owner /home//.evolution/mail/local/.#Inbox.cmeta rw, owner /home//.evolution/mail/local/.#evolution.sbd/Junk.cmeta r, owner /home//.evolution/mail/local/.#evolution.sbd/Trash.cmeta r, owner /home//.evolution/mail/local/Drafts.cmeta r, owner /home//.evolution/mail/local/Drafts.ibex.index rw, owner /home//.evolution/mail/local/Drafts.ibex.index.data rw, owner /home//.evolution/mail/local/Inbox rwk, owner /home//.evolution/mail/local/Inbox.cmeta rw, owner /home//.evolution/mail/local/Inbox.ev-summary r, owner /home//.evolution/mail/local/Inbox.ibex.index rw, owner /home//.evolution/mail/local/Inbox.ibex.index.data rw, owner /home//.evolution/mail/local/Inbox.lock w, owner /home//.evolution/mail/local/InboxBEIULU w, owner /home//.evolution/mail/local/InboxBO0GLU w, owner /home//.evolution/mail/local/InboxRNDCLU w, owner /home//.evolution/mail/local/Outbox.cmeta r, owner /home//.evolution/mail/local/Outbox.ev-summary r, owner /home//.evolution/mail/local/Outbox.ibex.index rw, owner /home//.evolution/mail/local/Outbox.ibex.index.data rw, owner /home//.evolution/mail/local/Sent.cmeta r, owner /home//.evolution/mail/local/Sent.ev-summary r, owner /home//.evolution/mail/local/Sent.ibex.index rw, owner /home//.evolution/mail/local/Sent.ibex.index.data rw, owner /home//.evolution/mail/searches.xml r, owner /home//.evolution/secmod.db r, owner /home//.fontconfig/a8d626dfaa99cb0ebf0eba05ac19f7aa-x86.cache-2 r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.qt/qtrc r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/16x16/actions/editclear.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/find.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/button_cancel.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/button_ok.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/stop.png r, /opt/kde3/share/icons/crystalsvg/32x32/actions/help.png r, /opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /opt/kde3/share/icons/crystalsvg/index.theme r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, owner /proc//cmdline r, /tmp/ r, /tmp/.X11-unix/X0 w, owner /tmp/gconfd-maku/lock/ior r, owner /tmp/keyring-YM1CDw/socket w, owner /tmp/orbit-maku/ w, owner /tmp/orbit-maku/bonobo-activation-register.lock rwk, owner /tmp/orbit-maku/bonobo-activation-server-ior r, owner /tmp/orbit-maku/linc-2079-0-2cb716f66cc74 w, owner /tmp/orbit-maku/linc-2154-0-333383bd9eab3 w, owner /tmp/orbit-maku/linc-21b2-0-3ebd92beb302f w, owner /tmp/orbit-maku/linc-d49-0-6537b2556b93e w, owner /tmp/orbit-maku/linc-d4c-0-40ea262e565ab w, owner /tmp/orbit-maku/linc-d74-0-10998b88392cf w, owner /tmp/orbit-maku/linc-d79-0-25d6a80353e6b w, /usr/bin/dbus-launch rix, /usr/bin/evolution r, /usr/lib/ mr, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/evolution/2.22/etspec/message-list.etspec r, /usr/share/evolution/2.22/filtertypes.xml r, /usr/share/evolution/2.22/icons/ r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/ r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/folder-copy.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/folder-move.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/mail-copy.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/mail-move.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/ r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/mail-inbox.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/mail-outbox.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/mail-sent.png r, /usr/share/evolution/2.22/icons/hicolor/22x22/actions/ r, /usr/share/evolution/2.22/icons/hicolor/22x22/places/ r, /usr/share/evolution/2.22/icons/hicolor/24x24/actions/ r, /usr/share/evolution/2.22/icons/hicolor/24x24/places/ r, /usr/share/evolution/2.22/icons/hicolor/24x24/places/mail-inbox.png r, /usr/share/evolution/2.22/icons/hicolor/24x24/places/mail-outbox.png r, /usr/share/evolution/2.22/icons/hicolor/32x32/actions/ r, /usr/share/evolution/2.22/icons/hicolor/48x48/categories/ r, /usr/share/evolution/2.22/icons/hicolor/scalable/actions/ r, /usr/share/evolution/2.22/images/online.png r, /usr/share/evolution/2.22/searchtypes.xml r, /usr/share/evolution/2.22/ui/evolution-mail-global.xml r, /usr/share/evolution/2.22/ui/evolution-mail-list.xml r, /usr/share/evolution/2.22/ui/evolution-mail-message.xml r, /usr/share/evolution/2.22/ui/evolution.xml r, /usr/share/evolution/2.22/vfoldertypes.xml r, /usr/share/evolution/2.22/views/mail/As_Sent_Folder.galview r, /usr/share/evolution/2.22/views/mail/By_Follow_Up_Flag.galview r, /usr/share/evolution/2.22/views/mail/By_Sender.galview r, /usr/share/evolution/2.22/views/mail/By_Status.galview r, /usr/share/evolution/2.22/views/mail/By_Subject.galview r, /usr/share/evolution/2.22/views/mail/Messages.galview r, /usr/share/evolution/2.22/views/mail/Wide_View_Normal.galview r, /usr/share/evolution/2.22/views/mail/Wide_View_Sent.galview r, /usr/share/evolution/2.22/views/mail/galview.xml r, /usr/share/fonts/ r, /usr/share/gtkhtml-3.14/keybindingsrc.emacs r, /usr/share/icons/ r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/crosshair r, /usr/share/icons/DMZ/cursors/grabbing r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/sb_v_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/DMZ/index.theme r, /usr/share/icons/Gilouche/16x16/actions/folder-new.png r, /usr/share/icons/Gilouche/16x16/places/folder-saved-search.png r, /usr/share/icons/Gilouche/16x16/places/folder.png r, /usr/share/icons/Gilouche/icon-theme.cache r, /usr/share/icons/Gilouche/index.theme r, /usr/share/icons/Tango/16x16/actions/address-book-new.png r, /usr/share/icons/Tango/16x16/actions/appointment-new.png r, /usr/share/icons/Tango/16x16/actions/contact-new.png r, /usr/share/icons/Tango/16x16/actions/document-print-preview.png r, /usr/share/icons/Tango/16x16/actions/document-print.png r, /usr/share/icons/Tango/16x16/actions/document-properties.png r, /usr/share/icons/Tango/16x16/actions/document-save-as.png r, /usr/share/icons/Tango/16x16/actions/edit-copy.png r, /usr/share/icons/Tango/16x16/actions/edit-cut.png r, /usr/share/icons/Tango/16x16/actions/edit-find.png r, /usr/share/icons/Tango/16x16/actions/edit-paste.png r, /usr/share/icons/Tango/16x16/actions/go-jump.png r, /usr/share/icons/Tango/16x16/actions/mail-forward.png r, /usr/share/icons/Tango/16x16/actions/mail-mark-junk.png r, /usr/share/icons/Tango/16x16/actions/mail-message-new.png r, /usr/share/icons/Tango/16x16/actions/mail-reply-all.png r, /usr/share/icons/Tango/16x16/actions/mail-reply-sender.png r, /usr/share/icons/Tango/16x16/actions/mail-send-receive.png r, /usr/share/icons/Tango/16x16/actions/process-stop.png r, /usr/share/icons/Tango/16x16/actions/window-new.png r, /usr/share/icons/Tango/16x16/animations/process-working.png r, /usr/share/icons/Tango/16x16/categories/preferences-desktop.png r, /usr/share/icons/Tango/16x16/emblems/emblem-important.png r, /usr/share/icons/Tango/16x16/mimetypes/image-x-generic.png r, /usr/share/icons/Tango/16x16/mimetypes/x-office-address-book.png r, /usr/share/icons/Tango/16x16/mimetypes/x-office-calendar.png r, /usr/share/icons/Tango/16x16/places/user-trash.png r, /usr/share/icons/Tango/16x16/status/mail-attachment.png r, /usr/share/icons/Tango/24x24/actions/document-print.png r, /usr/share/icons/Tango/24x24/actions/edit-delete.png r, /usr/share/icons/Tango/24x24/actions/go-next.png r, /usr/share/icons/Tango/24x24/actions/go-previous.png r, /usr/share/icons/Tango/24x24/actions/mail-forward.png r, /usr/share/icons/Tango/24x24/actions/mail-mark-junk.png r, /usr/share/icons/Tango/24x24/actions/mail-reply-all.png r, /usr/share/icons/Tango/24x24/actions/mail-reply-sender.png r, /usr/share/icons/Tango/24x24/actions/mail-send-receive.png r, /usr/share/icons/Tango/24x24/mimetypes/x-office-address-book.png r, /usr/share/icons/Tango/24x24/mimetypes/x-office-calendar.png r, /usr/share/icons/Tango/32x32/actions/mail-send-receive.png r, /usr/share/icons/Tango/icon-theme.cache r, /usr/share/icons/Tango/index.theme r, /usr/share/icons/Tango/scalable/actions/mail-send-receive.svg r, /usr/share/icons/crystalsvg/128x128/actions/ r, /usr/share/icons/crystalsvg/128x128/apps/ r, /usr/share/icons/crystalsvg/128x128/devices/ r, /usr/share/icons/crystalsvg/128x128/filesystems/ r, /usr/share/icons/crystalsvg/128x128/mimetypes/ r, /usr/share/icons/crystalsvg/16x16/actions/ r, /usr/share/icons/crystalsvg/16x16/apps/ r, /usr/share/icons/crystalsvg/16x16/devices/ r, /usr/share/icons/crystalsvg/16x16/filesystems/ r, /usr/share/icons/crystalsvg/16x16/mimetypes/ r, /usr/share/icons/crystalsvg/22x22/actions/ r, /usr/share/icons/crystalsvg/22x22/apps/ r, /usr/share/icons/crystalsvg/22x22/devices/ r, /usr/share/icons/crystalsvg/22x22/filesystems/ r, /usr/share/icons/crystalsvg/22x22/mimetypes/ r, /usr/share/icons/crystalsvg/32x32/actions/ r, /usr/share/icons/crystalsvg/32x32/apps/ r, /usr/share/icons/crystalsvg/32x32/devices/ r, /usr/share/icons/crystalsvg/32x32/filesystems/ r, /usr/share/icons/crystalsvg/32x32/mimetypes/ r, /usr/share/icons/crystalsvg/48x48/actions/ r, /usr/share/icons/crystalsvg/48x48/apps/ r, /usr/share/icons/crystalsvg/48x48/devices/ r, /usr/share/icons/crystalsvg/48x48/filesystems/ r, /usr/share/icons/crystalsvg/48x48/mimetypes/ r, /usr/share/icons/crystalsvg/64x64/actions/ r, /usr/share/icons/crystalsvg/64x64/apps/ r, /usr/share/icons/crystalsvg/64x64/devices/ r, /usr/share/icons/crystalsvg/64x64/filesystems/ r, /usr/share/icons/crystalsvg/64x64/mimetypes/ r, /usr/share/icons/crystalsvg/scalable/actions/ r, /usr/share/icons/crystalsvg/scalable/apps/ r, /usr/share/icons/crystalsvg/scalable/devices/ r, /usr/share/icons/crystalsvg/scalable/filesystems/ r, /usr/share/icons/crystalsvg/scalable/mimetypes/ r, /usr/share/icons/gnome/16x16/actions/application-exit.png r, /usr/share/icons/gnome/16x16/actions/document-page-setup.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-important.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-notjunk.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-read.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-unread.png r, /usr/share/icons/gnome/16x16/actions/window-close.png r, /usr/share/icons/gnome/16x16/actions/zoom-in.png r, /usr/share/icons/gnome/16x16/actions/zoom-original.png r, /usr/share/icons/gnome/16x16/actions/zoom-out.png r, /usr/share/icons/gnome/16x16/status/mail-read.png r, /usr/share/icons/gnome/16x16/status/mail-replied.png r, /usr/share/icons/gnome/16x16/status/mail-unread.png r, /usr/share/icons/gnome/16x16/stock/document/stock_task.png r, /usr/share/icons/gnome/16x16/stock/document/stock_todo.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_new-24h-appointment.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_new-meeting.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_notes.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-high.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-higher.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-highest.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-low.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-lower.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-lowest.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-normal.png r, /usr/share/icons/gnome/16x16/stock/net/stock_contact-list.png r, /usr/share/icons/gnome/16x16/stock/net/stock_disconnect.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-filters-apply.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-flag-for-followup-done.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-flag-for-followup.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-import.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-open-multiple.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-unread-multiple.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail.png r, /usr/share/icons/gnome/16x16/stock/net/stock_shared-by-me.png r, /usr/share/icons/gnome/16x16/stock/net/stock_shared-to-me.png r, /usr/share/icons/gnome/16x16/stock/object/stock_insert-note.png r, /usr/share/icons/gnome/24x24/actions/mail-mark-notjunk.png r, /usr/share/icons/gnome/24x24/stock/document/stock_todo.png r, /usr/share/icons/gnome/24x24/stock/generic/stock_notes.png r, /usr/share/icons/gnome/24x24/stock/net/stock_mail.png r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/locale-bundle/pl/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/evolution-2.22.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/evolution-data-server-2.22.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtkhtml-3.14.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libbonoboui-2.0.mo r, /usr/share/pixmaps/ r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/lib/dbus/machine-id r, /var/run/dbus/system_bus_socket w, /var/run/nscd/socket w, /var/tmp/ r, }	over 3 years ago	1	160	maku	Edit	History
opensuse10.3	/opt/kde3/bin/superkaramba	#include <tunables/global> /opt/kde3/bin/superkaramba { #include <abstractions/base> /opt/kde3/bin/superkaramba mr, /opt/kde3/lib/libso mr, }	over 3 years ago		139	pmneumann	Edit	History
ubuntu-gutsy	/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon	#include <tunables/global> /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> / r, /boot/ r, /dev/ r, /dev/.static/dev/ r, /dev/shm/ r, /etc/ r, /etc/fstab r, /home/ r, /lib/modules/2.6.22-14-generic/volatile/ r, /proc/ r, /proc/*/mounts r, /sys/ r, /sys/fs/fuse/connections/ r, /sys/kernel/security/ r, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon mr, /var/ r, /var/lock/ r, /var/run/ r, }	over 4 years ago	gnome	195	hbpteam	Edit	History
opensuse11.0	/usr/sbin/pure-ftpd	#include <tunables/global> /usr/sbin/pure-ftpd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, owner /proc/loadavg r, /srv/ftp/ r, owner /srv/ftp/.pureftpd-upload.4be9db6c.15.2dd8.fda2dd22 w, owner /srv/ftp/suse-build-key.gpg r, owner /usr/sbin/pure-ftpd r, owner /var/run/pure-ftpd.pid w, owner /var/run/pure-ftpd/ rw, owner /var/run/pure-ftpd/client-00010162 ra, /var/run/pure-ftpd/client-00010162 wk, owner /var/run/pure-ftpd/client-00010227 ra, /var/run/pure-ftpd/client-00010227 wk, owner /var/run/pure-ftpd/client-00010269 ra, /var/run/pure-ftpd/client-00010269 wk, owner /var/run/pure-ftpd/client-00010335 ra, /var/run/pure-ftpd/client-00010335 wk, owner /var/run/pure-ftpd/client-00010484 ra, /var/run/pure-ftpd/client-00010484 wk, owner /var/run/pure-ftpd/client-00010546 ra, /var/run/pure-ftpd/client-00010546 wk, owner /var/run/pure-ftpd/client-00011129 ra, /var/run/pure-ftpd/client-00011129 wk, owner /var/run/pure-ftpd/client-00011736 ra, /var/run/pure-ftpd/client-00011736 wk, }	over 2 years ago	james	144	tux	Edit	History
opensuse10.3	/usr/local/BGBillingServer/scheduler.sh	#include <tunables/global> /usr/local/BGBillingServer/scheduler.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ixr, /dev/tty rw, /usr/bin/nohup ixr, /usr/lib64/jvm/java-1.6.0.u4-sun-1.6.0.u4/jre/bin/java px, /usr/local/BGBillingServer/log/scheduler.out w, /usr/local/BGBillingServer/scheduler.sh mr, }	over 3 years ago	andrew	329	gankov	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/python> capability dac_override, capability ipc_owner, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_admin, / r, /bin/bash ixr, /dev/tty rw, /etc/apache2/*.conf r, /etc/apache2/conf.d/ r, /etc/apache2/vhosts.d/ r, /etc/gai.conf r, /etc/mime.types r, /etc/mono/1.0/machine.config r, /etc/mono/config r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/ r, /etc/php5/conf.d/.ini r, /proc//attr/current w, /proc//fd/ r, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/uptime r, /repo/ r, /repo/gallery/ rw, /repo/gallery/* rw, /session_mm_apache2handler0.sem w, /srv/www/htdocs/ krw, /usr/bin/mod-mono-server ixr, /usr/bin/mono ixr, /usr/bin/unzip Px, /usr/bin/zip Px, /usr/lib/ mr, /usr/sbin/httpd2-prefork mr, /usr/share/apache2/error/HTTP_FORBIDDEN.html.var r, /usr/share/apache2/error/HTTP_NOT_FOUND.html.var r, /usr/share/apache2/error/contact.html.var r, /usr/share/apache2/error/include/bottom.html r, /usr/share/apache2/error/include/top.html r, /usr/share/mysql/charsets/Index.xml r, /usr/share/snmp/mibs/ r, /usr/share/snmp/mibs/.txt r, /usr/share/snmp/mibs/.index r, /var/lib/mysql/mysql.sock w, /var/lib/php5/ w, /var/lib/php5/ krw, /var/log/apache2/access_log w, /var/log/apache2/error_log w, /var/run/httpd2.pid w, /var/run/nscd/services r, } /usr/sbin/httpd2-prefork/// flags=(complain) { #include <abstractions/nameservice> /proc//attr/current w, /srv/www/htdocs/index.html r, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork//DEFAULT_URI flags=(complain) { #include <abstractions/nameservice> /dev/urandom r, /home//*.html r, /home//public_html/* r, /proc//attr/current w, /srv/www/htdocs/* r, /usr/lib/locale/ r, /usr/share/.var r, /usr/share/apache2/error/*.html r, /usr/share/apache2/icons/ r, /usr/share/locale/** r, /var/log/apache2/access_log w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /proc/*/attr/current w, }	over 4 years ago		218	hisako	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename { #include <abstractions/base> /bin/basename mr, }	over 4 years ago	none	232	cinimod	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago	initial apache2	164	rbf072858	Edit	History
opensuse11.0	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> #include <abstractions/bash> network inet dgram, network inet stream, deny owner "/home/RAIMONDO-LINUX/.aMule/Incoming/Windows Wep Cracking - Aircrack And Airsnort.zip" r, /bin/bash rix, /bin/uname rix, /dev/tty rw, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/obex-module.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/host.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/opt/kde3/share/icons/ r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.Xauthority r, owner /home//.aMule/ rw, owner /home//.aMule/Incoming/ rw, owner /home//.aMule/Incoming/Aermec-circuito_frigorifero_e_macchine_climatizzazione.zip r, owner "/home//.aMule/Incoming/Luan bonita-Marcela Morelo-MdB-Midifile Collection 259.mid" r, owner "/home//.aMule/Incoming/Mirabella - Tetto Fotovoltaico.dwg" r, owner "/home//.aMule/Incoming/Muziic Encoder.exe" r, owner /home//.aMule/Incoming/Muziic_Setup.exe r, owner "/home//.aMule/Incoming/Planimetria scala 500 fotovoltaico.dwg" r, owner "/home//.aMule/Incoming/Schema Fotovoltaico.dwg" r, owner "/home//.aMule/Incoming/aermec - masterclima (MC impianto MC tubi).rar" r, owner /home//.aMule/Temp/ rw, owner /home//.aMule/Temp/001.part rw, owner /home//.aMule/Temp/001.part.met r, owner /home//.aMule/Temp/002.part rw, owner /home//.aMule/Temp/002.part.met r, owner /home//.aMule/Temp/004.part rw, owner /home//.aMule/Temp/004.part.met r, owner /home//.aMule/Temp/006.part rw, owner /home//.aMule/Temp/006.part.met r, owner /home//.aMule/Temp/022.part rw, owner /home//.aMule/Temp/022.part.met r, owner /home//.aMule/Temp/025.part rw, owner /home//.aMule/Temp/025.part.met r, owner /home//.aMule/Temp/026.part rw, owner /home//.aMule/Temp/026.part.met r, owner /home//.aMule/Temp/027.part rw, owner /home//.aMule/Temp/027.part.met r, owner /home//.aMule/Temp/035.part rw, owner /home//.aMule/Temp/035.part.met r, owner /home//.aMule/Temp/042.part rw, owner /home//.aMule/Temp/042.part.met r, owner /home//.aMule/Temp/043.part rw, owner /home//.aMule/Temp/043.part.met r, owner /home//.aMule/Temp/045.part rw, owner /home//.aMule/Temp/045.part.met r, owner /home//.aMule/addresses.dat r, owner /home//.aMule/amule.conf r, owner /home//.aMule/clients.met r, owner /home//.aMule/clients.met.BAK rw, owner /home//.aMule/cryptkey.dat r, owner /home//.aMule/emfriends.met r, owner /home//.aMule/ipfilter.dat r, owner /home//.aMule/ipfilter_static.dat r, owner /home//.aMule/key_index.dat r, owner /home//.aMule/known.met r, owner /home//.aMule/known2_64.met rw, owner /home//.aMule/last_version_check rw, owner /home//.aMule/lastversion rw, owner /home//.aMule/lastversion790uSw rw, owner /home//.aMule/lastversion7nckGj rw, owner /home//.aMule/load_index.dat r, owner /home//.aMule/logfile rw, owner /home//.aMule/logfile.bak rw, owner /home//.aMule/muleLock wk, owner /home//.aMule/nodes.dat r, owner /home//.aMule/preferences.dat r, owner /home//.aMule/preferencesKad.dat r, owner /home//.aMule/server.met r, owner /home//.aMule/shareddir.dat r, owner /home//.aMule/src_index.dat r, owner /home//.fontconfig/2c06a42904f01c0353eb6890b1b94581-x86.cache-2 r, owner /home//.fontconfig/9924b47c89dcc64e6d989a17ab414269-x86.cache-2 r, owner /home//.fonts.conf r, owner /home//.gtkrc-2.0-kde4 r, owner /home//.icons/ r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/icons/ r, owner /home//.local/share/mime/mime.cache r, /opt/gnome/share/icons/ r, /opt/gnome/share/mime/mime.cache r, /opt/gnome/share/pixmaps/ r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /opt/kde3/share/icons/crystalsvg/index.theme r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/.X11-unix/X0 w, /usr/bin/amule r, /usr/bin/bug-buddy rix, /usr/lib/* mr, /usr/share/GeoIP/GeoIP.dat r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/amule/skins/tango.zip r, /usr/share/fonts/** r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/gvfs/remote-volume-monitors/hal.monitor r, /usr/share/icons/ r, /usr/share/icons/Crux/icon-theme.cache r, /usr/share/icons/Crux/index.theme r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/sb_v_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/Gilouche/icon-theme.cache r, /usr/share/icons/Gilouche/index.theme r, /usr/share/icons/Oxygen_Black/cursors/00008160000006810000408080010102 r, /usr/share/icons/Oxygen_Black/cursors/e-resize r, /usr/share/icons/Oxygen_Black/cursors/ibeam r, /usr/share/icons/Oxygen_Black/cursors/left_ptr r, /usr/share/icons/Tango/icon-theme.cache r, /usr/share/icons/Tango/index.theme r, /usr/share/icons/crystalsvg/128x128/actions/ r, /usr/share/icons/crystalsvg/128x128/apps/ r, /usr/share/icons/crystalsvg/128x128/devices/ r, /usr/share/icons/crystalsvg/128x128/filesystems/ r, /usr/share/icons/crystalsvg/128x128/mimetypes/ r, /usr/share/icons/crystalsvg/128x128/status/ r, /usr/share/icons/crystalsvg/16x16/actions/ r, /usr/share/icons/crystalsvg/16x16/apps/ r, /usr/share/icons/crystalsvg/16x16/devices/ r, /usr/share/icons/crystalsvg/16x16/filesystems/ r, /usr/share/icons/crystalsvg/16x16/mimetypes/ r, /usr/share/icons/crystalsvg/16x16/status/ r, /usr/share/icons/crystalsvg/22x22/actions/ r, /usr/share/icons/crystalsvg/22x22/apps/ r, /usr/share/icons/crystalsvg/22x22/devices/ r, /usr/share/icons/crystalsvg/22x22/filesystems/ r, /usr/share/icons/crystalsvg/22x22/mimetypes/ r, /usr/share/icons/crystalsvg/22x22/status/ r, /usr/share/icons/crystalsvg/32x32/actions/ r, /usr/share/icons/crystalsvg/32x32/apps/ r, /usr/share/icons/crystalsvg/32x32/devices/ r, /usr/share/icons/crystalsvg/32x32/filesystems/ r, /usr/share/icons/crystalsvg/32x32/mimetypes/ r, /usr/share/icons/crystalsvg/32x32/status/ r, /usr/share/icons/crystalsvg/48x48/actions/ r, /usr/share/icons/crystalsvg/48x48/apps/ r, /usr/share/icons/crystalsvg/48x48/devices/ r, /usr/share/icons/crystalsvg/48x48/filesystems/ r, /usr/share/icons/crystalsvg/48x48/mimetypes/ r, /usr/share/icons/crystalsvg/48x48/status/ r, /usr/share/icons/crystalsvg/64x64/actions/ r, /usr/share/icons/crystalsvg/64x64/apps/ r, /usr/share/icons/crystalsvg/64x64/devices/ r, /usr/share/icons/crystalsvg/64x64/filesystems/ r, /usr/share/icons/crystalsvg/64x64/mimetypes/ r, /usr/share/icons/crystalsvg/64x64/status/ r, /usr/share/icons/crystalsvg/96x96/apps/ r, /usr/share/icons/crystalsvg/scalable/actions/ r, /usr/share/icons/crystalsvg/scalable/apps/ r, /usr/share/icons/crystalsvg/scalable/devices/ r, /usr/share/icons/crystalsvg/scalable/filesystems/ r, /usr/share/icons/crystalsvg/scalable/mimetypes/ r, /usr/share/icons/crystalsvg/scalable/status/ r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/locale-bundle/it/LC_MESSAGES/glib20.mo r, /usr/share/mime/mime.cache r, /usr/share/pixmaps/ r, /usr/share/themes/Crux/gtk-2.0/gtkrc r, /usr/share/themes/Default/gtk-2.0-key/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/31f82260556886db06538972b4bc1ecd-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8091bafe8c685946b06b683c323516f5-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/nscd/passwd r, /var/run/nscd/socket w, }	over 3 years ago		174	raimondo-linux	Edit	History
ubuntu-gutsy	/usr/bin/dspam	#include <tunables/global> /usr/bin/dspam { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability net_bind_service, /etc/dspam/* r, /etc/dspam/dspam.d/ r, /usr/bin/dspam mr, /var/lib/amavis/tmp/** r, /var/run/dspam/dspam.pid w, }	over 3 years ago		273	stive	Edit	History
opensuse10.3	/sbin/syslogd	# $Id: sbin.syslogd 559 2007-04-10 23:05:33Z agruen $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslogd { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability sys_tty_config, /dev/log wl, /dev/tty* w, /dev/xconsole rw, /etc/syslog.conf r, /sbin/syslogd rmix, /var/lib//dev/log wl, /var/log/* rw, /var/run/syslogd.pid rwl, /var/run/utmp rw, /var/spool/compaq/nic/messages_fifo rw, }	over 4 years ago	none	200	cinimod	Edit	History
opensuse10.3	/usr/bin/dbus-launch	#include <tunables/global> /usr/bin/dbus-launch { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash ixr, /bin/cat ixr, /bin/dbus-daemon Px, /bin/grep ixr, /bin/mkdir ixr, /bin/sed ixr, /etc/SuSE-release r, /etc/sysconfig/proxy r, /etc/sysconfig/windowmanager r, /home// r, /home//.DCOPserver__: w, /home//.DCOPserver___* rw, /home//.ICEauthority lrw, /home//.ICEauthority-* lw, /home//.Xauthority r, /home//.fonts/ r, /home//.fonts/fonts.dir rw, /home//.kde/share/config/ w, /home//.kde/share/config/ rw, /home//.xsession-errors w, /opt/kde3/bin/dcopserver_shutdown Pxmr, /opt/kde3/bin/kapplymousetheme Pxmr, /opt/kde3/bin/kcheckrunning Pxmr, /opt/kde3/bin/kde-config Pxmr, /opt/kde3/bin/kde-open Pxr, /opt/kde3/bin/ksplashx Pxmr, /opt/kde3/bin/kstartupconfig Pxmr, /opt/kde3/bin/lnusertemp Pxmr, /opt/kde3/bin/startkde Pxr, /opt/kde3/env/ r, /opt/kde3/env/.sh r, /opt/kde3/share/apps/ksplash// r, /opt/kde3/share/apps/ksplash/Themes/ r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc/meminfo r, /proc/sys/* r, /sbin/killall5 ixr, /tmp/ rw, /usr/bin/dbus-launch mr, /usr/bin/gnome Px, /usr/bin/iceauth Pxmr, /usr/bin/mkfontdir Pxr, /usr/bin/mkfontscale Pxmr, /usr/bin/tr ixr, /usr/bin/xmodmap Pxmr, /usr/bin/xprop ixr, /usr/bin/xset ixr, /usr/bin/xsetroot Pxmr, /usr/share/hotkey-setup/hotkey-setup.xmodmap r, }	over 4 years ago	none	203	cinimod	Edit	History
opensuse10.3	/usr/sbin/acpidump	#include <tunables/global> /usr/sbin/acpidump flags=(complain) { #include <abstractions/base> capability sys_rawio, /dev/mem r, /usr/sbin/acpidump mr, }	over 4 years ago	New test profile	278	dominic	Edit	History
opensuse10.3	/usr/bin/gdmflexiserver	#include <tunables/global> /usr/bin/gdmflexiserver { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /usr/bin/gdmflexiserver mr, /var/lib/gdm/* r, /var/run/gdm.pid r, /var/run/gdm_socket rw, }	over 4 years ago	none	185	cinimod	Edit	History
opensuse10.3	/opt/kde3/bin/kaffeine	#include <tunables/global> /opt/kde3/bin/kaffeine { #include <abstractions/base> #include <abstractions/nameservice> / r, /bin/ r, /boot/ r, /dev/ r, /dev/snd/* rw, /dev/sr0 r, /etc/ r, /etc/X11/kstylerc r, /etc/X11/qt_plugins_3.3rc r, /etc/X11/qtrc r, /etc/exports r, /etc/fonts/ r, /etc/fstab r, /etc/kde3rc r, /etc/mtab r, /etc/opt/kde3/share/config/kioslaverc r, /etc/opt/kde3/share/icons// r, /etc/rpc r, /etc/security/fileshare.conf r, /home/ r, /home//* r, /home//.dvdcss/ rw, /home//.kde/share/apps/kaffeine/* rw, /home//.kde/share/config/ lrw, /home//.qt/ krw, /home//.xine/catalog.cache rw, /home//.xine/config rw, /home//.xine/config~ w, /lib/ r, /lib64/ r, /media/ r, /media/* r, /mnt/ r, /opt/ r, /opt/kde3/bin/kaffeine mr, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib64/* mr, /opt/kde3/lib64/kde3/* mr, /opt/kde3/lib64/kde3/plugins/styles/ r, /opt/kde3/lib64/kde3/plugins/styles/* mr, /opt/kde3/share/apps/kaffeine/ r, /opt/kde3/share/config/kdeglobals r, /opt/kde3/share/config/profilerc r, /opt/kde3/share/config/ui/ui_standards.rc r, /opt/kde3/share/icons/ r, /opt/kde3/share/locale-bundle/nb/LC_MESSAGES/* r, /opt/kde3/share/locale/nb/LC_MESSAGES/* r, /proc/ r, /sbin/ r, /srv/ r, /sys/ r, /tmp/ r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/* w, /tmp/ksocket-n5/* w, /usr/ r, /usr/lib64/** mr, /usr/share/X11/* r, /usr/share/X11/locale/* r, /usr/share/X11/locale/en_US.UTF-8/* r, /usr/share/alsa/ r, /usr/share/desktop-data/qtrc r, /usr/share/fonts/ r, /usr/share/icons/ r, /usr/share/xine/ r, /var/ r, /var/cache/fontconfig/* r, /var/cache/libx11/compose/* r, /var/tmp/kdecache-n5/ksycoca r, /vol/ r, /vol/** r, /windows/ r, }	over 4 years ago		457	kijo387	Edit	History
opensuse11.0	/etc/init.d/idgard	#include <tunables/global> /etc/init.d/idgard flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		41	sendge	Edit	History
opensuse10.3	/bin/lstest	#include <tunables/global> /bin/lstest flags=(complain) { #include <abstractions/base> /bin/lstest mr, }	over 2 years ago	addded lstest	152	danabr	Edit	History
opensuse11.0	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> / r, /bin/bash rpix, /bin/uname rix, /dev/tty rw, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gtk-2.0/gdk-pixbuf64.loaders r, /etc/gtk-2.0/gtk64.immodules r, /etc/gtk-2.0/gtkrc r, /etc/pango/pango64.modules r, owner /home//.Xauthority r, owner /home//.aMule/ rw, owner /home//.aMule/Incoming/ rw, owner /home//.aMule/Temp/ rw, owner /home//.aMule/Temp/001.part rw, owner /home//.aMule/Temp/001.part.met rw, owner /home//.aMule/Temp/001.part.met.backup rw, owner /home//.aMule/Temp/001.part.met.bak rw, owner /home//.aMule/amule.conf rw, owner /home//.aMule/amule0YKo4S rw, owner /home//.aMule/amule0jA5BP rw, owner /home//.aMule/amule2mM9eQ rw, owner /home//.aMule/amule7V3YNJ rw, owner /home//.aMule/amuleUhmR67 rw, owner /home//.aMule/amulehwUgVj rw, owner /home//.aMule/amulejzKFmu rw, owner /home//.aMule/amulemqq0T8 rw, owner /home//.aMule/amulevdmcC1 rw, owner /home//.aMule/amulexGqTBu rw, owner /home//.aMule/amuleyfEPpI rw, owner /home//.aMule/clients.met rw, owner /home//.aMule/clients.met.BAK rw, owner /home//.aMule/cryptkey.dat r, owner /home//.aMule/emfriends.met rw, owner /home//.aMule/ipfilter.dat r, owner /home//.aMule/ipfilter_static.dat r, owner /home//.aMule/key_index.dat rw, owner /home//.aMule/known.met rw, owner /home//.aMule/known2_64.met rw, owner /home//.aMule/last_version_check rw, owner /home//.aMule/lastversion rw, owner /home//.aMule/lastversionjWOKjj rw, owner /home//.aMule/load_index.dat rw, owner /home//.aMule/logfile rw, owner /home//.aMule/logfile.bak rw, owner /home//.aMule/muleLock wk, owner /home//.aMule/preferences.dat rw, owner /home//.aMule/preferencesKad.dat rw, owner /home//.aMule/server.met rw, owner /home//.aMule/server.met.new rw, owner /home//.aMule/server_met.old w, owner /home//.aMule/shareddir.dat rw, owner /home//.aMule/src_index.dat rw, owner /home//.config/Trolltech.conf r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.fontconfig/97c6af9d09a27e00560b822c58e4372e-x86-64.cache-2 r, owner /home//.fonts.conf r, owner /home//.kde/share/config/kdeglobals r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/icons/ r, owner /home//.local/share/mime/mime.cache r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /opt/kde3/share/icons/crystalsvg/index.theme r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, owner /proc//cmdline r, owner /proc//mounts r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/.X11-unix/X0 w, /usr/bin/amule r, /usr/lib64/ mr, /usr/share/GeoIP/GeoIP.dat r, /usr/share/amule/skins/ r, /usr/share/amule/webserver/ r, /usr/share/fonts/ r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/gvfs/remote-volume-monitors/hal.monitor r, /usr/share/icons/ r, /usr/share/icons/DMZ/index.theme r, /usr/share/icons/Gilouche/icon-theme.cache r, /usr/share/icons/Gilouche/index.theme r, /usr/share/icons/Oxygen_White/cursors/00008160000006810000408080010102 r, /usr/share/icons/Oxygen_White/cursors/e-resize r, /usr/share/icons/Oxygen_White/cursors/ibeam r, /usr/share/icons/Oxygen_White/cursors/left_ptr r, /usr/share/icons/Oxygen_White/index.theme r, /usr/share/icons/Tango/icon-theme.cache r, /usr/share/icons/Tango/index.theme r, /usr/share/icons/crystalsvg/icon-theme.cache r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/locale-bundle/es/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/es/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/es/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/es/LC_MESSAGES/gtk20.mo r, /usr/share/mime/mime.cache r, /usr/share/pixmaps/ r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86-64.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86-64.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86-64.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86-64.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86-64.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86-64.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86-64.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86-64.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86-64.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86-64.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86-64.cache-2 r, /var/cache/fontconfig/bcbe2898c9e91ad7a9bd8a5e620edc6f-x86-64.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86-64.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86-64.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86-64.cache-2 r, }	over 3 years ago		167	Bhaal	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	yuo	166	test27	Edit	History
opensuse10.3	/usr/bin/dbus-launch	#include <tunables/global> /usr/bin/dbus-launch { #include <abstractions/X> #include <abstractions/base> /bin/dbus-daemon Px, /home/*/.Xauthority r, /usr/bin/dbus-launch mr, /usr/bin/gnome Px, }	over 4 years ago	Import of jmichaels profiles	239	dominic	Edit	History
ubuntu-gutsy	/usr/bin/kradio	#include <tunables/global> /usr/bin/kradio { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/dash ixr, /etc/kde3/.areas r, /etc/kde3/kdebugrc r, /etc/qt3/qt_plugins_3.3rc r, /etc/xdg/ r, /etc/xdg/menus/ r, /hde/share/config/.tmp w, /home// rw, /home//.DCOPserver_int80h_* rw, /home//.DCOPserver_int80h_:0 w, /home//.ICEauthority lrw, /home//.ICEauthority- lw, /home//.Xauthority r, /home//.config/ r, /home//.icons/OSX_Cursors_v0.2/* r, /home//.kde/share/ r, /home//.kde/share/applnk/ r, /home//.kde/share/apps/kconf_update/ r, /home//.kde/share/apps/kradio/.krp rw, /home//.kde/share/config/ w, /home//.kde/share/config/.lock lw, /home//.kde/share/config/.new rw, /home//.kde/share/config/.tmp w, /home//.kde/share/config/kconf_updaterc rw, /home//.kde/share/config/kdedrc rw, /home//.kde/share/config/kdeglobals rw, /home//.kde/share/config/kioslaverc r, /home//.kde/share/config/kradiorc rw, /home//.kde/share/config/uiserverrc rw, /home//.kde/share/icons/KDE_Crystal_Diamond_2.7_Ubuntu_Mod/ r, /home//.kde/share/icons/OS-L-IconSet-Buildkit/ r, /home//.kde/share/mimelnk/ r, /home//.kde/share/services/ r, /home//.kde/share/servicetypes/ r, /home//.qt/.3rc r, /home//.qt/.lock krw, /proc//cmdline r, /proc/meminfo r, /usr/bin/dcopserver ixr, /usr/bin/dcopserver_shutdown ixr, /usr/bin/iceauth ixr, /usr/bin/kbuildsycoca ixr, /usr/bin/kconf_update ixr, /usr/bin/kded ixr, /usr/bin/kdeinit ixr, /usr/bin/kio_uiserver ixr, /usr/bin/kioslave Pxr, /usr/bin/klauncher ixr, /usr/bin/kradio mr, /usr/bin/lnusertemp ixr, /usr/lib/ mr, /usr/local/share/ r, /usr/local/share/applications/ r, /usr/local/share/icons/hicolor/ r, /usr/share/ r, /usr/share/applications/ r, /usr/share/applications/kde/ r, /usr/share/applications/screensavers/ r, /usr/share/applnk/ r, /usr/share/applnk/.hidden/ r, /usr/share/applnk/Multimedia/ r, /usr/share/applnk/System/ r, /usr/share/applnk/System/ScreenSavers/ r, /usr/share/applnk/Utilities/ r, /usr/share/apps/LICENSES/GPL_V2 r, /usr/share/apps/kconf_update/ r, /usr/share/apps/kio_uiserver/icons/crystalsvg// r, /usr/share/apps/kio_uiserver/icons/crystalsvg/16x16/.png r, /usr/share/apps/kradio/icons/hicolor// r, /usr/share/apps/kradio/icons/hicolor/16x16/ r, /usr/share/apps/kradio/icons/hicolor/22x22/ r, /usr/share/apps/kradio/icons/hicolor/32x32/.png r, /usr/share/apps/kradio/icons/hicolor/48x48/.png r, /usr/share/gdm/ r, /usr/share/gdm/applications/ r, /usr/share/mimelnk/ r, /usr/share/mimelnk/all/ r, /usr/share/mimelnk/application/ r, /usr/share/mimelnk/audio/ r, /usr/share/mimelnk/image/ r, /usr/share/mimelnk/inode/ r, /usr/share/mimelnk/media/ r, /usr/share/mimelnk/message/ r, /usr/share/mimelnk/model/ r, /usr/share/mimelnk/multipart/ r, /usr/share/mimelnk/text/ r, /usr/share/mimelnk/uri/ r, /usr/share/mimelnk/video/ r, /usr/share/services/ r, /usr/share/services/kded/ r, /usr/share/services/kdetv/ r, /usr/share/services/kresources/ r, /usr/share/services/kresources/kabc/ r, /usr/share/servicetypes/ r, /usr/share/servicetypes/kdetv/ r, }	over 4 years ago	gnome	201	hbpteam	Edit	History
opensuse10.3	/usr/lib/bonobo/bonobo-activation-server	#include <tunables/global> /usr/lib/bonobo/bonobo-activation-server { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/bonobo-activation/bonobo-activation-config.xml r, /usr/bin/tomboy-panel Px, /usr/lib/bonobo/bonobo-activation-server mr, /usr/lib/gnome-main-menu/main-menu Px, /usr/lib/gnome-panel/mixer_applet2 Px, }	over 4 years ago	Import of jmichaels profiles	241	dominic	Edit	History
opensuse10.3	/bin/uname	#include <tunables/global> /bin/uname flags=(complain) { #include <abstractions/base> /bin/uname mr, /proc/cpuinfo r, }	over 4 years ago	argh, switch things back to complain for a while	259	jmichael	Edit	History
opensuse11.0	/usr/local/CrushFTP5_PC/crushftp_init.sh	#include <tunables/global> /usr/local/CrushFTP5_PC/crushftp_init.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		50	dirty_a	Edit	History
opensuse11.0	/usr/bin/evolution	#include <tunables/global> /usr/bin/evolution flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^null-d { /usr/lib/evolution/2.28/plugins/liborg-gnome-mail-notification.so r, } }	over 2 years ago		85	ventiman	Edit	History
opensuse11.0	/opt/lampp/lampp	#include <tunables/global> /opt/lampp/lampp flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	lampp	146	rod03	Edit	History
ubuntu-gutsy	/usr/sbin/named	#include <tunables/global> /usr/sbin/named { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_resource, /proc/net/if_inet6 r, /usr/sbin/named mr, /var/named/run-root/dev/random r, /var/named/run-root/dev/urandom r, /var/named/run-root/etc/bind/ r, /var/named/run-root/etc/localtime r, /var/named/run-root/etc/named.conf r, /var/named/run-root/var/139.25.85.in-addr.arpa r, /var/named/run-root/var/cache/bind/ rw, /var/named/run-root/var/cache/bind/ rw, /var/named/run-root/var/dev/ r, /var/named/run-root/var/harfe-karlsruhe.de r, /var/named/run-root/var/lib/bind/ rw, /var/named/run-root/var/lib/bind/ rw, /var/named/run-root/var/lib/dnscvsutil/compiled/ rw, /var/named/run-root/var/localhost.rev r, /var/named/run-root/var/log/named/ rw, /var/named/run-root/var/named.root r, /var/named/run-root/var/run/bind/named.options r, /var/named/run-root/var/run/bind/run/named.pid w, /var/named/run-root/var/run/named/named.pid w, /var/named/run-root/var/studebo.com r, /var/named/run-root/var/studebo.de r, /var/named/run-root/var/studebo.net r, }	over 3 years ago	named	247	jmfrank63	Edit	History
opensuse10.3	/etc/X11/xdm/Xsession	#include <tunables/global> /etc/X11/xdm/Xsession { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash ixr, /bin/grep ixr, /bin/hostname Px, /bin/ls ixmr, /bin/uname Px, /etc/X11/Xresources r, /etc/X11/xdm/Xsession mr, /etc/X11/xdm/sys.xsession Px, /etc/X11/xinit/xinitrc.common r, /etc/opt/ r, /etc/shells r, /etc/sysconfig/console r, /etc/sysconfig/language r, /etc/sysconfig/mail r, /etc/sysconfig/news r, /etc/sysconfig/proxy r, /etc/sysconfig/suseconfig r, /etc/sysconfig/windowmanager r, /home//.Xdefaults r, /home//.bashrc r, /home//.profile r, /opt/ r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/killall5 ixr, /usr/bin/dircolors ixmr, /usr/bin/manpath Px, /usr/bin/tty ixr, /usr/bin/xrdb Px, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update12/jre/bin/java ixr, /var/log/Xorg.*.log r, }	over 4 years ago	Import of jmichaels profiles	347	dominic	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/privoxy	#include <tunables/global> /etc/NetworkManager/dispatcher.d/privoxy flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/privoxy mr, /etc/init.d/privoxy Px, /proc/meminfo r, /sbin/chkconfig Px, }	over 4 years ago	argh, switch things back to complain for a while	206	jmichael	Edit	History
opensuse10.3	/usr/bin/gdmflexiserver	#include <tunables/global> /usr/bin/gdmflexiserver { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /usr/bin/gdmflexiserver mr, /var/lib/gdm/* r, /var/run/gdm.pid r, /var/run/gdm_socket rw, }	over 4 years ago	Import of jmichaels profiles	196	dominic	Edit	History
opensuse10.3	/sbin/killproc	#include <tunables/global> /sbin/killproc flags=(complain) { #include <abstractions/base> capability dac_override, capability kill, capability sys_ptrace, /dev/blog w, /proc/ r, /proc//stat r, /proc//statm r, /sbin/killproc mr, /sbin/klogd r, /sbin/portmap r, /sbin/syslog-ng r, /usr/sbin/NetworkManager r, /usr/sbin/NetworkManagerDispatcher r, /usr/sbin/dhcdbd r, /usr/sbin/privoxy r, /var/run/NetworkManager.pid r, /var/run/NetworkManagerDispatcher.pid rw, /var/run/dhcdbd.pid r, /var/run/privoxy.pid rw, /var/run/syslog-ng.pid rw, }	over 4 years ago	dropping more stuff in killproc	238	jmichael	Edit	History
opensuse11.0	/home/haegor/.wine/drive_c/Program Files/Nival Online/Perfect World/launcher/Launcher.exe	#include <tunables/global> profile "/home/haegor/.wine/drive_c/Program Files/Nival Online/Perfect World/launcher/Launcher.exe" flags=(complain) { #include <abstractions/base> }	over 3 years ago		197	haegor	Edit	History
ubuntu-gutsy	/usr/sbin/avahi-daemon	#include <tunables/global> /usr/sbin/avahi-daemon { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability kill, capability setgid, capability setuid, capability sys_chroot, /etc/avahi/ r, /etc/avahi/avahi-daemon.conf r, /etc/avahi/hosts r, /etc/avahi/services/ r, /etc/avahi/services/.service r, /etc/group m, /etc/passwd m, /proc//fd/ r, /usr/sbin/avahi-daemon mr, /var/run/avahi-daemon/ w, /var/run/avahi-daemon/pid krw, /var/run/avahi-daemon/socket w, /var/run/dbus/system_bus_socket w, }	over 3 years ago		212	stive	Edit	History
opensuse10.3	/sbin/syslogd	# $Id: sbin.syslogd 559 2007-04-10 23:05:33Z agruen $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslogd { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability sys_tty_config, /dev/log wl, /dev/tty* w, /dev/xconsole rw, /etc/syslog.conf r, /sbin/syslogd rmix, /var/lib//dev/log wl, /var/log/* rw, /var/run/syslogd.pid rwl, /var/run/utmp rw, /var/spool/compaq/nic/messages_fifo rw, }	over 4 years ago	Initial Revision	396	novell	Edit	History
opensuse10.3	/usr/lib/bonobo/bonobo-activation-server	#include <tunables/global> /usr/lib/bonobo/bonobo-activation-server { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/bonobo-activation/bonobo-activation-config.xml r, /usr/bin/tomboy-panel Px, /usr/lib/bonobo/bonobo-activation-server mr, /usr/lib/gnome-main-menu/main-menu Px, /usr/lib/gnome-panel/mixer_applet2 Px, }	over 4 years ago	none	219	cinimod	Edit	History
opensuse11.0	/etc/apparmor.d/etc.apparmor.d.etc.apparmor.d.etc.apparmor.d.usr.lib.firefox.firefox-bin	#include <tunables/global> /etc/apparmor.d/etc.apparmor.d.etc.apparmor.d.etc.apparmor.d.usr.lib.firefox.firefox-bin { #include <abstractions/base> }	over 2 years ago	socks nsswitch and libs	140	knotwurk	Edit	History
opensuse11.0	/home/liao/LIBRARY/release/qt-sdk-2009.03/bin/qtcreator	#include <tunables/global> /home/liao/LIBRARY/release/qt-sdk-2009.03/bin/qtcreator flags=(complain) { #include <abstractions/base> #include <abstractions/bash> deny network inet stream, r, /bin/bash rix, /dev/tty rw, /etc/fonts/** r, /home/ r, owner /home// r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/Nokia/QtCreator.conf rk, owner /home//.config/Nokia/QtCreator.db rwk, owner /home//.config/Nokia/QtCreator.ini rwk, owner /home//.config/Nokia/qtcreator/.helpcollection/ r, owner /home//.config/Nokia/qtcreator/.helpcollection/lucene-40ab7cea484259c10ceef93b31620a33-commit.lock w, owner /home//.config/Nokia/qtcreator/.helpcollection/lucene-40ab7cea484259c10ceef93b31620a33-write.lock w, owner /home//.config/Nokia/qtcreator/.helpcollection/segments r, owner /home//.config/Nokia/qtcreator/helpcollection.qhc rwk, owner /home//.config/Trolltech.conf rk, owner /home//.designer/brushes/ r, owner /home//.designer/brushes/black.br r, owner /home//.designer/brushes/blue.br r, owner /home//.designer/brushes/cyan.br r, owner /home//.designer/brushes/french.br r, owner /home//.designer/brushes/german.br r, owner /home//.designer/brushes/greek.br r, owner /home//.designer/brushes/green.br r, owner /home//.designer/brushes/italian.br r, owner /home//.designer/brushes/japanese.br r, owner /home//.designer/brushes/magenta.br r, owner /home//.designer/brushes/norwegian.br r, owner /home//.designer/brushes/polish.br r, owner /home//.designer/brushes/red.br r, owner /home//.designer/brushes/spanish.br r, owner /home//.designer/brushes/white.br r, owner /home//.designer/brushes/yellow.br r, owner /home//.fontconfig/542d408b754c73fa2d25ed29a98a4f99-x86-64.cache-2 r, owner /home//.fonts.conf r, owner /home//.kde/share/config/kdeglobals rk, owner /home//LIBRARY/ r, owner /home//LIBRARY/release/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/designer/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/designer/libqwebview.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/iconengines/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/iconengines/libqsvgicon.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/imageformats/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/imageformats/libqgif.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/imageformats/libqico.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/imageformats/libqjpeg.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/imageformats/libqmng.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/imageformats/libqsvg.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/imageformats/libqtiff.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/qtcreator r, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/sqldrivers/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/bin/sqldrivers/libqsqlite.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/ r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/BinEditor.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Bookmarks.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/CMakeProjectManager.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/CodePaster.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Core.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/CppEditor.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/CppTools.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Debugger.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Designer.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/FakeVim.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Find.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/GenericProjectManager.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Help.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Perforce.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/ProjectExplorer.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Qt4ProjectManager.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/QtScriptEditor.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/QuickOpen.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/ResourceEditor.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/ScmGit.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/Subversion.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/TextEditor.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/VCSBase.pluginspec r, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libBinEditor.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libBookmarks.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libCMakeProjectManager.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libCodePaster.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libCore.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libCppEditor.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libCppTools.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libDebugger.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libDesigner.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libFakeVim.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libFind.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libGenericProjectManager.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libHelp.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libPerforce.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libProjectExplorer.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libQt4ProjectManager.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libQtScriptEditor.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libQuickOpen.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libResourceEditor.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libScmGit.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libSubversion.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libTextEditor.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/plugins/Nokia/libVCSBase.so mr, owner /home//LIBRARY/release/qt-sdk-2009.03/qt/demos/qtdemo/xml/examples.xml r, owner /home//LIBRARY/release/qt-sdk-2009.03/qt/doc/qch/designer.qch rwk, owner /home//LIBRARY/release/qt-sdk-2009.03/qt/doc/qch/qmake.qch rwk, owner /home//LIBRARY/release/qt-sdk-2009.03/qt/doc/qch/qt.qch rwk, owner /home//LIBRARY/release/qt-sdk-2009.03/qt/mkspecs/qconfig.pri r, owner /home//LIBRARY/release/qt-sdk-2009.03/share/doc/qtcreator/qtcreator.qch rwk, /home/liao/LIBRARY/release/qt-sdk-2009.03/bin/qtcreator.bin rix, owner /home/liao/LIBRARY/release/qt-sdk-2009.03/lib/libso* mr, owner /home/liao/LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/libAggregation.so.* mr, owner /home/liao/LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/libCPlusPlus.so.* mr, owner /home/liao/LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/libExtensionSystem.so.* mr, owner /home/liao/LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/libQtConcurrent.so.* mr, owner /home/liao/LIBRARY/release/qt-sdk-2009.03/lib/qtcreator/libUtils.so.* mr, /home/liao/LIBRARY/release/qt-sdk-2009.03/qt/bin/qmake rix, /opt/kde3/share/icons/crystalsvg/16x16/actions/back.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/forward.png r, /opt/kde3/share/icons/crystalsvg/16x16/devices/3floppy_unmount.png r, /opt/kde3/share/icons/crystalsvg/16x16/devices/cdrom_unmount.png r, /opt/kde3/share/icons/crystalsvg/16x16/devices/hdd_unmount.png r, /opt/kde3/share/icons/crystalsvg/16x16/devices/system.png r, /opt/kde3/share/icons/crystalsvg/16x16/filesystems/desktop.png r, /opt/kde3/share/icons/crystalsvg/16x16/filesystems/folder.png r, /opt/kde3/share/icons/crystalsvg/16x16/filesystems/folder_home.png r, /opt/kde3/share/icons/crystalsvg/16x16/filesystems/link_overlay.png r, /opt/kde3/share/icons/crystalsvg/16x16/mimetypes/unknown.png r, /opt/kde3/share/icons/crystalsvg/32x32/actions/back.png r, /opt/kde3/share/icons/crystalsvg/32x32/actions/forward.png r, /opt/kde3/share/icons/crystalsvg/32x32/devices/cdrom_unmount.png r, /opt/kde3/share/icons/crystalsvg/32x32/devices/hdd_unmount.png r, /opt/kde3/share/icons/crystalsvg/32x32/devices/system.png r, /opt/kde3/share/icons/crystalsvg/32x32/filesystems/folder.png r, /opt/kde3/share/icons/crystalsvg/32x32/filesystems/folder_home.png r, /opt/kde3/share/icons/crystalsvg/32x32/filesystems/link_overlay.png r, /opt/kde3/share/icons/crystalsvg/32x32/mimetypes/unknown.png r, /opt/kde3/share/icons/crystalsvg/index.theme r, /proc/meminfo r, /proc/stat r, /tmp/.X11-unix/X0 w, owner /tmp/qtsingleapplication-5e9b-3e8 w, owner /tmp/qtsingleapplication-5e9b-3e8-lockfile rwk, /usr/bin/dirname rix, /usr/bin/qmake rix, /usr/bin/readlink rix, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/doc/packages/libqt4/qch/designer.qch rk, /usr/share/doc/packages/libqt4/qch/qmake.qch rk, /usr/share/doc/packages/libqt4/qch/qt.qch rk, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/hicolor/index.theme r, /usr/share/qt4/mkspecs/qconfig.pri r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86-64.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86-64.cache-2 r, /var/cache/fontconfig/17eac1165263be9f8c818b6f419cf6e6-x86-64.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86-64.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86-64.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86-64.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86-64.cache-2 r, /var/cache/fontconfig/5582bcdff229c67b5fec2ece77d58e8f-x86-64.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86-64.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86-64.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86-64.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86-64.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86-64.cache-2 r, /var/cache/fontconfig/c16af864172909159ced9a806109b5c1-x86-64.cache-2 r, /var/cache/fontconfig/c36a5ca5419b5200dcfc86d54b5d311a-x86-64.cache-2 r, /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86-64.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86-64.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86-64.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86-64.cache-2 r, /var/cache/fontconfig/fe471b6618bd5b47a85b69bc640c6308-x86-64.cache-2 r, /var/run/nscd/passwd r, /var/run/nscd/socket w, /var/tmp/ rw, }	over 2 years ago	2009-08-25_001	196	pbballking	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	4.01.09	203	paulgarrard501	Edit	History
opensuse11.0	/media/USB STICK/UserManual.pdf	#include <tunables/global> profile "/media/USB STICK/UserManual.pdf" flags=(complain) { #include <abstractions/base> }	over 3 years ago		142	tobi	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> capability dac_override, /bin/basename ixr, /bin/bash ixr, /bin/grep ixr, /dev/tty rw, /etc/magic r, /usr/bin/file ixr, /usr/lib/firefox/firefox Pxr, /usr/lib/firefox/firefox.sh mr, /usr/share/misc/magic.mgc r, }	over 3 years ago	changelog	215	tro	Edit	History
opensuse10.3	/usr/sbin/cupsd	#include <tunables/global> /usr/sbin/cupsd { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> capability chown, capability dac_override, capability fsetid, capability kill, capability net_bind_service, capability setgid, capability setuid, network inet dgram, network inet stream, network inet6 dgram, network inet6 stream, /etc/cups/ r, /etc/cups/* rw, /etc/cups// w, /etc/cups/ppd/ rw, /etc/gai.conf r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/printcap w, /proc/net/ r, /proc/net/unix r, /usr/lib/cups/backend/socket px, /usr/lib/cups/filter/pstops px, /usr/lib/cups/notifier/ r, /usr/sbin/cupsd mr, /usr/share/cups/** r, /var/cache/cups/job.cache rw, /var/cache/cups/remote.cache rw, /var/log/cups/* rw, /var/run/cups/certs/* w, /var/run/cups/cups.sock w, /var/run/nscd/services r, /var/spool/cups/ w, /var/spool/cups/* rw, /var/spool/cups/** w, /var/spool/cups/tmp/ r, }	over 4 years ago	ssh needed the ability to create /root/.ssh, and assorted CUPS fixes	215	crispin	Edit	History
opensuse10.3	/etc/X11/xdm/Xsession	#include <tunables/global> /etc/X11/xdm/Xsession { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash ixr, /bin/grep ixr, /bin/hostname Px, /bin/ls ixmr, /bin/uname Px, /etc/X11/Xresources r, /etc/X11/xdm/Xsession mr, /etc/X11/xdm/sys.xsession Px, /etc/X11/xim r, /etc/X11/xinit/xinitrc.common r, /etc/opt/ r, /etc/shells r, /etc/sysconfig/console r, /etc/sysconfig/language r, /etc/sysconfig/mail r, /etc/sysconfig/news r, /etc/sysconfig/proxy r, /etc/sysconfig/suseconfig r, /etc/sysconfig/windowmanager r, /home//.Xdefaults r, /home//.bashrc r, /home//.profile r, /home//.xsession-errors w, /opt/ r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/killall5 ixr, /usr/bin/dircolors ixmr, /usr/bin/manpath Px, /usr/bin/printenv ixr, /usr/bin/tty ixr, /usr/bin/xrdb Px, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update12/jre/bin/java ixr, /usr/lib/jvm/java-1.6.0.u3.sr2-sun-1.6.0.u3/bin/java ixr, /usr/lib/jvm/java-1.6.0.u3.sr2-sun-1.6.0.u3/bin/javac ixr, /usr/lib/jvm/java-1.6.0.u3.sr2-sun-1.6.0.u3/jre/bin/java ixr, /var/log/Xorg..log r, }	over 4 years ago	none	324	cinimod	Edit	History
opensuse10.3	/home/dominic/bin/myls	#include <tunables/global> /home/dominic/bin/myls { #include <abstractions/base> #include <abstractions/nameservice> /home/**/ r, /home/dominic/bin/myls mr, /proc/meminfo r, }	over 4 years ago	stuff	330	dominic_2	Edit	History
opensuse10.3	/usr/lib/GConf/2/gconfd-2	#include <tunables/global> /usr/lib/GConf/2/gconfd-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/** r, /home//.gconf/ rw, /home//.gconf/** rw, /home//.gconfd/ w, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /tmp/gconfd-/lock/ klrw, /usr/lib/GConf/2/gconfd-2 mr, }	over 4 years ago	none	218	cinimod	Edit	History
opensuse10.3	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/basename ixr, /bin/bash ixr, /bin/grep ixr, /dev/tty rw, /etc/magic r, /usr/bin/file ixr, /usr/lib64/firefox/firefox-bin Px, /usr/lib64/firefox/firefox.sh mr, /usr/share/misc/magic r, /usr/share/misc/magic.mgc r, }	over 4 years ago		361	kijo387	Edit	History
ubuntu-gutsy	/usr/bin/mcpp	#include <tunables/global> /usr/bin/mcpp { #include <abstractions/base> /usr/bin/mcpp mr, }	over 4 years ago	gnome	177	hbpteam	Edit	History
opensuse11.0	/etc/init.d/apache2	#include <tunables/global> /etc/init.d/apache2 { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	about 1 month ago	mew	5	lordssyndicate	Edit	History
opensuse11.0	/usr/sbin/traceroute	#include <tunables/global> /usr/sbin/traceroute { #include <abstractions/base> #include <abstractions/nameservice> deny /etc/resolv.conf r, deny /usr/sbin/traceroute r, }	over 2 years ago	a	195	userx	Edit	History
opensuse11.0	/sbin/rpcbind	#include <tunables/global> /sbin/rpcbind { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, owner /etc/hosts.allow r, owner /etc/hosts.deny r, owner /etc/netconfig r, owner /var/run/rpcbind.lock ak, owner /var/run/rpcbind.sock w, }	over 2 years ago		162	Aleksandr	Edit	History
ubuntu-gutsy	/usr/lib/postfix/smtp	# $Id: usr.lib.postfix.smtp 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/smtp { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability dac_read_search, capability net_bind_service, /etc/mailname r, /etc/mtab r, /etc/postfix/prng_exch rw, /etc/postfix/sasl_passwd.db r, /etc/postfix/virtual.db r, /etc/postfix/{ssl/,}.pem r, /usr/lib/postfix/smtp rmix, /usr/share/ssl/certs/ca-bundle.crt r, /usr/share/ssl/openssl.cnf r, /var/spool/postfix/active/ krw, /var/spool/postfix/etc/localtime r, /var/spool/postfix/etc/resolv.conf r, /var/spool/postfix/etc/services r, /var/spool/postfix/pid/unix.amavisfeed krw, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}pid/unix.relay krw, /{var/spool/postfix/,}pid/unix.smtp krw, /{var/spool/postfix/,}private/anvil w, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/scache w, /{var/spool/postfix/,}private/tlsmgr w, /{var/spool/postfix/,}private/trace w, /{var/spool/postfix/,}public/flush w, }	over 3 years ago		124	stive	Edit	History
opensuse11.0	/usr/bin/tor	#include <tunables/global> /usr/bin/tor flags=(complain) { #include <abstractions/base> }	over 3 years ago		161	alphinux	Edit	History
opensuse11.0	/usr/bin/kmail	#include <tunables/global> /usr/bin/kmail flags=(complain) { #include <abstractions/base> }	over 3 years ago	Poczta e-mail	193	Mariusz Bernard	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability net_bind_service, capability setgid, capability setuid, /etc/apache2/conf.d/ r, /etc/apache2/conf.d/mod_fcgid.conf r, /etc/apache2/conf.d/mod_mono.conf r, /etc/apache2/conf.d/mod_perl.conf r, /etc/apache2/conf.d/php5.conf r, /etc/apache2/conf.d/phpmyadmin.conf r, /etc/apache2/default-server.conf r, /etc/apache2/errors.conf r, /etc/apache2/httpd.conf r, /etc/apache2/listen.conf r, /etc/apache2/mod_autoindex-defaults.conf r, /etc/apache2/mod_info.conf r, /etc/apache2/mod_log_config.conf r, /etc/apache2/mod_mime-defaults.conf r, /etc/apache2/mod_status.conf r, /etc/apache2/mod_userdir.conf r, /etc/apache2/mod_usertrack.conf r, /etc/apache2/server-tuning.conf r, /etc/apache2/ssl-global.conf r, /etc/apache2/sysconfig.d/global.conf r, /etc/apache2/sysconfig.d/include.conf r, /etc/apache2/sysconfig.d/loadmodule.conf r, /etc/apache2/uid.conf r, /etc/apache2/vhosts.d/ r, /etc/gai.conf r, /etc/mime.types r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/ r, /etc/php5/conf.d/bcmath.ini r, /etc/php5/conf.d/bz2.ini r, /etc/php5/conf.d/calendar.ini r, /etc/php5/conf.d/ctype.ini r, /etc/php5/conf.d/curl.ini r, /etc/php5/conf.d/dba.ini r, /etc/php5/conf.d/dom.ini r, /etc/php5/conf.d/exif.ini r, /etc/php5/conf.d/gd.ini r, /etc/php5/conf.d/gmp.ini r, /etc/php5/conf.d/hash.ini r, /etc/php5/conf.d/iconv.ini r, /etc/php5/conf.d/json.ini r, /etc/php5/conf.d/mbstring.ini r, /etc/php5/conf.d/mcrypt.ini r, /etc/php5/conf.d/mysql.ini r, /etc/php5/conf.d/mysqli.ini r, /etc/php5/conf.d/ncurses.ini r, /etc/php5/conf.d/odbc.ini r, /etc/php5/conf.d/openssl.ini r, /etc/php5/conf.d/pcntl.ini r, /etc/php5/conf.d/pdo.ini r, /etc/php5/conf.d/pdo_mysql.ini r, /etc/php5/conf.d/pdo_odbc.ini r, /etc/php5/conf.d/pdo_sqlite.ini r, /etc/php5/conf.d/posix.ini r, /etc/php5/conf.d/pspell.ini r, /etc/php5/conf.d/readline.ini r, /etc/php5/conf.d/shmop.ini r, /etc/php5/conf.d/snmp.ini r, /etc/php5/conf.d/soap.ini r, /etc/php5/conf.d/sockets.ini r, /etc/php5/conf.d/sqlite.ini r, /etc/php5/conf.d/suhosin.ini r, /etc/php5/conf.d/tidy.ini r, /etc/php5/conf.d/tokenizer.ini r, /etc/php5/conf.d/wddx.ini r, /etc/php5/conf.d/xmlreader.ini r, /etc/php5/conf.d/xmlrpc.ini r, /etc/php5/conf.d/xmlwriter.ini r, /etc/php5/conf.d/xsl.ini r, /etc/php5/conf.d/zip.ini r, /etc/php5/conf.d/zlib.ini r, /proc//attr/current w, /tmp/.wapi/ w, /tmp/mod_mono_dashboard_XXGLOBAL_1 rw, /usr/bin/mod-mono-server px, /usr/lib64/* mr, /usr/sbin/httpd2-prefork mr, /usr/share/snmp/mibs/.index r, /usr/share/snmp/mibs/DISMAN-EVENT-MIB.txt r, /usr/share/snmp/mibs/DISMAN-SCHEDULE-MIB.txt r, /usr/share/snmp/mibs/HOST-RESOURCES-MIB.txt r, /usr/share/snmp/mibs/HOST-RESOURCES-TYPES.txt r, /usr/share/snmp/mibs/IANA-RTPROTO-MIB.txt r, /usr/share/snmp/mibs/IANAifType-MIB.txt r, /usr/share/snmp/mibs/IF-MIB.txt r, /usr/share/snmp/mibs/INET-ADDRESS-MIB.txt r, /usr/share/snmp/mibs/IP-FORWARD-MIB.txt r, /usr/share/snmp/mibs/IP-MIB.txt r, /usr/share/snmp/mibs/IPV6-ICMP-MIB.txt r, /usr/share/snmp/mibs/IPV6-MIB.txt r, /usr/share/snmp/mibs/IPV6-TC.txt r, /usr/share/snmp/mibs/IPV6-TCP-MIB.txt r, /usr/share/snmp/mibs/IPV6-UDP-MIB.txt r, /usr/share/snmp/mibs/LM-SENSORS-MIB.txt r, /usr/share/snmp/mibs/NET-SNMP-AGENT-MIB.txt r, /usr/share/snmp/mibs/NET-SNMP-EXTEND-MIB.txt r, /usr/share/snmp/mibs/NET-SNMP-MIB.txt r, /usr/share/snmp/mibs/NET-SNMP-VACM-MIB.txt r, /usr/share/snmp/mibs/NOTIFICATION-LOG-MIB.txt r, /usr/share/snmp/mibs/RFC1155-SMI.txt r, /usr/share/snmp/mibs/RFC1213-MIB.txt r, /usr/share/snmp/mibs/SNMP-COMMUNITY-MIB.txt r, /usr/share/snmp/mibs/SNMP-FRAMEWORK-MIB.txt r, /usr/share/snmp/mibs/SNMP-MPD-MIB.txt r, /usr/share/snmp/mibs/SNMP-NOTIFICATION-MIB.txt r, /usr/share/snmp/mibs/SNMP-TARGET-MIB.txt r, /usr/share/snmp/mibs/SNMP-USER-BASED-SM-MIB.txt r, /usr/share/snmp/mibs/SNMP-VIEW-BASED-ACM-MIB.txt r, /usr/share/snmp/mibs/SNMPv2-MIB.txt r, /usr/share/snmp/mibs/SNMPv2-SMI.txt r, /usr/share/snmp/mibs/SNMPv2-TC.txt r, /usr/share/snmp/mibs/SNMPv2-TM.txt r, /usr/share/snmp/mibs/TCP-MIB.txt r, /usr/share/snmp/mibs/UCD-DEMO-MIB.txt r, /usr/share/snmp/mibs/UCD-DISKIO-MIB.txt r, /usr/share/snmp/mibs/UCD-DLMOD-MIB.txt r, /usr/share/snmp/mibs/UCD-IPFWACC-MIB.txt r, /usr/share/snmp/mibs/UCD-SNMP-MIB.txt r, /usr/share/snmp/mibs/UDP-MIB.txt r, /usr/share/terminfo/v/vt100 r, /var/lib/php5/session_mm_apache2handler0.sem kw, /var/log/apache2/access_log a, /var/log/apache2/error_log a, /var/run/httpd2.pid w, /var/run/nscd/services r, } /usr/sbin/httpd2-prefork///egroupware/login.php flags=(complain) { #include <abstractions/nameservice> /dev/urandom r, /proc//attr/current w, /srv/www/htdocs/egroupware/header.inc.php r, /srv/www/htdocs/egroupware/login.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/adodb/adodb-iterator.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/adodb/adodb-time.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/adodb/adodb.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/adodb/drivers/adodb-mysql.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.Template.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.accounts.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.accounts_sql.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.acl.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.applications.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.auth.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.auth_sql.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.browser.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.common.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.config.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.contenthistory.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.crypto.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.dragdrop.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.egw.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.egw_datetime.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.egw_db.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.egw_framework.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.error.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.errorlog.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.hooks.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.html.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.javascript.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.preferences.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.sessions.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.sessions_php4.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.tplsavant2.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/class.translation.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/common_functions.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/functions.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/savant2/Savant2.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/soap_functions.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/xajax.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/xajaxResponse.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/inc/xml_functions.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/js/jsapi/jsapi.js r, /srv/www/htdocs/egroupware/phpgwapi/setup/setup.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/setup/tables_current.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/templates/default/head.tpl r, /srv/www/htdocs/egroupware/phpgwapi/templates/default/images/ r, /srv/www/htdocs/egroupware/phpgwapi/templates/default/login.tpl r, /srv/www/htdocs/egroupware/phpgwapi/templates/idots/class.idots_framework.inc.php r, /srv/www/htdocs/egroupware/phpgwapi/templates/idots/images/ r, /var/lib/mysql/mysql.sock w, /var/log/apache2/access_log w, } "/usr/sbin/httpd2-prefork///egroupware/phpgwapi/templates/default/images/DPC LOGO TIFF.tif" flags=(complain) { #include <abstractions/nameservice> /proc//attr/current w, "/srv/www/htdocs/egroupware/phpgwapi/templates/default/images/DPC LOGO TIFF.tif" r, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork///webERP/index.php flags=(complain) { #include <abstractions/nameservice> /dev/urandom r, /proc//attr/current w, /srv/www/htdocs/webERP/config.php r, /srv/www/htdocs/webERP/includes/ConnectDB.inc r, /srv/www/htdocs/webERP/includes/ConnectDB_mysqli.inc r, /srv/www/htdocs/webERP/includes/DateFunctions.inc r, /srv/www/htdocs/webERP/includes/GetConfig.php r, /srv/www/htdocs/webERP/includes/LanguageSetup.php r, /srv/www/htdocs/webERP/includes/MiscFunctions.php r, /srv/www/htdocs/webERP/includes/footer.inc r, /srv/www/htdocs/webERP/includes/header.inc r, /srv/www/htdocs/webERP/includes/php-gettext/gettext.php r, /srv/www/htdocs/webERP/includes/php-gettext/streams.php r, /srv/www/htdocs/webERP/includes/session.inc r, /srv/www/htdocs/webERP/index.php r, /srv/www/htdocs/webERP/locale/en_US/LC_MESSAGES/messages.mo r, /usr/share/mysql/charsets/Index.xml r, /var/lib/mysql/mysql.sock w, /var/lib/php5/sess_4srj8ot0k3dg4i4cfh382evemsc9jshf krw, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork//DEFAULT_URI flags=(complain) { /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /proc//attr/current w, }	over 4 years ago	egroupware	446	kent	Edit	History
opensuse10.3	/etc/init.d/privoxy	#include <tunables/global> /etc/init.d/privoxy { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability kill, capability sys_ptrace, capability sys_tty_config, /bin/basename Px, /bin/bash ixr, /bin/cp ixr, /bin/rm ixr, /bin/stty ixr, /dev/blog w, /etc/init.d/privoxy ixr, /etc/rc.status r, /proc//stat r, /proc//statm r, /proc/meminfo r, /sbin/checkproc ixr, /sbin/killproc ixr, /usr/sbin/privoxy Pxr, /var/lib/privoxy/ r, /var/lib/privoxy/etc/* w, /var/lib/privoxy/lib/ r, /var/lib/privoxy/lib/libso w, /var/run/privoxy.pid rw, }	over 4 years ago	none	232	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/man	# $Id: usr.bin.man 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # #include <tunables/global> /usr/bin/man { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, /usr/lib/man-db/man Px, }	over 3 years ago		185	stive	Edit	History
opensuse11.0	/usr/bin/xterm	#include <tunables/global> /usr/bin/xterm { #include <abstractions/base> }	over 3 years ago	...	153	knotwurk	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, /home//public_html/* rw, /srv/www/htdocs/* r, /srv/www/vhosts/ rw, /usr/sbin/httpd2-prefork mr, /usr/share/apache2/error/ r, /var/lib/php5/* krw, /var/log/apache2/* w, /var/run/httpd2.pid w, /var/squirrelmail/data/* r, } /usr/sbin/httpd2-prefork//DEFAULT_URI flags=(complain) { } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT flags=(complain) { }	over 3 years ago		169	webtel	Edit	History
opensuse10.3	/usr/bin/nm-applet	#include <tunables/global> /usr/bin/nm-applet { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /usr/bin/bug-buddy ixr, /usr/bin/nm-applet mr, /usr/share/nm-applet/.glade r, }	over 4 years ago	none	272	cinimod	Edit	History
opensuse10.3	/usr/lib/GConf/2/gconfd-2	#include <tunables/global> /usr/lib/GConf/2/gconfd-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/** r, /home//.gconf/ rw, /home//.gconf/** rw, /home//.gconfd/ w, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /tmp/gconfd-/lock/ klrw, /usr/lib/GConf/2/gconfd-2 mr, }	over 4 years ago	Import of jmichaels profiles	247	dominic	Edit	History
ubuntu-gutsy	/usr/bin/infocmp	#include <tunables/global> /usr/bin/infocmp flags=(complain) { #include <abstractions/base> /lib/terminfo/x/xterm r, /usr/bin/infocmp mr, }	over 4 years ago	gnome	285	hbpteam	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	about 1 year ago		62	npatel	Edit	History
opensuse11.0	/usr/sbin/traceroute	#include <tunables/global> /usr/sbin/traceroute { #include <abstractions/base> #include <abstractions/nameservice> /usr/sbin/traceroute r, }	over 2 years ago	2	185	asdas	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> owner /dev/shm/pulse-shm-2724684805 mr, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, /home//.config/Trolltech.conf rk, /home//.fontconfig/ r, /home//.mozilla/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, /proc//net/route r, /proc/interrupts r, /tmp/.ICE-unix/ w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/iconengines/ r, /usr/lib/qt4/plugins/imageformats/ r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/locale/* r, /usr/share/icons/** r, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, }	over 2 years ago	update	130	oleghator	Edit	History
opensuse11.0	/bin/sync	#include <tunables/global> /bin/sync { #include <abstractions/base> }	over 2 years ago	syncprof	116	dementieva	Edit	History
opensuse11.0	/usr/sbin/asterisk	#include <tunables/global> /usr/sbin/asterisk flags=(complain) { #include <abstractions/base> /etc/asterisk/logger.conf r, }	over 3 years ago		267	yvm2008	Edit	History
opensuse10.3	/etc/init.d/ntp	#include <tunables/global> /etc/init.d/ntp flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/wutmp> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_ptrace, capability sys_time, capability sys_tty_config, /bin/bash ixr, /bin/cp ixr, /bin/rm ixr, /bin/stty ixr, /dev/blog w, /etc/gai.conf r, /etc/init.d/ntp ixr, /etc/ntp.conf r, /etc/rc.status r, /etc/sysconfig/ntp r, /proc/ r, /proc//stat r, /proc//statm r, /proc/meminfo r, /proc/net/if_inet6 r, /sbin/checkproc ixr, /sbin/killproc ixr, /sbin/startproc ixr, /usr/sbin/ntpd Pxmr, /usr/sbin/ntpdate Px, /var/lib/ntp/drift/ntp.drift r, /var/lib/ntp/etc/localtime w, /var/lib/ntp/var/run/ntp/ntpd.pid rw, /var/log/ntp a, /var/run/nscd/services r, }	over 4 years ago	argh, switch things back to complain for a while	278	jmichael	Edit	History
opensuse10.3	/home/dominic/bin/myls	#include <tunables/global> /home/dominic/bin/myls { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, /home/dominic/ r, /home/dominic/**/ r, /home/dominic/bin/myls mr, /proc/meminfo r, }	over 4 years ago	none	176	cinimod	Edit	History
opensuse10.3	/etc/init.d/privoxy	#include <tunables/global> /etc/init.d/privoxy { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability kill, capability sys_ptrace, capability sys_tty_config, /bin/basename Px, /bin/bash ixr, /bin/cp ixr, /bin/rm ixr, /bin/stty ixr, /dev/blog w, /etc/init.d/privoxy ixr, /etc/rc.status r, /proc//stat r, /proc//statm r, /proc/meminfo r, /sbin/checkproc ixr, /sbin/killproc ixr, /usr/sbin/privoxy Pxr, /var/lib/privoxy/ r, /var/lib/privoxy/etc/* w, /var/lib/privoxy/lib/ r, /var/lib/privoxy/lib/libso w, /var/run/privoxy.pid rw, }	over 4 years ago	Import of jmichaels profiles	242	dominic	Edit	History
opensuse11.0	/usr/bin/mysql	#include <tunables/global> /usr/bin/mysql { #include <abstractions/base> }	about 1 month ago	mew	3	lordssyndicate	Edit	History
opensuse11.0	/home/fre/download/firefox4b6/firefox/firefox	#include <tunables/global> /home/fre/download/firefox4b6/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /dev/tty rw, owner /home/fre/download/firefox4b6/firefox/firefox r, ^null-75 { /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-77 { /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-79 { /dev/tty rw, /dev/urandom r, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/ld.so.cache r, /etc/localtime r, /etc/mtab r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.fontconfig/bf83a1c92498945d72478f206640c407-le32d4.cache-3 r, owner /home//.fonts.conf r, owner /home//.fonts/arial.ttf r, owner /home//.fonts/arialbd.ttf r, owner /home//.fonts/times.ttf r, owner /home//.gtkrc-2.0-kde4 r, owner /home//.icons/ r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/applications/defaults.list r, owner /home//.local/share/applications/mimeinfo.cache r, owner /home//.local/share/icons/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//.mozilla/firefox/** rwk, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/content/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ar/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/bg/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/bn/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ca/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/cs/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/da/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/de/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/el/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/en-GB/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/en-US/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/es/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/et/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/fa/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/fi/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/fil/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/fr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/gu/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/he/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/hi/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/hr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/hu/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/id/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/is/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/it/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ja/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/kn/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ko/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/lt/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/lv/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ml/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/mr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ms/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/nl/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/no/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/or/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/pl/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/pt-BR/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/pt-PT/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ro/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ru/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/sk/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/sl/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/sr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/sv/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ta/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/te/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/th/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/tr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/uk/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/ur/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/vi/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/zh-CN/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/chrome/chromeFiles/locale/zh-TW/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/components/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/lib/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/lib/ff2/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/lib/ff30/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/lib/ff35/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/resources/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/resources/inspector/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{000a9d1c-beef-4f90-9363-039d445309b8\}/resources/inspector/common/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/chrome/tbutton.jar r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/defaults/preferences/button.js r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{03B08592-E5B4-45ff-A0BE-C1D975458688\}/defaults/preferences/url.js r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{0545b830-f0aa-4d7e-8820-50a4629a56fe\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{0545b830-f0aa-4d7e-8820-50a4629a56fe\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{0545b830-f0aa-4d7e-8820-50a4629a56fe\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{0545b830-f0aa-4d7e-8820-50a4629a56fe\}/chrome/clrtabs.jar r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{0545b830-f0aa-4d7e-8820-50a4629a56fe\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{0545b830-f0aa-4d7e-8820-50a4629a56fe\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{0545b830-f0aa-4d7e-8820-50a4629a56fe\}/defaults/preferences/defaults.js r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/content/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/locale/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/locale/en-US/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/locale/it-IT/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/locale/ja-JP/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/locale/ro-RO/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/skin/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/chrome/libf/skin/classic/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{06652CB6-16D0-4e7a-BF2D-E0037A87E57A\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{21350f60-90a5-11da-a72b-0800200c9a66\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{21350f60-90a5-11da-a72b-0800200c9a66\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{21350f60-90a5-11da-a72b-0800200c9a66\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{21350f60-90a5-11da-a72b-0800200c9a66\}/chrome/ffmenubuttons.jar r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/META-INF/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/components/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/defaults/components/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/defaults/contenthandling/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/defaults/custombuttons/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/lib/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3112ca9c-de6d-4884-a869-9855de68056c\}/libraries/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{37E4D8EA-8BDA-4831-8EA1-89053939A250\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{37E4D8EA-8BDA-4831-8EA1-89053939A250\}/META-INF/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{37E4D8EA-8BDA-4831-8EA1-89053939A250\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{37E4D8EA-8BDA-4831-8EA1-89053939A250\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{37E4D8EA-8BDA-4831-8EA1-89053939A250\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8\}/components/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{446c03e0-2c35-11db-a98b-0800200c9a67\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{446c03e0-2c35-11db-a98b-0800200c9a67\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{446c03e0-2c35-11db-a98b-0800200c9a67\}/chrome/content/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{446c03e0-2c35-11db-a98b-0800200c9a67\}/chrome/skin/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4BCC5CF2-DD1B-4f34-80BA-E5A2355D3936\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4BCC5CF2-DD1B-4f34-80BA-E5A2355D3936\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4BCC5CF2-DD1B-4f34-80BA-E5A2355D3936\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4BCC5CF2-DD1B-4f34-80BA-E5A2355D3936\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/content/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/content/obsolete/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/de-DE/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/en-US/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/es-ES/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/fr-FR/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/it-IT/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/ko-KR/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/pt-BR/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/ru-RU/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/locale/zh-TW/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{4C2EC6BE-360F-4003-90CB-0F280FA8D5A5\}/skin/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5546F97E-11A5-46b0-9082-32AD74AAA920\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5546F97E-11A5-46b0-9082-32AD74AAA920\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5546F97E-11A5-46b0-9082-32AD74AAA920\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5546F97E-11A5-46b0-9082-32AD74AAA920\}/chrome/informenter.jar r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5546F97E-11A5-46b0-9082-32AD74AAA920\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5546F97E-11A5-46b0-9082-32AD74AAA920\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5546F97E-11A5-46b0-9082-32AD74AAA920\}/defaults/preferences/informenter.js r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{667e9f3d-0096-4d2b-b171-9a96afbabe20\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{667e9f3d-0096-4d2b-b171-9a96afbabe20\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{667e9f3d-0096-4d2b-b171-9a96afbabe20\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{667e9f3d-0096-4d2b-b171-9a96afbabe20\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{75e19832-90c0-4553-91a0-e5d0ac5d99fd\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{75e19832-90c0-4553-91a0-e5d0ac5d99fd\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{75e19832-90c0-4553-91a0-e5d0ac5d99fd\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{75e19832-90c0-4553-91a0-e5d0ac5d99fd\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/browser/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/browser/dropmarkers/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/browser/feeds/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/browser/places/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/browser/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/browser/tabbrowser/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/communicator/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/arrow/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/checkbox/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/console/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/dirListing/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/icons/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/media/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/menu/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/notification/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/scale/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/scrollbar/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/scrollbox/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/splitter/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/toolbar/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/global/tree/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/downloads/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/extensions/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/handling/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/passwordmgr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/places/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/plugins/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/profile/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/update/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/viewsource/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/mac/mozapps/xpinstall/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/browser/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/browser/dropmarkers/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/browser/feeds/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/browser/places/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/browser/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/browser/tabbrowser/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/communicator/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/alerts/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/arrow/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/button/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/checkbox/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/console/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/dirListing/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/icons/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/media/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/printpreview/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/progressmeter/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/radio/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/scrollbar/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/splitter/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/toolbar/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/global/tree/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/downloads/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/extensions/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/handling/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/passwordmgr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/places/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/plugins/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/profile/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/update/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/viewsource/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7694c49c-9fbd-11dc-8314-0800200c9a66\}/chrome/win/mozapps/xpinstall/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7A074BE0-2326-436d-B473-029FAEBEB5C6\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7A074BE0-2326-436d-B473-029FAEBEB5C6\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7A074BE0-2326-436d-B473-029FAEBEB5C6\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7A074BE0-2326-436d-B473-029FAEBEB5C6\}/chrome/tabsaver.jar r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7ef7f4d6-947d-11dc-8314-0800200c9a66\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7ef7f4d6-947d-11dc-8314-0800200c9a66\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{7ef7f4d6-947d-11dc-8314-0800200c9a66\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{909409b9-2e3b-4682-a5d1-71ca80a76456\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{909409b9-2e3b-4682-a5d1-71ca80a76456\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{909409b9-2e3b-4682-a5d1-71ca80a76456\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{909409b9-2e3b-4682-a5d1-71ca80a76456\}/chrome/sessionsaver.jar r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/browser/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/browser/feeds/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/browser/places/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/browser/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/browser/tabbrowser/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/communicator/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/alerts/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/arrow/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/checkbox/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/console/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/dirListing/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/icons/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/media/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/menu/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/printpreview/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/radio/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/scrollbar/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/splitter/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/classiccompact2/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/dark/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/dark/arrows/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/dark/checkboxes/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/dark/radio/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/dark/scrollbars/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/dark/splitter/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/dark/tree/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/flatbackgrounds/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/keyhole/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/themeoptions/mergemenu/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/throbber/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/toolbar/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/global/tree/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/downloads/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/extensions/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/handling/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/passwordmgr/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/places/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/plugins/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/profile/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/shared/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/update/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/viewsource/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{D46E8522-6E86-44b1-A622-58C0668AD78E\}/chrome/mozapps/xpinstall/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{DA92B0E0-6CB4-11d9-941A-444553540001\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{DA92B0E0-6CB4-11d9-941A-444553540001\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{DA92B0E0-6CB4-11d9-941A-444553540001\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{DA92B0E0-6CB4-11d9-941A-444553540001\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/chrome.manifest r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/content/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/content/abhere.js r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/content/abhere.xul r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/defaults/preferences/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/defaults/preferences/abhere.js r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/de-DE/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/de-DE/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/en-US/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/en-US/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/es-ES/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/es-ES/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/fi-FI/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/fi-FI/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/it-IT/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/it-IT/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/nl-NL/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/nl-NL/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/pl-PL/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/pl-PL/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/pt-BR/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/pt-BR/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/ru-RU/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/ru-RU/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/sv-SE/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{F33233B3-EDB1-41f4-8482-917AB190E647\}/locale/sv-SE/abhere/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{ba243cb0-b824-4a26-9418-73ee795d9b9d\}/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{ba243cb0-b824-4a26-9418-73ee795d9b9d\}/chrome/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{ba243cb0-b824-4a26-9418-73ee795d9b9d\}/defaults/ r, owner /home//.mozilla/firefox/d5kj8g5u.default/extensions/\{ba243cb0-b824-4a26-9418-73ee795d9b9d\}/defaults/preferences/ r, owner "/home//ArchiefTux/opstartpagina/Opstartpagina 3/Opstartpagina40.html" r, owner "/home//ArchiefTux/opstartpagina/Opstartpagina 3/opstart.css" r, owner "/home//ArchiefTux/opstartpagina/Opstartpagina 3/trans.gif" r, owner /home//download/firefox4b6/firefox/application.ini r, owner /home//download/firefox4b6/firefox/chrome.manifest r, owner /home//download/firefox4b6/firefox/chrome/icons/default/default16.png r, owner /home//download/firefox4b6/firefox/chrome/icons/default/default32.png r, owner /home//download/firefox4b6/firefox/chrome/icons/default/default48.png r, owner /home//download/firefox4b6/firefox/components/binary.manifest r, owner /home//download/firefox4b6/firefox/components/libbrowsercomps.so mr, owner /home//download/firefox4b6/firefox/components/libdbusservice.so mr, owner /home//download/firefox4b6/firefox/components/libmozgnome.so mr, owner /home//download/firefox4b6/firefox/components/libnkgnomevfs.so mr, owner /home//download/firefox4b6/firefox/defaults/pref/channel-prefs.js r, owner /home//download/firefox4b6/firefox/extensions/ r, owner /home//download/firefox4b6/firefox/extensions/\{972ce4c6-7e08-4474-a285-3208198ce6fd\}/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/chrome.manifest r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/components/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/components/TestPilot.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/content/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/content/browser.css r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/content/browser.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/content/feedback-browser.xul r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/content/flot/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/content/window-utils.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/defaults/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/defaults/preferences/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/defaults/preferences/preferences.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/instrument/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/Observers.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/dbutils.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/experiment_data_store.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/jar-code-store.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/cuddlefish.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/memory.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/observer-service.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/preferences-service.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/securable-module.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/unload.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/lib/url.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/log4moz.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/metadata.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/remote-experiment-loader.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/setup.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/string_sanitizer.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/modules/tasks.js r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/all/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/all/css/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/all/images/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/linux/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/linux/feedback.css r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/mac/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/skin/win/ r, owner /home//download/firefox4b6/firefox/extensions/testpilot@labs.mozilla.com/tests/ r, owner /home//download/firefox4b6/firefox/libfreebl3.so mr, owner /home//download/firefox4b6/firefox/libmozalloc.so mr, owner /home//download/firefox4b6/firefox/libmozsqlite3.so mr, owner /home//download/firefox4b6/firefox/libnspr4.so mr, owner /home//download/firefox4b6/firefox/libnss3.so mr, owner /home//download/firefox4b6/firefox/libnssckbi.so mr, owner /home//download/firefox4b6/firefox/libnssdbm3.so mr, owner /home//download/firefox4b6/firefox/libnssutil3.so mr, owner /home//download/firefox4b6/firefox/libplc4.so mr, owner /home//download/firefox4b6/firefox/libplds4.so mr, owner /home//download/firefox4b6/firefox/libsmime3.so mr, owner /home//download/firefox4b6/firefox/libsoftokn3.so mr, owner /home//download/firefox4b6/firefox/libssl3.so mr, owner /home//download/firefox4b6/firefox/libxpcom.so mr, owner /home//download/firefox4b6/firefox/libxul.so mr, owner /home//download/firefox4b6/firefox/omni.jar r, owner /home//download/firefox4b6/firefox/run-mozilla.sh r, owner /home//download/firefox4b6/firefox/searchplugins/ r, /lib/libso mr, /opt/kde3/share/applications/mimeinfo.cache r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, owner /proc//maps r, owner /proc//mountinfo r, owner /proc//mounts r, /proc/filesystems r, /proc/meminfo r, /proc/stat r, /tmp/ r, owner /tmp/orbit-fre/linc-768e-0-60aca0a277a9a w, owner /tmp/orbit-fre/linc-768e-0-7a025031d133c w, /usr/lib/gconv/UTF-.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/gio/modules/ r, /usr/lib/gio/modules/giomodule.cache r, /usr/lib/gio/modules/libgioremote-volume-monitor.so mr, /usr/lib/gio/modules/libgvfsdbus.so mr, /usr/lib/gnome-vfs-2.0/modules/libfile.so mr, /usr/lib/gtk-2.0/2.10.0/engines/libclearlooks.so mr, /usr/lib/gtk-2.0/2.10.0/immodules/im-cedilla.so mr, /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so mr, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/lib/pango/1.6.0/modules/pango-basic-fc.so mr, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/applications/bluefish.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/afc.monitor r, /usr/share/gvfs/remote-volume-monitors/gdu.monitor r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/icons/ r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/Gilouche/icon-theme.cache r, /usr/share/icons/Gilouche/index.theme r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/locale-bundle/nl/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/nl/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/nl/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/nl/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/nl/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/locale/ r, /usr/share/mime/application/javascript.xml r, /usr/share/mime/application/xml-dtd.xml r, /usr/share/mime/mime.cache r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome.manifest r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/feeds/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/16/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/24/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/32/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/64/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/disabled/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/disabled/16/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/disabled/24/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/disabled/32/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/icons/disabled/64/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/places/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/preferences/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/browser/tabbrowser/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/communicator/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/alerts/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/arrow/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/checkbox/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/console/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/dirListing/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/icons/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/media/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/menu/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/printpreview/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/radio/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/scrollbar/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/splitter/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/throbber/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/toolbar/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/global/tree/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/downloads/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/extensions/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/handling/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/passwordmgr/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/places/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/plugins/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/profile/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/update/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/viewsource/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/oxygen-firefox-theme@oxygen-icons.org/chrome/mozapps/xpinstall/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/chrome/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/ r, /usr/share/pixmaps/ r, /usr/share/themes/Clearlooks/gtk-2.0/gtkrc r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-le32d4.cache-3 r, /var/cache/fontconfig/1890317d8a3fded7854d26fdd2e67c05-le32d4.cache-3 r, /var/cache/fontconfig/293fdca5c5a4717fef867b577c7f75e0-le32d4.cache-3 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-le32d4.cache-3 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-le32d4.cache-3 r, /var/cache/fontconfig/31f82260556886db06538972b4bc1ecd-le32d4.cache-3 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-le32d4.cache-3 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-le32d4.cache-3 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-le32d4.cache-3 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-le32d4.cache-3 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-le32d4.cache-3 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-le32d4.cache-3 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-le32d4.cache-3 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-le32d4.cache-3 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-le32d4.cache-3 r, /var/cache/gio-2.0/defaults.list r, /var/tmp/ r, } }	about 1 year ago	firefox 101226	70	fre	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, / r, // r, /bin/bash ixr, /bin/uname ixr, /data1 r, /data1/* rw, /data2/** rw, /dev/tty rw, /etc/gnome-vfs-2.0/modules/ r, /etc/opt/gnome/gnome-vfs-2.0/modules r, /etc/opt/gnome/gnome-vfs-2.0/modules/default-modules.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/font-method.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/mapping-modules.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/smb-module.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/opt/gnome/gnome-vfs-2.0/modules/theme-method.conf r, /etc/opt/gnome/gtk-2.0/gdk-pixbuf.loaders r, /etc/opt/gnome/gtk-2.0/gtk.immodules r, /etc/opt/gnome/gtk-2.0/gtkrc r, /etc/opt/gnome/pango/pango.modules r, /etc/opt/kde3/share/icons r, /etc/sound/events/gtk-events-2.soundlist r, /home/* r, /home// r, /home//* rw, /home//.aMule/ rw, /home//.aMule/** krw, /home//.beagle/socket w, /home//.config/gtk-2.0/* rw, /home//.config/qtcurve.gtk-colors rw, /home//.config/qtcurve.gtk-icons rw, /home//.fontconfig/ w, /home//.fontconfig/.cache-2 r, /home//.gnome2/Totem/state.ini rw, /home//.gnome2/Totem/state.ini.MBLUZT rw, /home//.gnome2/Totem/xine_config r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml r, /home//.icons/ r, /home//.icons/*/ r, /home//.icons/gnome/48x48/apps r, /home//.icons/hicolor/16x16/mimetypes r, /home//.icons/hicolor/32x32/mimetypes r, /home//.icons/hicolor/48x48/mimetypes r, /home//.icons/hicolor/icon-theme.cache r, /home//.icons/hicolor/scalable/mimetypes r, /home//.kde/share/config/gtkrc-2.0 r, /home//.kde/share/config/kdeglobals r, /home//.local/share/Trash/files/logfile w, /home//.local/share/icons r, /home//.local/share/icons/ r, /home//.local/share/icons/hicolor/16x16/mimetypes r, /home//.local/share/icons/hicolor/16x16/mimetypes/ r, /home//.local/share/icons/hicolor/32x32/mimetypes r, /home//.local/share/icons/hicolor/32x32/mimetypes/ r, /home//.local/share/icons/hicolor/48x48/mimetypes r, /home//.local/share/icons/hicolor/48x48/mimetypes/ r, /home//.local/share/icons/hicolor/icon-theme.cache r, /home//.local/share/icons/hicolor/scalable/mimetypes r, /home//.local/share/icons/hicolor/scalable/mimetypes/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/mime.cache r, /home//.local/share/mime/subclasses r, /home//.qt/qtrc r, /opt/gnome/lib/gtk-2.0/2.10.0/engines/libqtcurve.so mr, /opt/gnome/lib/gtk-2.0/2.10.0/immodules/im-xim.so mr, /opt/gnome/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so mr, /opt/gnome/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-xpm.so mr, /opt/gnome/lib/pango/1.5.0/modules/pango-arabic-fc.so m, /opt/gnome/lib/pango/1.5.0/modules/pango-basic-fc.so mr, /opt/gnome/lib/pango/1.5.0/modules/pango-hebrew-fc.so r, /opt/gnome/lib/pango/1.5.0/modules/pango-thai-fc.so m, /opt/gnome/share/icons r, /opt/gnome/share/icons/ r, /opt/gnome/share/icons/* r, /opt/gnome/share/locale/it/LC_MESSAGES/* r, /opt/gnome/share/mime/aliases r, /opt/gnome/share/mime/globs r, /opt/gnome/share/mime/magic r, /opt/gnome/share/mime/mime.cache r, /opt/gnome/share/mime/subclasses r, /opt/gnome/share/pixmaps r, /opt/gnome/share/pixmaps/ r, /opt/gnome/share/themes/QtCurve/** r, /opt/gnome/share/themes/Raleigh/gtk-2.0/gtkrc r, /opt/kde3/share/fonts r, /opt/kde3/share/icons r, /opt/kde3/share/pixmaps r, /opt/kde3/share/pixmaps/ r, /proc//cmdline r, /proc//maps r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /root/.aMule/ w, /tmp_script_enVWUv r, /tmp_script_rjMeeF r, /usr/X11R6/lib/X11/fonts r, /usr/X11R6/lib/X11/fonts/** r, /usr/bin/amule mr, /usr/bin/amuleweb ixr, /usr/bin/bug-buddy ixr, /usr/bin/mplayer Ux, /usr/bin/perl ixr, /usr/bin/totem ixr, /usr/bin/xterm ixr, /usr/share/amule// r, /usr/share/fonts r, /usr/share/ghostscript/fonts r, /usr/share/icons r, /usr/share/locale-bundle/de/.mo r, /usr/share/locale-bundle/it/LC_MESSAGES/ r, /usr/share/pixmaps r, /usr/share/totem/* r, /var/cache/libx11/compose/* r, }	over 2 years ago		132	mentor4cluster	Edit	History
opensuse11.0	/usr/lib/postfix/qmgr	# $Id: usr.lib.postfix.qmgr 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/qmgr { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> network inet stream, network inet6 dgram, network inet6 stream, owner /etc/gai.conf r, owner /proc/sys/kernel/ngroups_max r, /usr/lib/postfix/qmgr mrix, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/local w, /{var/spool/postfix/,}private/relay w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/smtp w, /{var/spool/postfix/,}private/trace w, /{var/spool/postfix/,}private/uucp w, /{var/spool/postfix/,}public/flush w, /{var/spool/postfix/,}public/qmgr r, }	over 3 years ago	Added necessary network components	174	delder	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		253	josemanuel	Edit	History
opensuse10.3	/usr/bin/nm-applet	#include <tunables/global> /usr/bin/nm-applet { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /usr/bin/bug-buddy ixr, /usr/bin/nm-applet mr, /usr/share/nm-applet/.glade r, }	over 4 years ago	Import of jmichaels profiles	329	dominic	Edit	History
opensuse10.3	/sbin/modprobe	#include <tunables/global> /sbin/modprobe { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability net_raw, capability sys_module, /bin/bash ixr, /bin/true ixr, /etc/modprobe.conf r, /etc/modprobe.conf.local r, /etc/modprobe.d/ r, /etc/modprobe.d/* r, /lib/modules/*.ko krw, /lib/modules//modules.alias r, /lib/modules/*/modules.dep r, /proc/meminfo r, /proc/modules r, /sbin/modprobe ixr, }	over 4 years ago	Import of jmichaels profiles	329	dominic	Edit	History
opensuse10.3	/opt/Adobe/Reader8/bin/acroread	#include <tunables/global> /opt/Adobe/Reader8/bin/acroread flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /opt/Adobe/Reader8/bin/acroread mr, }	over 4 years ago	Appacrobat	215	vmbaumgaertel	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/bz2.ini r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/curl.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_pgsql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/pgsql.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/zlib.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, owner /usr/lib/** mr, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	6 months ago		37	AlexDudko	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/nis> capability dac_override, capability net_bind_service, capability setgid, owner /etc/apache2/conf.d/ r, owner /etc/apache2/conf.d/apache2-manual.conf r, owner /etc/apache2/conf.d/mod_perl.conf r, owner /etc/apache2/conf.d/php5.conf r, owner /etc/apache2/default-server.conf r, owner /etc/apache2/errors.conf r, owner /etc/apache2/httpd.conf r, owner /etc/apache2/listen.conf r, owner /etc/apache2/mod_autoindex-defaults.conf r, owner /etc/apache2/mod_info.conf r, owner /etc/apache2/mod_log_config.conf r, owner /etc/apache2/mod_mime-defaults.conf r, owner /etc/apache2/mod_perl-startup.pl r, owner /etc/apache2/mod_status.conf r, owner /etc/apache2/mod_userdir.conf r, owner /etc/apache2/mod_usertrack.conf r, owner /etc/apache2/server-tuning.conf r, owner /etc/apache2/ssl-global.conf r, owner /etc/apache2/sysconfig.d/global.conf r, owner /etc/apache2/sysconfig.d/include.conf r, owner /etc/apache2/sysconfig.d/loadmodule.conf r, owner /etc/apache2/uid.conf r, owner /etc/apache2/vhosts.d/ r, owner /etc/apache2/vhosts.d/download-drivers.ru.conf r, owner /etc/mime.types r, owner /etc/nsswitch.conf r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/sqlite3.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/zip.ini r, owner /etc/php5/conf.d/zlib.ini r, owner /etc/services r, /proc//attr/current w, owner /tmp/apr-tmp.JtmIIs rw, owner /tmp/apr-tmp.SjnN8N rw, owner /tmp/apr-tmp.a2ZgsQ rw, owner /usr/lib/* m, /usr/lib/ r, owner /usr/lib64/ m, /usr/lib64/** r, owner /var/lib/php5/session_mm_apache2handler0.sem rwk, owner /var/log/apache2/access_log w, owner /var/log/apache2/error_log w, owner /var/run/httpd2.pid w, ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	about 1 year ago		73	neologic	Edit	History
opensuse11.0	/mnt/temp/drive_c/Program Files/Electronic Arts/The Sims 3/Game/Bin/TS3.exe	#include <tunables/global> profile "/mnt/temp/drive_c/Program Files/Electronic Arts/The Sims 3/Game/Bin/TS3.exe" flags=(complain) { #include <abstractions/base> }	over 2 years ago	the sims	124	rave	Edit	History
opensuse11.0	/usr/sbin/traceroute	#include <tunables/global> /usr/sbin/traceroute { #include <abstractions/base> }	over 2 years ago		202	stu	Edit	History
opensuse10.3	/home/dominic/bin/myls	#include <tunables/global> /home/dominic/bin/myls { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, /home/dominic/ r, /home/dominic/**/ r, /home/dominic/bin/myls mr, /proc/meminfo r, }	over 4 years ago	Testing	191	dominic	Edit	History
opensuse10.3	/usr/bin/xrdb	#include <tunables/global> /usr/bin/xrdb { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/X11/Xresources r, /home//.Xauthority r, /home//.Xdefaults r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/cpp-4.2 ixr, /usr/bin/xrdb mr, /usr/lib/gcc/i586-suse-linux/4.2.1/cc1 ixr, /usr/lib/gcc/i586-suse-linux/4.2.1/collect2 ixr, /var/lib/gdm/* r, /var/lib/xdm/authdir/authfiles/* r, }	over 4 years ago	none	154	cinimod	Edit	History
opensuse10.3	/usr/lib/ssh/x11-ssh-askpass	#include <tunables/global> /usr/lib/ssh/x11-ssh-askpass { #include <abstractions/base> /usr/lib/ssh/x11-ssh-askpass mr, }	over 4 years ago	Import of jmichaels profiles	275	dominic	Edit	History
opensuse11.0	/usr/bin/banshee-1	#include <tunables/global> /usr/bin/banshee-1 { #include <abstractions/base> /usr/bin/env ix, }	9 months ago		30	AlexDudko	Edit	History
opensuse11.0	/usr/sbin/privoxy	#include <tunables/global> /usr/sbin/privoxy flags=(complain) { #include <abstractions/base> }	about 1 year ago	09/08/10	37	roberts	Edit	History
opensuse11.0	/usr/bin/mysql	#include <tunables/global> /usr/bin/mysql flags=(complain) { #include <abstractions/base> capability dac_override, /etc/my.cnf r, owner /usr/bin/mysql r, owner /usr/share/mysql/charsets/Index.xml r, /var/lib/mysql/.protected/mysql.sock w, owner /var/run/nscd/services r, owner /var/run/nscd/socket w, }	over 3 years ago	mysql_log	204	snowmannishboy	Edit	History
opensuse10.3	/usr/bin/acroread	#include <tunables/global> /usr/bin/acroread flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/basename Px, /bin/bash ixr, /bin/cat ixr, /bin/grep ixr, /bin/ls ixmr, /bin/pwd ixr, /bin/sed ixr, /bin/uname Px, /home//.adobe/* w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/ldconfig Px, /usr/bin/acroread mr, /usr/bin/dirname ixr, /usr/bin/expr ixr, /usr/bin/gconftool-2 Px, /usr/lib/Acrobat7/Reader/intellinux/bin/acroread Px, }	over 4 years ago		256	overwrite	Edit	History
opensuse10.3	/usr/lib64/firefox/firefox-bin	#include <tunables/global> /usr/lib64/firefox/firefox-bin flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash ixr, /bin/grep ixr, /bin/netstat ixr, /bin/ps ixr, /bin/uname ixr, /etc/esd.conf r, /etc/gai.conf r, /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/desktop/ r, /etc/gconf/gconf.xml.schemas/desktop/gnome/ r, /etc/gconf/gconf.xml.schemas/desktop/gnome/interface/%gconf.xml r, /etc/gconf/gconf.xml.schemas/desktop/gnome/sound/%gconf.xml r, /etc/gconf/gconf.xml.schemas/schemas/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/interface/%gconf.xml r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/sound/%gconf.xml r, /etc/gnome-vfs-2.0/modules/ r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.adobe/Flash_Player/AssetCache/ r, /home//.beagle/ToIndex/* w, /home//.config/qtcurve.gtk-colors rw, /home//.config/qtcurve.gtk-icons rw, /home//.config/qtcurvestylerc r, /home//.fontconfig/47b81732da0f02407db006f2550237c2-x86-64.cache-2 r, /home//.fontconfig/d35b326329d1d49bdbe169c31d59d502-x86-64.cache-2 r, /home//.fonts.conf r, /home//.gconf/ r, /home//.gconf/.testing.writeability w, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /home//.gnome2_private/ w, /home//.google/custombuttons/ r, /home//.kde/share/config/gtkrc-2.0 r, /home//.kde/share/config/gtkrc-qtc rw, /home//.kde/share/config/kdeglobals r, /home//.local/share/applications/ r, /home//.macromedia/Flash_Player/#SharedObjects/ r, /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol r, /home//.mailcap r, /home//.mozilla/firefox/pluginreg.dat rw, /home//.mozilla/firefox/plugins/ r, /home//.mozilla/firefox/profiles.ini r, /home//.mozilla/firefox/r33mdq18.default/ r, /home//.mozilla/firefox/r33mdq18.default/* krw, /home//.mozilla/firefox/wls11sam.default/* krw, /home//.mozilla/firefox/wls11sam.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/* r, /home//.mozilla/firefox/wls11sam.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}// r, /home//.mozilla/firefox/wls11sam.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/chrome.manifest r, /home//.mozilla/firefox/wls11sam.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/defaults/parser.js r, /home//.mozilla/firefox/wls11sam.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/defaults/preferences/ r, /home//.qt/qtrc r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/kate.desktop r, /opt/kde3/share/applications/kde/kwrite.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /proc/ r, /proc//cmdline r, /proc//maps r, /proc//stat r, /proc//status r, /proc/cpuinfo r, /proc/meminfo r, /proc/net/ r, /proc/net/dev r, /proc/net/if_inet6 r, /proc/net/unix r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, /tmp/gconfd-n5/lock/* klrw, /usr/bin/emacs ixr, /usr/bin/linux32 ixr, /usr/bin/which ixr, /usr/lib/GConf/2/gconfd-2 ixr, /usr/lib/nspluginwrapper/i386/linux/npviewer ixr, /usr/lib/nspluginwrapper/i386/linux/npviewer.bin ixr, /usr/lib64/** mr, /usr/share/applications/ r, /usr/share/applications/emacs.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/locale-bundle/nb/LC_MESSAGES/* r, /usr/share/mime/application/* r, /usr/share/mime/text/x-dtd.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, /var/run/dbus/system_bus_socket w, /var/tmp/ rw, }	over 4 years ago	firefox2	170	wildhair	Edit	History
opensuse10.3	/sbin/modprobe	#include <tunables/global> /sbin/modprobe { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability net_raw, capability sys_module, /bin/bash ixr, /bin/true ixr, /etc/modprobe.conf r, /etc/modprobe.conf.local r, /etc/modprobe.d/ r, /etc/modprobe.d/* r, /lib/modules/*.ko krw, /lib/modules//modules.alias r, /lib/modules/*/modules.dep r, /proc/meminfo r, /proc/modules r, /sbin/modprobe ixr, }	over 4 years ago	none	281	cinimod	Edit	History
opensuse11.0	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld { #include <abstractions/base> }	about 1 year ago		44	neologic	Edit	History
opensuse11.0	/usr/sbin/traceroute	#include <tunables/global> /usr/sbin/traceroute { #include <abstractions/base> #include <abstractions/nameservice> /usr/sbin/traceroute r, }	over 2 years ago		213	xxxx	Edit	History
opensuse11.0	/usr/local/apache2/bin/httpd	#include <tunables/global> /usr/local/apache2/bin/httpd flags=(complain) { #include <abstractions/base> /etc/gai.conf r, /usr/local/apache2/conf/httpd.conf r, ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	over 2 years ago		220	Stasio	Edit	History
opensuse10.3	/usr/bin/cpp-4.2	#include <tunables/global> /usr/bin/cpp-4.2 flags=(complain) { #include <abstractions/base> /usr/bin/cpp-4.2 mr, }	over 4 years ago		151	arclyde	Edit	History
opensuse10.3	/etc/gdm/Xsession	#include <tunables/global> /etc/gdm/Xsession { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/X11/xdm/Xsession Px, /etc/gdm/Xsession mr, /proc/meminfo r, }	over 4 years ago	Import of jmichaels profiles	272	dominic	Edit	History
opensuse10.3	/usr/bin/xrdb	#include <tunables/global> /usr/bin/xrdb { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/X11/Xresources r, /home//.Xauthority r, /home//.Xdefaults r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/cpp-4.2 ixr, /usr/bin/xrdb mr, /usr/lib/gcc/i586-suse-linux/4.2.1/cc1 ixr, /usr/lib/gcc/i586-suse-linux/4.2.1/collect2 ixr, /var/lib/gdm/* r, }	over 4 years ago	Import of jmichaels profiles	162	dominic	Edit	History
opensuse10.3	/usr/lib/beagle/beagled-index-helper	#include <tunables/global> /usr/lib/beagle/beagled-index-helper { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /etc/mono/2.0/machine.config r, /etc/mono/config r, /home// rw, /home//.beagle/** krw, /home//.local/share/mime/mime.cache mr, /home//.wapi/shared_data-* mrw, /home//.wapi/shared_fileshare- mrw, /home//Desktop/ r, /proc//maps r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/mono ixr, /usr/bin/totem-video-indexer Px, /usr/lib/beagle/.dll mr, /usr/lib/beagle/Filters/.dll mr, /usr/lib/beagle/IndexHelper.exe mr, /usr/lib/beagle/beagled-index-helper mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/**.dll mr, /usr/share/mime/mime.cache mr, /var/tmp/ rw, }	over 4 years ago	none	169	cinimod	Edit	History
opensuse10.3	/usr/lib/ssh/x11-ssh-askpass	#include <tunables/global> /usr/lib/ssh/x11-ssh-askpass { #include <abstractions/base> /usr/lib/ssh/x11-ssh-askpass mr, }	over 4 years ago	none	258	cinimod	Edit	History
opensuse10.3	/usr/bin/gimp-remote-2.2	#include <tunables/global> /usr/bin/gimp-remote-2.2 flags=(complain) { #include <abstractions/base> /usr/bin/gimp-remote-2.2 mr, }	over 4 years ago	argh, switch things back to complain for a while	238	jmichael	Edit	History
opensuse10.3	/usr/bin/gnome-session	#include <tunables/global> /usr/bin/gnome-session flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gnome-2.soundlist r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xdg/autostart/ r, /etc/xdg/autostart/.desktop r, /home// w, /home//.ICEauthority rw, /home//.ICEauthority-c w, /home//.ICEauthority-l lw, /home//.Xauthority r, /home//.config/autostart/ r, /home//.esd_auth rw, /home//.fontconfig/ lrw, /home//.fonts/ r, /home//.gnome2/ w, /home//.gnome2/accels/ w, /home//.gnome2/session r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /usr/bin/beagled Px, /usr/bin/bug-buddy ixr, /usr/bin/compiz Px, /usr/bin/esd Px, /usr/bin/ggreeter Px, /usr/bin/gnome-at-visual Px, /usr/bin/gnome-cups-icon Px, /usr/bin/gnome-keyring-daemon Px, /usr/bin/gnome-panel Px, /usr/bin/gnome-power-manager Px, /usr/bin/gnome-session mr, /usr/bin/gnome-terminal Px, /usr/bin/gnome-volume-manager Px, /usr/bin/gnome-wm Px, /usr/bin/nautilus Px, /usr/bin/nm-applet Px, /usr/bin/opensuse-updater-gnome-applet Px, /usr/lib/GConf/2/gconf-sanity-check-2 Px, /usr/share/dist/splash/dist-splash.png r, /usr/share/gnome/autostart/ r, /usr/share/gnome/autostart/.desktop r, /usr/share/gnome/default.session r, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	261	jmichael	Edit	History
opensuse11.0	/usr/bin/gtk-gnutella	#include <tunables/global> /usr/bin/gtk-gnutella flags=(complain) { #include <abstractions/base> }	over 2 years ago	Default	183	gtk-gnutella	Edit	History
opensuse10.3	/bin/netstat	# $Id: bin.netstat 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # evolution, amongst other things, calls this program. I didn't want to # give evolution access to significant chunks of /proc # #include <tunables/global> /bin/netstat { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, /bin/netstat rmix, /etc/networks r, @{PROC} r, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/fd r, @{PROC}/net r, @{PROC}/net/* r, }	over 4 years ago	lista	177	660o174122	Edit	History
ubuntu-gutsy	/usr/lib/nautilus-cd-burner/mapping-daemon	#include <tunables/global> /usr/lib/nautilus-cd-burner/mapping-daemon { #include <abstractions/base> #include <abstractions/user-tmp> /etc/nsswitch.conf r, /etc/passwd r, /usr/lib/nautilus-cd-burner/mapping-daemon mr, }	over 4 years ago	gnome	296	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java	#include <tunables/global> /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java { #include <abstractions/base> /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java mr, }	over 4 years ago	gnome	288	hbpteam	Edit	History
opensuse10.3	/usr/bin/beagled	#include <tunables/global> /usr/bin/beagled flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /bin/ps Px, /bin/sleep Px, /etc/fstab r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /home/** rw, /home//.beagle/Indexes/.db krw, /home//.beagle/TextCache/TextCache.db krw, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc//status r, /proc/acpi/ac_adapter/AC/state r, /proc/loadavg r, /proc/meminfo r, /proc/stat r, /proc/sys/fs/inotify/max_queued_events r, /proc/sys/fs/inotify/max_user_instances r, /proc/sys/fs/inotify/max_user_watches r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/beagled mr, /usr/bin/mono ixr, /usr/bin/totem-video-indexer Px, /usr/lib/beagle/.dll mr, /usr/lib/beagle/Backends/.dll mr, /usr/lib/beagle/BeagleDaemon.exe mr, /usr/lib/beagle/Filters/.dll mr, /usr/lib/beagle/beagled-index-helper Px, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/**.dll mr, /var/cache/beagle/indexes/ r, /var/cache/beagle/indexes/applications/Locks/ r, /var/cache/beagle/indexes/applications/fingerprint r, /var/cache/beagle/indexes/applications/version r, /var/cache/beagle/indexes/documentation/Locks/ r, /var/cache/beagle/indexes/documentation/fingerprint r, /var/cache/beagle/indexes/documentation/version r, /var/tmp/ rw, }	over 4 years ago	argh, switch things back to complain for a while	280	jmichael	Edit	History
ubuntu-gutsy	/usr/lib/postfix/error	# $Id: usr.lib.postfix.error 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/error { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, /etc/mailname r, /usr/lib/postfix/error rmix, /var/spool/postfix/active/* krw, /var/spool/postfix/etc/* r, /var/spool/postfix/pid/unix.retry krw, /var/spool/postfix/private/defer w, /var/spool/postfix/public/* w, }	over 3 years ago		143	stive	Edit	History
opensuse10.3	/etc/gdm/Xsession	#include <tunables/global> /etc/gdm/Xsession { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/X11/xdm/Xsession Px, /etc/gdm/Xsession mr, /proc/meminfo r, }	over 4 years ago	none	257	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/nvidia> /etc/gai.conf r, /etc/hostname r, /etc/issue r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.kde/share/config/kioslaverc r, /proc/1/cmdline r, /usr/bin/skype mr, /usr/share/skype/* kr, }	over 4 years ago		205	viraptor	Edit	History
ubuntu-gutsy	/usr/bin/devhelp	#include <tunables/global> /usr/bin/devhelp { #include <abstractions/base> /usr/bin/devhelp mr, }	over 4 years ago	gnome	357	hbpteam	Edit	History
opensuse10.3	/usr/lib/beagle/beagled-index-helper	#include <tunables/global> /usr/lib/beagle/beagled-index-helper { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /etc/mono/2.0/machine.config r, /etc/mono/config r, /home// rw, /home//.beagle/** krw, /home//.local/share/mime/mime.cache mr, /home//.wapi/shared_data-* mrw, /home//.wapi/shared_fileshare- mrw, /home//Desktop/ r, /proc//maps r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/mono ixr, /usr/bin/totem-video-indexer Px, /usr/lib/beagle/.dll mr, /usr/lib/beagle/Filters/.dll mr, /usr/lib/beagle/IndexHelper.exe mr, /usr/lib/beagle/beagled-index-helper mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/**.dll mr, /usr/share/mime/mime.cache mr, /var/tmp/ rw, }	over 4 years ago	Import of jmichaels profiles	179	dominic	Edit	History
opensuse10.3	/usr/bin/xmodmap	#include <tunables/global> /usr/bin/xmodmap flags=(complain) { #include <abstractions/X> #include <abstractions/base> /etc/X11/Xmodmap r, /usr/bin/xmodmap mr, /var/lib/gdm/* r, }	over 4 years ago	argh, switch things back to complain for a while	240	jmichael	Edit	History
opensuse11.0	/usr/bin/passwd	# ------------------------------------------------------------------ # # Copyright (C) 2006 Volker Kuhlmann # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/bin/passwd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability sys_resource, /etc/.pwd.lock w, /etc/pwdutils/logging r, /etc/shadow rwl, /etc/shadow.old rwl, /etc/shadow.tmp?????? rwl, owner /proc//mounts r, owner /proc/filesystems r, /usr/bin/passwd mr, /usr/lib/pwdutils/lib.so* mr, /usr/lib64/pwdutils/lib.so mr, /usr/share/cracklib/pw_dict.hwm r, /usr/share/cracklib/pw_dict.pwd r, /usr/share/cracklib/pw_dict.pwi r, }	about 1 year ago		58	temple-ios	Edit	History
opensuse11.0	/usr/sbin/avahi-daemon	#include <tunables/global> /usr/sbin/avahi-daemon flags=(complain) { #include <abstractions/base> }	over 2 years ago		143	caidoberco	Edit	History
opensuse11.0	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin { #include <abstractions/base> #include <abstractions/nameservice> /proc/*/mounts r, /tmp/.X11-unix/X0 w, /usr/bin/pidgin r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20.mo r, }	over 2 years ago	correction for pidgin	113	lasm	Edit	History
opensuse11.0	/usr/bin/xine	#include <tunables/global> /usr/bin/xine { #include <abstractions/base> }	over 3 years ago		204	hexy08	Edit	History
opensuse10.3	/usr/bin/twm	#include <tunables/global> /usr/bin/twm { #include <abstractions/base> /usr/bin/twm mr, }	over 4 years ago	Import of jmichaels profiles	170	dominic	Edit	History
opensuse10.3	/bin/egrep	#include <tunables/global> /bin/egrep flags=(complain) { #include <abstractions/base> /bin/egrep mr, }	over 4 years ago	egrep_changelog	229	security	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /dev/shm/ r, owner /dev/shm/pulse-* rw, /etc/gre.d/ r, /etc/gre.d/.conf r, /etc/kde4/share/* r, /etc/kde4rc r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/pulse/client.conf r, /etc/rpc r, owner /home//.ICEauthority r, owner /home//.config/user-dirs.dirs r, owner /home//.esd_auth r, owner /home//.gnome2/firefox-* w, owner /home//.gtkrc-2.0-kde4 r, owner /home//.icons/ r, owner /home//.kde4/share/* r, owner /home//.local/share/* r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/* rw, owner /home//.mozilla/firefox/.default/.sqlite rwk, owner /home//.mozilla/firefox/.default/.parentlock wk, owner /home//.pulse-cookie rwk, owner /home//Downloads/ w, owner /proc//fd/ r, owner /proc//mounts r, /proc/filesystems r, /usr/lib/nspluginwrapper/x86_64/linux/npwrapper.so mr, /usr/lib64/* mr, owner /usr/lib64/firefox/components/compreg.dat.tmp w, /usr/lib64/firefox/components/compreg.dat.tmp r, owner /usr/lib64/firefox/components/xpti.dat.tmp w, /usr/lib64/firefox/components/xpti.dat.tmp r, owner /usr/lib64/firefox/update.test w, /usr/lib64/firefox/update.test r, owner /usr/lib64/mozilla/ w, /usr/lib64/mozilla/ r, /usr/share/applications/.cache r, /usr/share/applications/.desktop r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/.monitor r, /usr/share/locale-bundle/* r, /usr/share/mime/application/.xml r, /usr/share/mime/text/.xml r, /usr/share/mozilla/extensions/** r, owner "/usr/share/mozilla/extensions//Access Privileges Test/" w, /usr/share/myspell/.aff r, /usr/share/myspell/.dic r, /var/cache/gio-2.0/defaults.list r, /var/lib/dbus/machine-id r, owner /var/run/gdm/auth-for/database r, ^null-d { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gre.d/ r, /etc/gre.d/.conf r, /etc/mailcap r, /etc/mime.types r, owner /home//.ICEauthority r, owner /home//.esd_auth r, owner /home//.fontconfig/* r, owner /home//.icons/ r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/.default/ r, /home//.mozilla/firefox/.default/.db rw, owner /home//.mozilla/firefox/.default/.js rw, owner /home//.mozilla/firefox/.default/.parentlock wk, owner /home//.mozilla/firefox/.default/Cache/ rw, owner /home//.mozilla/firefox/.default/XPC.mfasl rw, owner /home//.mozilla/firefox/.default/XUL.mfasl rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/ rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/.json rw, owner /home//.mozilla/firefox/.default/bookmarks.html rw, owner /home//.mozilla/firefox/.default/chrome/.css rw, owner /home//.mozilla/firefox/.default/compatibility.ini rw, owner /home//.mozilla/firefox/.default/compreg.dat.tmp w, owner /home//.mozilla/firefox/.default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/.default/content-prefs.sqlite-journal rw, owner /home//.mozilla/firefox/.default/cookies.sqlite rwk, owner /home//.mozilla/firefox/.default/cookies.sqlite-journal rw, owner /home//.mozilla/firefox/.default/downloads.sqlite rwk, owner /home//.mozilla/firefox/.default/downloads.sqlite-journal rw, owner /home//.mozilla/firefox/.default/extensions-1.cache rw, owner /home//.mozilla/firefox/.default/extensions-1.ini rw, owner /home//.mozilla/firefox/.default/extensions.cache rw, owner /home//.mozilla/firefox/.default/extensions.ini rw, owner /home//.mozilla/firefox/.default/extensions.rdf rw, owner /home//.mozilla/firefox/.default/extensions/ r, owner /home//.mozilla/firefox/.default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/.default/formhistory.sqlite-journal rw, owner /home//.mozilla/firefox/.default/localstore-1.rdf rw, owner /home//.mozilla/firefox/.default/localstore.rdf rw, owner /home//.mozilla/firefox/.default/lock rw, owner /home//.mozilla/firefox/.default/mimeTypes-1.rdf rw, owner /home//.mozilla/firefox/.default/mimeTypes.rdf rw, owner /home//.mozilla/firefox/.default/permissions.sqlite rwk, owner /home//.mozilla/firefox/.default/permissions.sqlite-journal rw, owner /home//.mozilla/firefox/.default/places.sqlite rwk, owner /home//.mozilla/firefox/.default/places.sqlite-journal rw, owner /home//.mozilla/firefox/.default/pluginreg.dat rw, owner /home//.mozilla/firefox/.default/search.json rw, owner /home//.mozilla/firefox/.default/search.sqlite rwk, owner /home//.mozilla/firefox/.default/search.sqlite-journal rw, owner /home//.mozilla/firefox/.default/signons.sqlite rwk, owner /home//.mozilla/firefox/.default/signons.sqlite-journal rw, owner /home//.mozilla/firefox/.default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/.default/urlclassifier3.sqlite-journal rw, owner /home//.mozilla/firefox/.default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/.default/xpti.dat rw, owner /home//.mozilla/firefox/.default/xpti.dat.tmp rw, owner /home//.mozilla/firefox/profiles.ini rw, owner /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /usr/lib/ mr, /usr/lib64/ mr, /usr/share/applications/mimeinfo.cache r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/gdu.monitor r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/gvfs/remote-volume-monitors/hal.monitor r, /usr/share/locale-bundle/ru/LC_MESSAGES/* r, /usr/share/mime// r, /usr/share/mozilla/extensions/** r, /var/cache/gio-2.0/defaults.list r, owner /var/run/gdm/auth-for*/database r, } }	about 1 year ago	More fixes	82	NthDeGeek	Edit	History
opensuse11.0	/usr/sbin/dnsmasq	#include <tunables/global> /usr/sbin/dnsmasq { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, capability net_bind_service, capability setgid, capability setuid, network dgram, network inet raw, network stream, owner /etc/dnsmasq.conf r, /proc/** r, owner /usr/sbin/dnsmasq r, /var/lib/misc/dnsmasq.leases rw, owner /var/run/dnsmasq.pid r, /var/run/dnsmasq.pid w, }	about 1 year ago		91	cityzen	Edit	History
ubuntu-gutsy	/usr/bin/opera	#include <tunables/global> /usr/bin/opera flags=(complain) { #include <abstractions/base> /bin/dash ix, /usr/bin/opera mr, }	over 4 years ago	Ubuntu Gutsy 7.10 opera profile changes	182	mozg31337	Edit	History
opensuse10.3	/usr/bin/gtk-window-decorator	#include <tunables/global> /usr/bin/gtk-window-decorator flags=(complain) { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /home//.Xauthority r, /home//.fontconfig/* r, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/gtk-window-decorator mr, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	256	jmichael	Edit	History
opensuse10.3	/opt/kde3/bin/amarok	#include <tunables/global> /opt/kde3/bin/amarok flags=(complain) { #include <abstractions/base> /opt/kde3/bin/amarok mr, /opt/kde3/lib/libso mr, }	over 4 years ago		284	voices	Edit	History
opensuse10.3	/etc/gdm/PostLogin/Default	#include <tunables/global> /etc/gdm/PostLogin/Default { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/gdm/PostLogin/Default mr, /proc/meminfo r, }	over 4 years ago	none	253	cinimod	Edit	History
opensuse11.0	/usr/bin/xclock	#include <tunables/global> /usr/bin/xclock { #include <abstractions/base> }	5 months ago		41	usuario	Edit	History
ubuntu-gutsy	/usr/sbin/postgrey	#include <tunables/global> /usr/sbin/postgrey { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> capability chown, capability setgid, capability setuid, /etc/postgrey/* r, /usr/bin/perl ix, /usr/lib/ mr, /usr/sbin/postgrey mr, /usr/share/perl/ r, /usr/share/perl5/** r, /var/lib/postgrey/ r, /var/lib/postgrey/* krw, /var/run/postgrey.pid w, }	over 3 years ago		172	stive	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> /usr/bin/amule mr, }	over 4 years ago	amule	222	Falko_Gehde	Edit	History
opensuse10.3	/bin/uname	#include <tunables/global> /bin/uname flags=(complain) { #include <abstractions/base> /bin/uname mr, /proc/cpuinfo r, }	over 4 years ago		254	overwrite	Edit	History
ubuntu-gutsy	/usr/bin/mkfontscale	#include <tunables/global> /usr/bin/mkfontscale { #include <abstractions/base> /home//.gnome2/share/ r, /home//.gnome2/share/cursor-fonts/ r, /home//.gnome2/share/cursor-fonts/.dir rw, /home//.gnome2/share/fonts/ r, /home/void/.gnome2/share/fonts/* rw, /usr/bin/mkfontscale mr, }	over 4 years ago	gnome	239	hbpteam	Edit	History
opensuse10.3	/usr/bin/twm	#include <tunables/global> /usr/bin/twm { #include <abstractions/base> /usr/bin/foo rwPx, /usr/bin/twm mr, }	over 4 years ago	none	141	cinimod	Edit	History
opensuse10.3	/usr/sbin/iwconfig	#include <tunables/global> /usr/sbin/iwconfig { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, /proc/net/dev r, /usr/sbin/iwconfig mr, }	over 4 years ago	Import of jmichaels profiles	248	dominic	Edit	History
opensuse11.0	/usr/bin/VirtualBox	#include <tunables/global> /usr/bin/VirtualBox flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/VirtualBox r, ^null-11 { /etc/fonts/** r, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/ld.so.cache r, /etc/localtime r, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf rk, owner /home//.fontconfig/912c97adb01af1d6cefde384b6dcb463-x86.cache-2 r, owner /home//.kde4/share/config/kdeglobals rk, /lib/libso mr, /usr/lib/gconv/UTF-.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/kde4/plugins/styles/ r, /usr/lib/kde4/plugins/styles/oxygen.so mr, /usr/lib/libso* mr, /usr/lib/locale/ r, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/X11/locale/ru_RU.UTF-8/XLC_LOCALE r, /usr/share/fonts/ r, /usr/share/icons/Oxygen_White/cursors/left_ptr r, /usr/share/locale/** r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, owner /var/tmp/kdecache-qzoom/kpc/kde-icon-cache.data rw, owner /var/tmp/kdecache-qzoom/kpc/kde-icon-cache.index rw, owner /var/tmp/kdecache-qzoom/kpc/kde-icon-cache.lock.MT5553 w, owner /var/tmp/kdecache-qzoom/kpc/kde-icon-cache.lock.hX5553 w, } ^null-d { /etc/ld.so.cache r, /lib/libso mr, owner /proc//mounts r, /proc/filesystems r, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/* r, /usr/share/locale/** r, } ^null-f { /dev/null w, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/ r, /usr/share/locale/ r, } }	over 2 years ago		202	QzooM	Edit	History
ubuntu-gutsy	/usr/lib/postfix/flush	# $Id: usr.lib.postfix.flush 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/flush { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /etc/mailname r, /etc/mtab r, /etc/postfix/main.cf r, /etc/postfix/virtual.db r, /usr/lib/postfix/flush rmix, /var/spool/postfix/etc/* r, /var/spool/postfix/flush/* krw, /var/spool/postfix/incoming/* w, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]* rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}flush/ rwl, /{var/spool/postfix/,}flush/[0-9A-F]/ rwl, /{var/spool/postfix/,}flush/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}flush/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}pid/unix.flush krw, /{var/spool/postfix/,}public/qmgr w, @{HOME}/.forward r, }	over 3 years ago		193	stive	Edit	History
opensuse10.3	/usr/sbin/xend	#include <tunables/global> /usr/sbin/xend flags=(complain) { #include <abstractions/base> /usr/bin/env ix, /usr/sbin/xend mr, }	over 4 years ago	xend-jester	268	security	Edit	History
opensuse10.3	/etc/gdm/PostLogin/Default	#include <tunables/global> /etc/gdm/PostLogin/Default { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/gdm/PostLogin/Default mr, /proc/meminfo r, }	over 4 years ago	Import of jmichaels profiles	303	dominic	Edit	History
ubuntu-gutsy	/usr/bin/skychart	#include <tunables/global> /usr/bin/skychart flags=(complain) { #include <abstractions/base> Ux, /tmp/upxAGWXKGYALSQ Uxrw, /tmp/upxBLFO3MBALNH Pxrw, /usr/bin/skychart mr, }	over 4 years ago		231	larsthegeek	Edit	History
opensuse11.0	/home/dabin/Desktop/hello	#include <tunables/global> /home/dabin/Desktop/hello flags=(complain) { #include <abstractions/base> /home/dabin/Desktop/hello r, }	17 days ago		4	dabin	Edit	History
opensuse11.0	/usr/sbin/sshd	# $Id: usr.sbin.sshd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # will need to revalidate this profile once we finish re-architecting # the change_hat patch. # #include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_tty_config, /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/environment r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/modules.conf r, /etc/motd r, /etc/ssh/* r, /etc/ssh/moduli r, /sbin/nologin Ux, /tmp/ssh-/agent.[0-9] rwl, /tmp/ssh-[0-9]/ w, /usr/sbin/sshd mrix, /var/run w, /var/run/sshd{,.init}.pid wl, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]/fd/ r, @{PROC}/[0-9]/loginuid w, @{PROC}/[0-9]/mounts r, ^AUTHENTICATED flags=(complain) { #include <abstractions/authentication> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability setgid, capability setuid, capability sys_tty_config, /dev/log w, /dev/ptmx rw, /etc/default/passwd r, /etc/localtime r, /etc/login.defs r, /etc/motd r, /tmp/ssh-/agent.[0-9]* rwl, /tmp/ssh-[0-9]/ w, } ^EXEC flags=(complain) { #include <abstractions/base> /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /sbin/nologin Ux, } ^PRIVSEP flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, } ^PRIVSEP_MONITOR flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability setgid, capability setuid, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ssh/moduli r, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]*/mounts r, } }	about 1 year ago		68	temple-ios	Edit	History
opensuse11.0	/usr/local/sbbs/src/sbbs3/gcc.linux.exe.release/sbbs	#include <tunables/global> /usr/local/sbbs/src/sbbs3/gcc.linux.exe.release/sbbs flags=(complain) { #include <abstractions/base> owner /usr/local/sbbs/ctrl/dsts.dab rwk, owner /usr/local/sbbs/ctrl/node.dab rwk, owner /usr/local/sbbs/data/ r, owner /usr/local/sbbs/data/file/ r, owner /usr/local/sbbs/data/logs/062210.log wk, owner /usr/local/sbbs/data/mail.shd rwk, owner /usr/local/sbbs/data/qnet/ r, owner /usr/local/sbbs/data/user/name.dat r, owner /usr/local/sbbs/data/user/user.dat rwk, owner /usr/local/sbbs/exec/ r, owner /usr/local/sbbs/exec/load/nodedefs.js r, owner /usr/local/sbbs/exec/load/sbbsdefs.js r, owner /usr/local/sbbs/exec/login.js r, /usr/local/sbbs/lib/mozilla/nspr/linux.release/libnspr*.so mr, owner /usr/local/sbbs/mods/ r, owner /usr/local/sbbs/node1/dsts.dab rwk, owner /usr/local/sbbs/node1/node.log rw, }	about 1 year ago	sbbs4	84	kmatthew	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago		104	lpg	Edit	History
opensuse11.0	/sbin/rpcbind	#include <tunables/global> /sbin/rpcbind flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, owner /etc/hosts.allow r, owner /etc/hosts.deny r, owner /etc/netconfig r, owner /var/run/rpcbind.lock ak, owner /var/run/rpcbind.sock w, }	over 2 years ago	/var/log/rsyslogd	143	virtualjack	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		249	jerry	Edit	History
opensuse11.0	/usr/bin/expr	#include <tunables/global> /usr/bin/expr { #include <abstractions/base> }	over 3 years ago	...	197	knotwurk	Edit	History
opensuse10.3	/usr/bin/metacity	#include <tunables/global> /usr/bin/metacity { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /home//.ICEauthority r, /home//.Xauthority r, /home//.fontconfig/ r, /home//.metacity/sessions/ w, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/metacity mr, }	over 4 years ago	none	225	cinimod	Edit	History
opensuse10.3	/usr/sbin/iwconfig	#include <tunables/global> /usr/sbin/iwconfig { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, /proc/net/dev r, /usr/sbin/iwconfig mr, }	over 4 years ago	none	218	cinimod	Edit	History
ubuntu-gutsy	/bin/uname	#include <tunables/global> /bin/uname { #include <abstractions/base> /bin/uname mr, }	over 3 years ago		170	stive	Edit	History
opensuse11.0	/bin/cat	#include <tunables/global> /bin/cat { #include <abstractions/base> }	over 3 years ago		130	david	Edit	History
opensuse10.3	/usr/bin/manpath	#include <tunables/global> /usr/bin/manpath flags=(complain) { #include <abstractions/base> /etc/manpath.config r, /usr/bin/manpath mr, }	over 3 years ago		231	arturk	Edit	History
opensuse10.3	/usr/sbin/cupsd	#include <tunables/global> /usr/sbin/cupsd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> capability chown, capability dac_override, capability fsetid, capability net_bind_service, network inet dgram, network inet stream, network inet6 dgram, network inet6 stream, /etc/cups/ r, /etc/cups/* r, /etc/printcap w, /proc/net/ r, /proc/net/unix r, /usr/lib/cups/notifier/ r, /usr/sbin/cupsd mr, /usr/share/cups/** r, /var/cache/cups/job.cache rw, /var/cache/cups/remote.cache rw, /var/log/cups/access_log rw, /var/log/cups/error_log rw, /var/run/cups/certs/* w, /var/run/cups/cups.sock w, /var/run/nscd/services r, /var/spool/cups/tmp/ r, }	over 4 years ago		267	sebastian	Edit	History
ubuntu-gutsy	/usr/lib/notification-daemon/notification-daemon	#include <tunables/global> /usr/lib/notification-daemon/notification-daemon flags=(complain) { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home//.Xauthority r, /home//.icons/ r, /proc/meminfo r, /usr/lib/** mr, /usr/local/share/icons/ r, }	over 4 years ago	gnome	293	hbpteam	Edit	History
opensuse10.3	/usr/lib/AntiVir/antivir-gui	#include <tunables/global> /usr/lib/AntiVir/antivir-gui { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/AntiVir/antivir-gui mr, }	over 4 years ago	ChangeLog	274	tdanisi	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash rix, /bin/grep rix, /bin/ps rix, /dev/shm/ r, owner /dev/shm/pulse-* rw, /dev/tty rw, /etc/gre.d/ r, /etc/gre.d/.conf r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pulse/client.conf r, /etc/rpc r, owner /home//.ICEauthority r, owner /home//.adobe/Flash_Player/AssetCache/ r, owner /home//.config/user-dirs.dirs r, owner /home//.esd_auth r, owner /home//.fontconfig/4b1c7ef46443a6791ad5396a20b2729f-le32d4.cache-3 r, owner /home//.fonts.conf r, owner /home//.icons/ r, owner /home//.local/share/applications/defaults.list r, owner /home//.local/share/applications/mimeinfo.cache r, owner /home//.local/share/icons/ r, owner /home//.local/share/icons/hicolor/16x16/apps/ r, owner /home//.local/share/icons/hicolor/24x24/apps/ r, owner /home//.local/share/icons/hicolor/32x32/apps/ r, owner /home//.local/share/icons/hicolor/48x48/apps/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.macromedia/Flash_Player/#SharedObjects/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol r, owner /home//.mailcap r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/ w, owner /home//.mozilla/firefox/.default/ r, owner /home//.mozilla/firefox/.default/.bak rw, owner /home//.mozilla/firefox/.default/.cache rw, owner /home//.mozilla/firefox/.default/.dat rw, owner /home//.mozilla/firefox/.default/.db rw, owner /home//.mozilla/firefox/.default/.ini w, owner /home//.mozilla/firefox/.default/.js rw, owner /home//.mozilla/firefox/.default/.json rw, owner /home//.mozilla/firefox/.default/.mfasl rw, owner /home//.mozilla/firefox/.default/.rdf rw, owner /home//.mozilla/firefox/.default/.sqlite rwk, owner /home//.mozilla/firefox/.default/.sqlite-journal rw, owner /home//.mozilla/firefox/.default/.tmp rw, owner /home//.mozilla/firefox/.default/.txt rw, owner /home//.mozilla/firefox/.default/.autoreg rw, owner /home//.mozilla/firefox/.default/.parentlock wk, owner /home//.mozilla/firefox/.default/Cache.Trash/ rw, owner /home//.mozilla/firefox/.default/Cache.Trash/* rw, owner /home//.mozilla/firefox/.default/Cache.Trash/*/ rw, owner /home//.mozilla/firefox/.default/Cache/ rw, owner /home//.mozilla/firefox/.default/Cache/ rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/ r, owner /home//.mozilla/firefox/.default/bookmarkbackups/.json rw, owner /home//.mozilla/firefox/.default/compatibility.ini rw, owner /home//.mozilla/firefox/.default/extensions.ini rw, owner /home//.mozilla/firefox/.default/extensions.log rw, owner /home//.mozilla/firefox/.default/extensions/ r, owner /home//.mozilla/firefox/.default/lock w, owner "/home//.mozilla/firefox/Crash Reports/InstallTime2011061300" r, owner /home//.mozilla/firefox/profiles.ini rw, owner /home//.mozilla/firefox/r3wrznvh.default/adblockplus/cache.js r, owner /home//.mozilla/firefox/r3wrznvh.default/adblockplus/elemhide.css r, owner /home//.mozilla/firefox/r3wrznvh.default/adblockplus/patterns.ini r, owner /home//.mozilla/firefox/r3wrznvh.default/blocklist.xml r, owner /home//.mozilla/firefox/r3wrznvh.default/cookies.sqlite-shm rwk, owner /home//.mozilla/firefox/r3wrznvh.default/cookies.sqlite-wal rw, owner /home//.mozilla/firefox/r3wrznvh.default/cshelper.cfg r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a\}/chrome.manifest r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a\}/chrome/livehttpheaders.jar r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a\}/defaults/preferences/ r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a\}/defaults/preferences/prefs.js r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/chrome.manifest r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/chrome/dwhelper.jar r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhIContextItem.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhIConversionListener.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhIConvertMgr.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhICore.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhIDownloadListener.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhIProbe.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhIProcessor.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhIScapMgr.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/components/dhISmartNamer.xpt r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/defaults/preferences/ r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{b9db16a4-6edc-47ec-a1f4-b86292ed211d\}/defaults/preferences/prefs-dwhelper.js r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome.manifest r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/adblockplus.jar r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, owner /home//.mozilla/firefox/r3wrznvh.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/adblockplus.js r, owner /home//.mozilla/plugins/ r, owner /home//.pulse-cookie rwk, owner /home//Downloads/ w, /opt/kde3/share/applications/kde/kaffeine.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, /proc/ r, /proc//cmdline r, owner /proc//fd/ r, owner /proc//mounts r, /proc//stat r, /proc//status r, /proc/cpuinfo r, /proc/filesystems r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, /usr/bin/setarch rix, /usr/lib/nspluginwrapper/i386/linux/npviewer rix, /usr/lib/nspluginwrapper/i386/linux/npviewer.bin rix, /usr/lib/nspluginwrapper/x86_64/linux/npwrapper.so mr, /usr/lib64/* mr, owner /usr/lib64/firefox/components/compreg.dat.tmp w, /usr/lib64/firefox/components/compreg.dat.tmp r, owner /usr/lib64/firefox/components/xpti.dat.tmp w, /usr/lib64/firefox/components/xpti.dat.tmp r, owner /usr/lib64/firefox/update.test w, /usr/lib64/firefox/update.test r, owner /usr/lib64/mozilla/ w, /usr/lib64/mozilla/ r, /usr/share/applications/.cache r, /usr/share/applications/.desktop r, /usr/share/applications/kde4/okularApplication_pdf.desktop r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/.monitor r, /usr/share/locale-bundle/de/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/locale-bundle/ru/LC_MESSAGES/ r, /usr/share/mime/application/.xml r, /usr/share/mime/audio/x-pn-realaudio-plugin.xml r, /usr/share/mime/text/.xml r, /usr/share/mime/video/x-ms-wmp.xml r, /usr/share/mozilla/extensions/** r, owner "/usr/share/mozilla/extensions//Access Privileges Test/" w, /usr/share/myspell/.aff r, /usr/share/myspell/.dic r, /var/cache/gio-2.0/defaults.list r, /var/lib/dbus/machine-id r, owner /var/run/gdm/auth-for/database r, ^null-d flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gre.d/ r, /etc/gre.d/.conf r, /etc/mailcap r, /etc/mime.types r, owner /home//.ICEauthority r, owner /home//.esd_auth r, owner /home//.fontconfig/* r, owner /home//.icons/ r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/.default/ r, /home//.mozilla/firefox/.default/.db rw, owner /home//.mozilla/firefox/.default/.js rw, owner /home//.mozilla/firefox/.default/.parentlock wk, owner /home//.mozilla/firefox/.default/Cache/ rw, owner /home//.mozilla/firefox/.default/XPC.mfasl rw, owner /home//.mozilla/firefox/.default/XUL.mfasl rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/ rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/.json rw, owner /home//.mozilla/firefox/.default/bookmarks.html rw, owner /home//.mozilla/firefox/.default/chrome/.css rw, owner /home//.mozilla/firefox/.default/compatibility.ini rw, owner /home//.mozilla/firefox/.default/compreg.dat.tmp w, owner /home//.mozilla/firefox/.default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/.default/content-prefs.sqlite-journal rw, owner /home//.mozilla/firefox/.default/cookies.sqlite rwk, owner /home//.mozilla/firefox/.default/cookies.sqlite-journal rw, owner /home//.mozilla/firefox/.default/downloads.sqlite rwk, owner /home//.mozilla/firefox/.default/downloads.sqlite-journal rw, owner /home//.mozilla/firefox/.default/extensions-1.cache rw, owner /home//.mozilla/firefox/.default/extensions-1.ini rw, owner /home//.mozilla/firefox/.default/extensions.cache rw, owner /home//.mozilla/firefox/.default/extensions.ini rw, owner /home//.mozilla/firefox/.default/extensions.rdf rw, owner /home//.mozilla/firefox/.default/extensions/ r, owner /home//.mozilla/firefox/.default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/.default/formhistory.sqlite-journal rw, owner /home//.mozilla/firefox/.default/localstore-1.rdf rw, owner /home//.mozilla/firefox/.default/localstore.rdf rw, owner /home//.mozilla/firefox/.default/lock rw, owner /home//.mozilla/firefox/.default/mimeTypes-1.rdf rw, owner /home//.mozilla/firefox/.default/mimeTypes.rdf rw, owner /home//.mozilla/firefox/.default/permissions.sqlite rwk, owner /home//.mozilla/firefox/.default/permissions.sqlite-journal rw, owner /home//.mozilla/firefox/.default/places.sqlite rwk, owner /home//.mozilla/firefox/.default/places.sqlite-journal rw, owner /home//.mozilla/firefox/.default/pluginreg.dat rw, owner /home//.mozilla/firefox/.default/search.json rw, owner /home//.mozilla/firefox/.default/search.sqlite rwk, owner /home//.mozilla/firefox/.default/search.sqlite-journal rw, owner /home//.mozilla/firefox/.default/signons.sqlite rwk, owner /home//.mozilla/firefox/.default/signons.sqlite-journal rw, owner /home//.mozilla/firefox/.default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/.default/urlclassifier3.sqlite-journal rw, owner /home//.mozilla/firefox/.default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/.default/xpti.dat rw, owner /home//.mozilla/firefox/.default/xpti.dat.tmp rw, owner /home//.mozilla/firefox/profiles.ini rw, owner /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /usr/lib/ mr, /usr/lib64/ mr, /usr/share/applications/mimeinfo.cache r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/gdu.monitor r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/gvfs/remote-volume-monitors/hal.monitor r, /usr/share/locale-bundle/ru/LC_MESSAGES/* r, /usr/share/mime// r, /usr/share/mozilla/extensions/** r, /var/cache/gio-2.0/defaults.list r, owner /var/run/gdm/auth-for*/database r, } }	9 months ago	firefox	46	michivbs	Edit	History
opensuse11.0	/usr/share/amsn/amsn	#include <tunables/global> /usr/share/amsn/amsn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /dev/tty rw, /usr/share/amsn/amsn r, ^null-3f { /dev/snd/controlC0 r, /dev/urandom r, /etc/fonts/** r, /etc/gai.conf r, /etc/ld.so.cache r, /etc/localtime r, /etc/resolv.conf r, owner /home//.amsn/plugins/ r, owner /home//.amsn/plugins/actionsmenu/plugininfo.xml r, owner /home//.amsn/plugins/amsnplus/plugininfo.xml r, owner /home//.amsn/plugins/tls1.50/pkgIndex.tcl r, owner /home//.amsn/plugins/tls1.50/tls.tcl r, owner /home//.amsn/plugins/userstatus/plugininfo.xml r, owner /home//.amsn/profiles rw, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/asa_v@hotmail.com/36d6a434a4a65565a4b2871376532455a65345c645f414f66494f6d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/axell55@live.nl/b294c687a615e69466f2b20514555796147784670564a6c4471476d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/biostar_@hotmail.com/7413e6a753c415566317b415469657566617b6f6e62785873427d4d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/boem12@live.nl/35437655276646a6f6534423f28677a43683635447839594050754d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/boy20jr20@hotmail.com/b464075475734575658743578765f4f696632473f60314e6546695d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/chuckie12978@hotmail.com/076455140705265447a71497b497962356a737233456b444e45495d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/dan_mr155@hotmail.com/75c696a4a73534a6130703b293b224f4b4f6b43534f23684b4d4b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/eenbra@hotmail.com/d4153546e4b275d6b6e665f6f465a7f6377573c425c45586961483d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/everlastboksbroek@hotmail.com/f25374961655074534c47305e645c6d447b494665683c6e44453f6d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/fawaka_man@msn.com/8454c6a5f233867617c667533597f45486d6146713d6b2a7965583d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/geile-34@live.nl/73039666053475b697961476458724171707b46505f26386870303d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/geiledennis01@live.nl/97d47685b4a72613b243e656e44783974503c645f4848577b63677d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/groningenm23@hotmail.com/d61503966497f297964503b6a5b455057327d653f6e44516569336d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/i.shotmyself@hotmail.com/a544f626f237e67314f4c41737954617f687f426a64665f2e41794d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/igosven@hotmail.com/e64323548734954353861597a797a5339314347316a5d60533a683d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/j_almere@hotmail.com/6474845716c4a5b22424a4e6a7031314f4e46307576505b6344395d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/j_almere@live.nl/75a69413b433c417859405274467935543a55765a6b68614342376d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/joepie21@hotmail.com/15b40775f4356674157543e6076755272423657324336615737376d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/jojofraja@hotmail.com/a65455f4f6a673961344a5474433a4778664437775a6d647b69755d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/jordypolder@live.nl/8773447626a6944467b447a6a6e456b24444542417474695c4b494d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/leuk0040@hotmail.com/a47643f415a414535447355735f4363477440346364453c66666b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/meindertdekok220@hotmail.com/a544f626f237e67314f4c41737954617f687f426a64665f2e41794d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/neukkont@hotmail.com/15533526536315171795a54615f285469345a5e4868646d635a436d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/richardmailonline@hotmail.com/b634e4246594744566558327b62566c634f4445787c6b23603f236d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/sboy19@hotmail.com/3534a51305379703851373c6b6836395a5b66573a497d485a68595d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/sexkleinzoon@hotmail.com/d434246407244436943596c6f446a6b21425f2f26745659694e6b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/underwearf@hotmail.com/348766c6a766975727761773a427a41527a6747684867383b223b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/cache/vfqr2003@yahoo.com/a66366a4157774147733055754c49643033593f6a5351365f46477d3.png r, owner /home//.amsn/tuxje_gmx_ch/displaypic/tux02.png r, owner /home//.amsn/tuxje_gmx_ch/plugins.xml rw, owner /home//.amsn/tuxje_gmx_ch/smileys/0366f46576f2547536053393e644a63484d4151735343755468477d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/03f496d62637373324c4e4660576c4f4548584c487242323b464f6d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/056594e68646740714242793976464a677f2a7f6431357a7237654d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/145796f247674463b4b2652614b2c65414a517c4c4471456f4c443d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/15c644f64386a4b67743d617852313241307a494d455c625e46703d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/162773f636c413e407f6b21354855464367746b276f667c405b654d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/17630386661385142637a5351767b69376c4d6052643a52485b415d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/24e4c65537b475f6d4234464e65333231597f24567c68577d4e494d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/25c696868566136396c6f4968645953623f63583647705d4862603d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/26277313a4a656059333f68617b4073733453326967317a4050336d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/26c6f6272387a74633779644836663374556737354d45427253314d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/27f2c655037423f2477496a6e627a5262596e43624a46407a6e483d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/35b4334644466685c6150353e673b684448773d4a43553a40564b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/372545738663436456853707364573332315962437541377146743d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/4313e665f25403f69664263724235376b2c6355414a437d4079443d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/4346b2c4752346d66367f65426d6d4846647165643834366d6f494d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/4517463785b22426162717760794e6853654a59713638425563514d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/4723d6942343879673f2a77747e4a4b4e69634f287848777368776d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/54962637a6c483c427e4965414b276442775d48363870323831636d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/5763e6875776a56666454685b25317742405f4178736d6471453f6d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/579337c64305e435b2554455d6671717e684f65714641727f666d4d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/6316f21714e657a637b6978793a725c4f2c4131713546434374495d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/655797842525d6a7748624a775a7f6f4433626a634752735762615d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/657717c497f66645b25783333705e6c45407b413457337732363d4d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/66243616133573075646179517676796e6a7d613b253447633d477d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/6644d61327b226f6949393154354f4f6d667d69503745365571376d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/6737839437253446b416635464864393b43417a514875674b26715d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/676775c43646c61455f294367327b6137753b60333767635669643d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/734327278485375696972603763405635705774533074436230394d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/73772317862503a794077303e436a65617334663d6648354650343d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/74844426b4b426d68537174464c673356656a78387a6c49477f683d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/77c6855445659663768546c62695572474c4e484945305e62505f6d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/77f4760746f4740527456577978495e6b6e6263305a4a4a7654615d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/83b4774487a49623846773468454a6b2c445232483b24643744383d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/85e487542384f4f6e6441675a565671446571794d6531336442577d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/86277777b62733975515c6471447758437954407649655175754d4d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/86738484347453b467a693678315032775f203675675f2b6156703d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/87d435c69476d487356397361397b675c6244376a666a725438603d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/9364577656471775650715a5a61366675325935736f2b257a7a477d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/9423545543c4362324454407856536b403b6a58754560337332315d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/953787a584a6772456b666869584a4f627d4a784c473d6252727f6d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/96355726e624b647f60554b4f2e416a6553675346324361583a4b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/96979483579626772326442727c6f46385f445c4d6f4131533b4b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/973796743403a6c446859587d4860366a72793e686b47526637503d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/b24695663707d405960735038573f4b25764938346654413343437d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/b6c4777313037444737697d6364465364623d49664851553452303d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/c60393b435255653f41756f2470773668323d6b6d6838337b4a503d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/d414f47744436585473307f2073507550745949643035666578403d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/d6b624b236141735355723f485a545f646a5e484d4636583869714d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/f253c4a5651463d626e414d48687e617a6a5058433f2b2a7269577d3.png r, owner /home//.amsn/tuxje_gmx_ch/smileys/f2b62764269775056763c4a42494c6f42785f637932715d65727b6d3.png r, owner /home//.amsn/tuxje_gmx_ch/states.xml r, owner /home//.fontconfig/bf83a1c92498945d72478f206640c407-le32d4.cache-3 r, owner /home//.fonts.conf r, owner /home//.fonts/arial.ttf r, owner /home//.fonts/helr45w.ttf r, owner /home//.fonts/helr46w.ttf r, owner /home//.fonts/helr65w.ttf r, owner /home//.fonts/helr66w.ttf r, owner /home/fre/.Xauthority r, owner /home/fre/.amsn/gconfig.xml rw, owner /home/fre/.amsn/langlist.xml r, owner /home/fre/.amsn/plugins/tls1.50/libtls-.so mr, owner /home/fre/.amsn/tuxje_gmx_ch/abook.xml rw, owner /home/fre/.amsn/tuxje_gmx_ch/config.xml rw, owner /home/fre/.amsn/tuxje_gmx_ch/config.xml.temp rw, owner /home/fre/.amsn/tuxje_gmx_ch/displaypic/cache/akodi@live.nl/5693b213b44474851547f675663403434353f4a72657335393b203d3.png r, /lib/libso* mr, /proc/filesystems r, /proc/meminfo r, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/lib/tcl/ r, /usr/lib/tcl/Tix8.4.3/pkgIndex.tcl r, /usr/lib/tcl/tcl8.5/ r, /usr/lib/tcl/tcl8.5/auto.tcl r, /usr/lib/tcl/tcl8.5/clock.tcl r, /usr/lib/tcl/tcl8.5/encoding/ r, /usr/lib/tcl/tcl8.5/encoding/ascii.enc r, /usr/lib/tcl/tcl8.5/http1.0/pkgIndex.tcl r, /usr/lib/tcl/tcl8.5/init.tcl r, /usr/lib/tcl/tcl8.5/opt0.4/pkgIndex.tcl r, /usr/lib/tcl/tcl8.5/package.tcl r, /usr/lib/tcl/tcl8.5/tclIndex r, /usr/lib/tcl/tcl8.5/tm.tcl r, /usr/lib/tcl/tcl8/8.3/ r, /usr/lib/tcl/tcl8/8.4/ r, /usr/lib/tcl/tcl8/8.5/ r, /usr/lib/tcl/tcl8/8.5/msgcat-1.4.2.tm r, /usr/lib/tcl/tk8.5/ r, /usr/lib/tcl/tk8.5/button.tcl r, /usr/lib/tcl/tk8.5/comdlg.tcl r, /usr/lib/tcl/tk8.5/entry.tcl r, /usr/lib/tcl/tk8.5/listbox.tcl r, /usr/lib/tcl/tk8.5/menu.tcl r, /usr/lib/tcl/tk8.5/msgs/nl.msg r, /usr/lib/tcl/tk8.5/palette.tcl r, /usr/lib/tcl/tk8.5/panedwindow.tcl r, /usr/lib/tcl/tk8.5/pkgIndex.tcl r, /usr/lib/tcl/tk8.5/scale.tcl r, /usr/lib/tcl/tk8.5/scrlbar.tcl r, /usr/lib/tcl/tk8.5/spinbox.tcl r, /usr/lib/tcl/tk8.5/tclIndex r, /usr/lib/tcl/tk8.5/tearoff.tcl r, /usr/lib/tcl/tk8.5/text.tcl r, /usr/lib/tcl/tk8.5/tk.tcl r, /usr/lib/tcl/tk8.5/tkfbox.tcl r, /usr/lib/tcl/tk8.5/ttk/ r, /usr/lib/tcl/tk8.5/ttk/altTheme.tcl r, /usr/lib/tcl/tk8.5/ttk/button.tcl r, /usr/lib/tcl/tk8.5/ttk/clamTheme.tcl r, /usr/lib/tcl/tk8.5/ttk/classicTheme.tcl r, /usr/lib/tcl/tk8.5/ttk/combobox.tcl r, /usr/lib/tcl/tk8.5/ttk/cursors.tcl r, /usr/lib/tcl/tk8.5/ttk/defaults.tcl r, /usr/lib/tcl/tk8.5/ttk/entry.tcl r, /usr/lib/tcl/tk8.5/ttk/fonts.tcl r, /usr/lib/tcl/tk8.5/ttk/menubutton.tcl r, /usr/lib/tcl/tk8.5/ttk/notebook.tcl r, /usr/lib/tcl/tk8.5/ttk/panedwindow.tcl r, /usr/lib/tcl/tk8.5/ttk/progress.tcl r, /usr/lib/tcl/tk8.5/ttk/scale.tcl r, /usr/lib/tcl/tk8.5/ttk/scrollbar.tcl r, /usr/lib/tcl/tk8.5/ttk/sizegrip.tcl r, /usr/lib/tcl/tk8.5/ttk/treeview.tcl r, /usr/lib/tcl/tk8.5/ttk/ttk.tcl r, /usr/lib/tcl/tk8.5/ttk/utils.tcl r, /usr/lib/tcl/tls1.6/pkgIndex.tcl r, /usr/share/X11/XKeysymDB r, /usr/share/X11/Xcms.txt r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/amsn/BWidget_mods.tcl r, /usr/share/amsn/abook.tcl r, /usr/share/amsn/addressbook.tcl r, /usr/share/amsn/alarm.tcl r, /usr/share/amsn/amsn r, /usr/share/amsn/amsncore.tcl r, /usr/share/amsn/assistant.tcl r, /usr/share/amsn/audio.tcl r, /usr/share/amsn/auth.tcl r, /usr/share/amsn/automsg.tcl r, /usr/share/amsn/autoupdate.tcl r, /usr/share/amsn/balloon.tcl r, /usr/share/amsn/bugs.tcl r, /usr/share/amsn/chatwindow.tcl r, /usr/share/amsn/config.tcl r, /usr/share/amsn/ctthemes.tcl r, /usr/share/amsn/dock.tcl r, /usr/share/amsn/groups.tcl r, /usr/share/amsn/gui.tcl r, /usr/share/amsn/guicontactlist.tcl r, /usr/share/amsn/hotmail.tcl r, /usr/share/amsn/lang.tcl r, /usr/share/amsn/lang/langen r, /usr/share/amsn/lang/langnl r, /usr/share/amsn/login_screen.tcl r, /usr/share/amsn/loging.tcl r, /usr/share/amsn/migmd5.tcl r, /usr/share/amsn/msncam.tcl r, /usr/share/amsn/msngames.tcl r, /usr/share/amsn/msnp2p.tcl r, /usr/share/amsn/mutex.tcl r, /usr/share/amsn/pgu.tcl r, /usr/share/amsn/picture.tcl r, /usr/share/amsn/plugins.tcl r, /usr/share/amsn/plugins/ r, /usr/share/amsn/plugins/ColoredNicks/plugininfo.xml r, /usr/share/amsn/plugins/DBusStateChanger/plugininfo.xml r, /usr/share/amsn/plugins/DualDisplayPicture/plugininfo.xml r, /usr/share/amsn/plugins/FPSstats/plugininfo.xml r, /usr/share/amsn/plugins/Invisibility/plugininfo.xml r, /usr/share/amsn/plugins/Kryptonite/plugininfo.xml r, /usr/share/amsn/plugins/LilyPondIM/plugininfo.xml r, /usr/share/amsn/plugins/MSNGameTTT/plugininfo.xml r, /usr/share/amsn/plugins/Notes/plugininfo.xml r, /usr/share/amsn/plugins/Nudge/plugininfo.xml r, /usr/share/amsn/plugins/Restore/plugininfo.xml r, /usr/share/amsn/plugins/SearchContact/plugininfo.xml r, /usr/share/amsn/plugins/SendRecents/plugininfo.xml r, /usr/share/amsn/plugins/SkinColor/plugininfo.xml r, /usr/share/amsn/plugins/SpellCheck/plugininfo.xml r, /usr/share/amsn/plugins/TeXIM/plugininfo.xml r, /usr/share/amsn/plugins/Translate/plugininfo.xml r, /usr/share/amsn/plugins/WebcamShooter/plugininfo.xml r, /usr/share/amsn/plugins/actionsmenu/plugininfo.xml r, /usr/share/amsn/plugins/address_book/plugininfo.xml r, /usr/share/amsn/plugins/advancedconfigviewer/plugininfo.xml r, /usr/share/amsn/plugins/amsnplus/plugininfo.xml r, /usr/share/amsn/plugins/bugbuddy/plugininfo.xml r, /usr/share/amsn/plugins/camserv/plugininfo.xml r, /usr/share/amsn/plugins/chameleon/plugininfo.xml r, /usr/share/amsn/plugins/changeit/plugininfo.xml r, /usr/share/amsn/plugins/colorize/plugininfo.xml r, /usr/share/amsn/plugins/countdown/plugininfo.xml r, /usr/share/amsn/plugins/dbusviewer/plugininfo.xml r, /usr/share/amsn/plugins/desktop_integration/plugininfo.xml r, /usr/share/amsn/plugins/devel/plugininfo.xml r, /usr/share/amsn/plugins/emotes/plugininfo.xml r, /usr/share/amsn/plugins/emoticons_importer/plugininfo.xml r, /usr/share/amsn/plugins/games/plugininfo.xml r, /usr/share/amsn/plugins/gename/plugininfo.xml r, /usr/share/amsn/plugins/glogs/plugininfo.xml r, /usr/share/amsn/plugins/gnotify/plugininfo.xml r, /usr/share/amsn/plugins/growl/plugininfo.xml r, /usr/share/amsn/plugins/inkdraw/plugininfo.xml r, /usr/share/amsn/plugins/jake/plugininfo.xml r, /usr/share/amsn/plugins/keepalive/plugininfo.xml r, /usr/share/amsn/plugins/movewin/plugininfo.xml r, /usr/share/amsn/plugins/music/plugininfo.xml r, /usr/share/amsn/plugins/notify/plugininfo.xml r, /usr/share/amsn/plugins/openwith/plugininfo.xml r, /usr/share/amsn/plugins/organize_received/plugininfo.xml r, /usr/share/amsn/plugins/pop3/plugininfo.xml r, /usr/share/amsn/plugins/sayit/plugininfo.xml r, /usr/share/amsn/plugins/transparent/plugininfo.xml r, /usr/share/amsn/plugins/userstatus/plugininfo.xml r, /usr/share/amsn/plugins/whatis/plugininfo.xml r, /usr/share/amsn/plugins/winks/plugininfo.xml r, /usr/share/amsn/pluginslog.tcl r, /usr/share/amsn/preferences.tcl r, /usr/share/amsn/progressbar.tcl r, /usr/share/amsn/protocol.tcl r, /usr/share/amsn/proxy.tcl r, /usr/share/amsn/remote.tcl r, /usr/share/amsn/roaming.tcl r, /usr/share/amsn/searchdialog.tcl r, /usr/share/amsn/sip.tcl r, /usr/share/amsn/skins.tcl r, /usr/share/amsn/skins/AQUA/pixmaps/null r, /usr/share/amsn/skins/Dark_Matter_4.0/smileys/Bat.png r, /usr/share/amsn/skins/Dark_Matter_4.0/smileys/IM.png r, /usr/share/amsn/skins/default/displaypic/nopic.png r, /usr/share/amsn/skins/default/pixmaps/amsnicon.png r, /usr/share/amsn/skins/default/pixmaps/arrow.png r, /usr/share/amsn/skins/default/pixmaps/blocked_emblem.png r, /usr/share/amsn/skins/default/pixmaps/box_body.png r, /usr/share/amsn/skins/default/pixmaps/box_up.png r, /usr/share/amsn/skins/default/pixmaps/box_upleft.png r, /usr/share/amsn/skins/default/pixmaps/box_upright.png r, /usr/share/amsn/skins/default/pixmaps/checkbox.png r, /usr/share/amsn/skins/default/pixmaps/checkbox_on.png r, /usr/share/amsn/skins/default/pixmaps/colorbar.png r, /usr/share/amsn/skins/default/pixmaps/contract.png r, /usr/share/amsn/skins/default/pixmaps/contract_hover.png r, /usr/share/amsn/skins/default/pixmaps/dhidden.png r, /usr/share/amsn/skins/default/pixmaps/doffline.png r, /usr/share/amsn/skins/default/pixmaps/donline.png r, /usr/share/amsn/skins/default/pixmaps/download.png r, /usr/share/amsn/skins/default/pixmaps/expand.png r, /usr/share/amsn/skins/default/pixmaps/expand_hover.png r, /usr/share/amsn/skins/default/pixmaps/globe.png r, /usr/share/amsn/skins/default/pixmaps/loganim.gif r, /usr/share/amsn/skins/default/pixmaps/loginbut.png r, /usr/share/amsn/skins/default/pixmaps/loginbut_hover.png r, /usr/share/amsn/skins/default/pixmaps/mailbox.png r, /usr/share/amsn/skins/default/pixmaps/mystatus_bg.png r, /usr/share/amsn/skins/default/pixmaps/mystatus_bg_hover.png r, /usr/share/amsn/skins/default/pixmaps/plain_emblem.png r, /usr/share/amsn/skins/default/settings.xml r, /usr/share/amsn/skins/default/smileys/Airplane.png r, /usr/share/amsn/skins/default/smileys/Angel_smiley.png r, /usr/share/amsn/skins/default/smileys/Angry_smiley.png r, /usr/share/amsn/skins/default/smileys/Ashamed_smiley.png r, /usr/share/amsn/skins/default/smileys/Auto.png r, /usr/share/amsn/skins/default/smileys/Baring_teeth_smiley.png r, /usr/share/amsn/skins/default/smileys/Be_Right_Back_smiley.png r, /usr/share/amsn/skins/default/smileys/Beer.png r, /usr/share/amsn/skins/default/smileys/Birthday_cake.png r, /usr/share/amsn/skins/default/smileys/Bowl.png r, /usr/share/amsn/skins/default/smileys/Boy.png r, /usr/share/amsn/skins/default/smileys/Broken_heart.png r, /usr/share/amsn/skins/default/smileys/Camera.png r, /usr/share/amsn/skins/default/smileys/Cat.png r, /usr/share/amsn/skins/default/smileys/Cigarette.png r, /usr/share/amsn/skins/default/smileys/Clapping_hands.png r, /usr/share/amsn/skins/default/smileys/Clock.png r, /usr/share/amsn/skins/default/smileys/Coffee_cup.png r, /usr/share/amsn/skins/default/smileys/Computer.png r, /usr/share/amsn/skins/default/smileys/Confused_smiley.png r, /usr/share/amsn/skins/default/smileys/Crying_smiley.png r, /usr/share/amsn/skins/default/smileys/Devil.png r, /usr/share/amsn/skins/default/smileys/Dog.png r, /usr/share/amsn/skins/default/smileys/Dont_know_smiley.png r, /usr/share/amsn/skins/default/smileys/Dont_tell_anyone_smiley.png r, /usr/share/amsn/skins/default/smileys/Dry_martini.png r, /usr/share/amsn/skins/default/smileys/Email.png r, /usr/share/amsn/skins/default/smileys/Eye_rolling_smiley.png r, /usr/share/amsn/skins/default/smileys/Filmstrip.png r, /usr/share/amsn/skins/default/smileys/Fingerscrossed.png r, /usr/share/amsn/skins/default/smileys/Gift.png r, /usr/share/amsn/skins/default/smileys/Girl.png r, /usr/share/amsn/skins/default/smileys/Goat.png r, /usr/share/amsn/skins/default/smileys/Handcuffs.png r, /usr/share/amsn/skins/default/smileys/Happy_smiley.png r, /usr/share/amsn/skins/default/smileys/Heart.png r, /usr/share/amsn/skins/default/smileys/Hot_smiley.png r, /usr/share/amsn/skins/default/smileys/Island.png r, /usr/share/amsn/skins/default/smileys/Kiss.png r, /usr/share/amsn/skins/default/smileys/Left_hug.png r, /usr/share/amsn/skins/default/smileys/Light.png r, /usr/share/amsn/skins/default/smileys/Messenger.png r, /usr/share/amsn/skins/default/smileys/Mobile_phone.png r, /usr/share/amsn/skins/default/smileys/Money.png r, /usr/share/amsn/skins/default/smileys/Moon.png r, /usr/share/amsn/skins/default/smileys/Nerd_smiley.png r, /usr/share/amsn/skins/default/smileys/Note.png r, /usr/share/amsn/skins/default/smileys/Oh_my_God_smiley.png r, /usr/share/amsn/skins/default/smileys/Party_smiley.png r, /usr/share/amsn/skins/default/smileys/Pizza.png r, /usr/share/amsn/skins/default/smileys/Plate.png r, /usr/share/amsn/skins/default/smileys/Rabbit.png r, /usr/share/amsn/skins/default/smileys/Rain.png r, /usr/share/amsn/skins/default/smileys/Rainbow.png r, /usr/share/amsn/skins/default/smileys/Right_hug.png r, /usr/share/amsn/skins/default/smileys/Rose.png r, /usr/share/amsn/skins/default/smileys/Sad_smiley.png r, /usr/share/amsn/skins/default/smileys/Sarcastic_smiley.png r, /usr/share/amsn/skins/default/smileys/Secret_telling_smiley.png r, /usr/share/amsn/skins/default/smileys/Sheep.png r, /usr/share/amsn/skins/default/smileys/Shocked_smiley.png r, /usr/share/amsn/skins/default/smileys/Sick_smiley.png r, /usr/share/amsn/skins/default/smileys/Sleepy_smiley.png r, /usr/share/amsn/skins/default/smileys/Snail.png r, /usr/share/amsn/skins/default/smileys/Soccer_ball.png r, /usr/share/amsn/skins/default/smileys/Star.png r, /usr/share/amsn/skins/default/smileys/Storm.png r, /usr/share/amsn/skins/default/smileys/Sun.png r, /usr/share/amsn/skins/default/smileys/Telephone_receiver.png r, /usr/share/amsn/skins/default/smileys/Thinking_smiley.png r, /usr/share/amsn/skins/default/smileys/Thumbs_down.png r, /usr/share/amsn/skins/default/smileys/Thumbs_up.png r, /usr/share/amsn/skins/default/smileys/Tonque_out_smiley.png r, /usr/share/amsn/skins/default/smileys/Turtle.png r, /usr/share/amsn/skins/default/smileys/Umbrella.png r, /usr/share/amsn/skins/default/smileys/Very_happy_smiley.png r, /usr/share/amsn/skins/default/smileys/Wilted_rose.png r, /usr/share/amsn/skins/default/smileys/Winking_smiley.png r, /usr/share/amsn/skins/default/smileys/Xbox.png r, /usr/share/amsn/smileys.tcl r, /usr/share/amsn/soap.tcl r, /usr/share/amsn/socks.tcl r, /usr/share/amsn/spaces.tcl r, /usr/share/amsn/sxml.tcl r, /usr/share/amsn/trayicon.tcl r, /usr/share/amsn/utils/ r, /usr/share/amsn/utils/BWidget-1.9.0/init.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/lang/en.rc r, /usr/share/amsn/utils/BWidget-1.9.0/lang/nl.rc r, /usr/share/amsn/utils/BWidget-1.9.0/pkgIndex.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/scrollframe.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/utils.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/widget.tcl r, /usr/share/amsn/utils/TkCximage/TkCximage.so mr, /usr/share/amsn/utils/TkCximage/pkgIndex.tcl r, /usr/share/amsn/utils/asyncresolver/asyncresolver.tcl r, /usr/share/amsn/utils/asyncresolver/libasyncresolver.so mr, /usr/share/amsn/utils/asyncresolver/pkgIndex.tcl r, /usr/share/amsn/utils/base64/pkgIndex.tcl r, /usr/share/amsn/utils/combobox/combobox.tcl r, /usr/share/amsn/utils/combobox/pkgIndex.tcl r, /usr/share/amsn/utils/contentmanager/contentmanager.tcl r, /usr/share/amsn/utils/contentmanager/pkgIndex.tcl r, /usr/share/amsn/utils/des/des.tcl r, /usr/share/amsn/utils/des/pkgIndex.tcl r, /usr/share/amsn/utils/des/tcldes.tcl r, /usr/share/amsn/utils/dpbrowser/pkgIndex.tcl r, /usr/share/amsn/utils/drawboard/pkgIndex.tcl r, /usr/share/amsn/utils/farsight/pkgIndex.tcl r, /usr/share/amsn/utils/framec/framec.tcl r, /usr/share/amsn/utils/framec/pkgIndex.tcl r, /usr/share/amsn/utils/gupnp/gupnp.so mr, /usr/share/amsn/utils/gupnp/pkgIndex.tcl r, /usr/share/amsn/utils/http/http.tcl r, /usr/share/amsn/utils/http/pkgIndex.tcl r, /usr/share/amsn/utils/linux/ r, /usr/share/amsn/utils/linux/capture/pkgIndex.tcl r, /usr/share/amsn/utils/linux/linflash/pkgIndex.tcl r, /usr/share/amsn/utils/linux/traydock/libtray.so mr, /usr/share/amsn/utils/linux/traydock/pkgIndex.tcl r, /usr/share/amsn/utils/log/pkgIndex.tcl r, /usr/share/amsn/utils/md4/md4.tcl r, /usr/share/amsn/utils/md4/pkgIndex.tcl r, /usr/share/amsn/utils/pixmapmenu/pkgIndex.tcl r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/trough.png r, /usr/share/amsn/utils/pixmapscroll/pixmapscroll.tcl r, /usr/share/amsn/utils/pixmapscroll/pkgIndex.tcl r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/trough.png r, /usr/share/amsn/utils/sasl/ntlm.tcl r, /usr/share/amsn/utils/sasl/pkgIndex.tcl r, /usr/share/amsn/utils/sasl/sasl.tcl r, /usr/share/amsn/utils/scalable-bg/pkgIndex.tcl r, /usr/share/amsn/utils/scalable-bg/scalable-bg.tcl r, /usr/share/amsn/utils/sexytile/pkgIndex.tcl r, /usr/share/amsn/utils/sha1/pkgIndex.tcl r, /usr/share/amsn/utils/snit/main2.tcl r, /usr/share/amsn/utils/snit/pkgIndex.tcl r, /usr/share/amsn/utils/snit/snit2.tcl r, /usr/share/amsn/utils/snit/validate.tcl r, /usr/share/amsn/utils/tclISF/pkgIndex.tcl r, /usr/share/amsn/utils/tcl_siren/pkgIndex.tcl r, /usr/share/amsn/utils/tkdnd/pkgIndex.tcl r, /usr/share/amsn/utils/tkdnd/tkdnd.tcl r, /usr/share/amsn/utils/tkdnd/tkdnd_unix.tcl r, /usr/share/amsn/utils/uri/pkgIndex.tcl r, /usr/share/amsn/utils/voipcontrols/pkgIndex.tcl r, /usr/share/amsn/utils/webcamsn/pkgIndex.tcl r, /usr/share/fonts/ r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/locale/** r, /usr/share/tcl/ r, /usr/share/tcl/bwidget1.9.0/pkgIndex.tcl r, /usr/share/tcl/snack2.2/pkgIndex.tcl r, /usr/share/tcl/snack2.2/snack.tcl r, /usr/share/tcl/tcllib1.11.1/ r, /usr/share/tcl/tcllib1.11.1/aes/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/amazon-s3/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/asn/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/base32/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/base64/base64.tcl r, /usr/share/tcl/tcllib1.11.1/base64/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/bee/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/bench/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/bibtex/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/blowfish/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/cache/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/cmdline/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/comm/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/control/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/counter/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/crc/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/csv/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/des/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/dns/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/docstrip/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/doctools/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/exif/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/fileutil/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/ftp/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/ftpd/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/fumagic/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/grammar_fa/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/grammar_me/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/grammar_peg/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/html/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/htmlparse/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/http/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/ident/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/inifile/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/interp/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/irc/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/javascript/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/jpeg/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/json/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/ldap/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/log/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/map/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/mapproj/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/math/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/md4/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/md5/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/md5crypt/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/mime/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/multiplexer/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/ncgi/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/nmea/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/nns/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/nntp/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/ntp/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/otp/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/page/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/pluginmgr/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/png/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/pop3/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/pop3d/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/profiler/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/rc4/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/rcs/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/report/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/ripemd/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/sasl/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/sha1/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/sha1/sha1.tcl r, /usr/share/tcl/tcllib1.11.1/simulation/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/smtpd/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/snit/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/soundex/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/stooop/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/stringprep/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/struct/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/tar/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/term/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/textutil/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/tie/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/tiff/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/transfer/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/treeql/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/uev/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/units/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/uri/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/uri/uri.tcl r, /usr/share/tcl/tcllib1.11.1/uuid/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/wip/pkgIndex.tcl r, /usr/share/tcl/tcllib1.11.1/yaml/pkgIndex.tcl r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-le32d4.cache-3 r, /var/cache/fontconfig/1890317d8a3fded7854d26fdd2e67c05-le32d4.cache-3 r, /var/cache/fontconfig/293fdca5c5a4717fef867b577c7f75e0-le32d4.cache-3 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-le32d4.cache-3 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-le32d4.cache-3 r, /var/cache/fontconfig/31f82260556886db06538972b4bc1ecd-le32d4.cache-3 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-le32d4.cache-3 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-le32d4.cache-3 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-le32d4.cache-3 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-le32d4.cache-3 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-le32d4.cache-3 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-le32d4.cache-3 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-le32d4.cache-3 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-le32d4.cache-3 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-le32d4.cache-3 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, } }	about 1 year ago	amsn01	70	fre	Edit	History
opensuse11.0	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> owner /home//.purple/ rw, owner /home//.purple/* mr, owner /home/walik/.gstreamer-0.10/* r, owner /proc//fd/ r, owner /proc//mounts r, /usr/lib/pidgin/* mr, /usr/lib/purple-2/* mr, /usr/share/locale-bundle/** r, /usr/share/themes/ r, owner /var/run/gdm/auth-for-walik-E5MIBe/database r, ^null-10 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-12 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-14 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-16 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-18 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-1a { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-1c { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-1e { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-20 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-22 { #include <abstractions/base> } ^null-24 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-26 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-28 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-2a { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/* r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-2c { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-2e { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-30 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-32 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-34 { #include <abstractions/base> } ^null-36 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/ mr, /usr/share/locale/ r, } ^null-38 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-3a { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-3c { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-3e { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-40 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-42 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-44 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-46 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-48 { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-4a { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-4c { /dev/urandom r, /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } }	over 2 years ago		215	walik	Edit	History
opensuse11.0	/sbin/SuSEfirewall2	#include <tunables/global> /sbin/SuSEfirewall2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> capability net_admin, capability sys_tty_config, /bin/bash ix, ^null-24a flags=(complain) { } ^null-24c flags=(complain) { } ^null-24e flags=(complain) { } ^null-250 flags=(complain) { } ^null-252 flags=(complain) { } ^null-254 flags=(complain) { } ^null-256 flags=(complain) { } ^null-258 flags=(complain) { } ^null-25a flags=(complain) { } ^null-25c flags=(complain) { } ^null-25e flags=(complain) { } ^null-260 flags=(complain) { } ^null-262 flags=(complain) { } ^null-264 flags=(complain) { } ^null-266 flags=(complain) { } ^null-268 flags=(complain) { } ^null-26a flags=(complain) { } ^null-26c flags=(complain) { } ^null-26e flags=(complain) { } ^null-270 flags=(complain) { } ^null-272 flags=(complain) { } ^null-274 flags=(complain) { } ^null-276 flags=(complain) { } ^null-278 flags=(complain) { } ^null-27a flags=(complain) { } ^null-27c flags=(complain) { } ^null-27e flags=(complain) { } ^null-280 flags=(complain) { } ^null-282 flags=(complain) { } ^null-284 flags=(complain) { } ^null-286 flags=(complain) { } ^null-288 flags=(complain) { } ^null-28a flags=(complain) { } ^null-28c flags=(complain) { } ^null-28e flags=(complain) { } }	over 2 years ago	/var/log/susefirewall.log	142	zozpszczyna	Edit	History
ubuntu-gutsy	/usr/bin/nessus	#include <tunables/global> /usr/bin/nessus { #include <abstractions/base> /usr/bin/nessus mr, }	over 4 years ago	gnome	269	hbpteam	Edit	History
opensuse10.3	/usr/bin/gnomesu	#include <tunables/global> /usr/bin/gnomesu { #include <abstractions/base> /usr/bin/gnomesu mr, }	over 4 years ago	Import of jmichaels profiles	216	dominic	Edit	History
opensuse10.3	/usr/bin/metacity	#include <tunables/global> /usr/bin/metacity { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /home//.ICEauthority r, /home//.Xauthority r, /home//.fontconfig/ r, /home//.metacity/sessions/ w, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/metacity mr, }	over 4 years ago	Import of jmichaels profiles	252	dominic	Edit	History
opensuse11.0	/usr/sbin/apache2ctl	#include <tunables/global> /usr/sbin/apache2ctl flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		71	Jety	Edit	History
opensuse11.0	/usr/bin/opera	#include <tunables/global> /usr/bin/opera { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		149	maleks	Edit	History
opensuse11.0	/usr/bin/kde_add_yast_source.sh	#include <tunables/global> /usr/bin/kde_add_yast_source.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	changelogone	178	sunil	Edit	History
ubuntu-gutsy	/bin/which	#include <tunables/global> /bin/which flags=(complain) { #include <abstractions/base> /bin/dash ixr, /bin/which mr, }	over 4 years ago	1	226	bmc	Edit	History
opensuse10.3	/etc/gdm/PostSession/Default	#include <tunables/global> /etc/gdm/PostSession/Default flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> capability setgid, capability setuid, /bin/bash ixr, /etc/gdm/PostSession/Default mr, /proc/meminfo r, }	over 4 years ago	argh, switch things back to complain for a while	218	jmichael	Edit	History
opensuse10.3	/usr/lib/gnome-screensaver/gnome-screensaver-gl-helper	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /home/*/.Xauthority r, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper mr, }	over 4 years ago	argh, switch things back to complain for a while	265	jmichael	Edit	History
opensuse11.0	/bin/arch	#include <tunables/global> /bin/arch { #include <abstractions/base> }	about 1 year ago		33	xheinz	Edit	History
opensuse11.0	/bin/hostname	#include <tunables/global> /bin/hostname flags=(complain) { #include <abstractions/base> }	over 3 years ago		204	erinome	Edit	History
ubuntu-gutsy	/usr/sbin/cron	#include <tunables/global> /usr/sbin/cron { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, /bin/dash ixr, /etc/cron.d/ r, /etc/cron.d/* r, /etc/crontab r, /etc/environment r, /proc//mounts r, /proc/filesystems r, /usr/sbin/cron mr, /var/run/crond.pid krw, /var/run/utmp krw, /var/spool/cron/crontabs/ r, /var/spool/cron/crontabs/ r, }	over 3 years ago		190	stive	Edit	History
opensuse11.0	/usr/share/amsn/amsn	#include <tunables/global> /usr/share/amsn/amsn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	aMSN	190	Mariusz Bernard	Edit	History
opensuse10.3	/opt/kde3/bin/konqueror	#include <tunables/global> /opt/kde3/bin/konqueror flags=(complain) { #include <abstractions/base> /opt/kde3/bin/konqueror mr, /opt/kde3/lib64/libDCOP.so.* mr, /opt/kde3/lib64/libconnectionmanager.so.* mr, /opt/kde3/lib64/libkdecore.so.* mr, /opt/kde3/lib64/libkdefx.so.* mr, /opt/kde3/lib64/libkdesu.so.* mr, /opt/kde3/lib64/libkdeui.so.* mr, /opt/kde3/lib64/libkio.so.* mr, /opt/kde3/lib64/libkonq.so.* mr, /opt/kde3/lib64/libkparts.so.* mr, /opt/kde3/lib64/libkutils.so.* mr, /opt/kde3/lib64/libkwalletclient.so.* mr, /opt/kde3/lib64/libnetworkstatus.so.* mr, }	over 4 years ago	konqueror2	193	mmm	Edit	History
opensuse10.3	/usr/bin/gnomesu	#include <tunables/global> /usr/bin/gnomesu { #include <abstractions/base> /usr/bin/gnomesu mr, }	over 4 years ago	none	207	cinimod	Edit	History
opensuse11.0	/usr/games/neverball	#include <tunables/global> /usr/games/neverball flags=(complain) { #include <abstractions/base> }	about 1 year ago		61	Goetrek	Edit	History
opensuse11.0	/sbin/rpcbind	#include <tunables/global> /sbin/rpcbind flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, owner /etc/hosts.allow r, owner /etc/hosts.deny r, owner /etc/netconfig r, owner /var/run/rpcbind.lock ak, owner /var/run/rpcbind.sock w, }	about 1 year ago		79	bsmart76	Edit	History
opensuse11.0	/usr/bin/k3b	#include <tunables/global> /usr/bin/k3b flags=(complain) { #include <abstractions/base> network inet stream, r, /dev/sr0 rw, /etc/exports r, /etc/fonts/** r, /etc/fstab r, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/nsswitch.conf r, /etc/rpc r, /etc/samba/smb.conf r, /etc/security/fileshare.conf r, owner /home// r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf rk, owner /home//.fontconfig/0ce0aa68fabc0a176d952ae9761f10a1-x86.cache-2 r, owner /home//.fonts.conf r, owner /home//.kde/share/config/kdeglobals rk, owner /home//.kde4/share/config/ w, owner /home//.kde4/share/config/emaildefaults rw, owner /home//.kde4/share/config/emaildefaults.lock w, owner /home//.kde4/share/config/emaildefaults.lock.h12844 w, owner /home//.kde4/share/config/emaildefaultsL12844.new rw, owner /home//.kde4/share/config/k3brc rw, owner /home//.kde4/share/config/kcmcddbrc rw, owner /home//.kde4/share/config/kdeglobals r, owner /home//.kde4/share/config/kioslaverc rw, owner /home//.kde4/share/config/knfsshare rw, owner /home//.kde4/share/config/oxygenrc rw, owner /home//Documents/.directory rw, owner /home//public_html/.directory rw, /opt/kde3/share/icons/hicolor/ r, owner /proc//mounts r, /sbin/hdparm mrcx, /tmp/.X11-unix/X0 w, owner /tmp/dvd\+rw-format.RClFjm w, owner /tmp/dvd\+rw-format.jPlzSX w, owner /tmp/ksocket-foxxxxfire/k3bX12844.slave-socket w, owner /tmp/ksocket-foxxxxfire/k3bw12844.slave-socket w, /usr/bin/cdrdao mrpx, /usr/bin/dvd\+rw-format mrix, /usr/bin/genisoimage rix, /usr/bin/growisofs rix, /usr/bin/k3b r, /usr/bin/readom rix, /usr/bin/vcdxbuild rix, /usr/bin/vcdxminfo rix, /usr/bin/vcdxrip rix, /usr/bin/wodim mrcx, /usr/lib/* mr, /usr/lib/kde4/libexec/drkonqi rix, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/fonts/** r, /usr/share/icons/Oxygen_White/cursors/left_ptr r, /usr/share/icons/Oxygen_White/cursors/wait r, /usr/share/icons/hicolor/ r, /usr/share/icons/oxygen/ r, /usr/share/kde4/apps/k3b/k3bui.rc r, /usr/share/kde4/apps/k3b/pics/ r, /usr/share/kde4/apps/k3b/pics/73lab/k3b.theme r, /usr/share/kde4/apps/k3b/pics/RobsTheme/k3b.theme r, /usr/share/kde4/apps/k3b/pics/crystal/k3b.theme r, /usr/share/kde4/apps/k3b/pics/quant/dialog_left.png r, /usr/share/kde4/apps/k3b/pics/quant/dialog_right.png r, /usr/share/kde4/apps/k3b/pics/quant/k3b.theme r, /usr/share/kde4/apps/k3b/pics/quant/media_audio.png r, /usr/share/kde4/apps/k3b/pics/quant/media_left.png r, /usr/share/kde4/apps/k3b/pics/quant/media_none.png r, /usr/share/kde4/apps/k3b/pics/quant/media_video.png r, /usr/share/kde4/apps/k3b/pics/quant/project_left.png r, /usr/share/kde4/apps/k3b/pics/quant/project_right.png r, /usr/share/kde4/apps/k3b/pics/quant/splash.png r, /usr/share/kde4/apps/k3b/pics/quant/welcome_bg.png r, /usr/share/kde4/config/kdebug.areas r, /usr/share/kde4/config/kdebugrc r, /usr/share/kde4/config/ui/ui_standards.rc r, /usr/share/locale-bundle/en_US/LC_MESSAGES/kde4-openSUSE.mo r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/dbus/system_bus_socket w, /var/run/nscd/socket w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.data rw, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.index rw, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.B12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.C12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.E12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.F12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.H12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.J12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.M12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.S12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.T12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.W12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.Z12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.d12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.f12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.h12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.i12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.j12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.k12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.n12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.t12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.w12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.lock.y12844 w, owner /var/tmp/kdecache-foxxxxfire/kpc/kde-icon-cache.updated w, owner /var/tmp/kdecache-foxxxxfire/ksycoca4 r, profile /sbin/hdparm { } profile /usr/bin/wodim { /dev/urandom r, /etc/ld.so.cache r, /lib/ld-2.8.so rix, /lib/libso mr, /usr/bin/wodim mr, } }	over 3 years ago		240	foxxxxfire	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/** r, /etc/php.ini r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/ r, /etc/php5/conf.d/bcmath.ini r, /etc/php5/conf.d/bz2.ini r, /etc/php5/conf.d/calendar.ini r, /etc/php5/conf.d/ctype.ini r, /etc/php5/conf.d/curl.ini r, /etc/php5/conf.d/dba.ini r, /etc/php5/conf.d/dbase.ini r, /etc/php5/conf.d/dom.ini r, /etc/php5/conf.d/exif.ini r, /etc/php5/conf.d/ftp.ini r, /etc/php5/conf.d/gd.ini r, /etc/php5/conf.d/gettext.ini r, /etc/php5/conf.d/gmp.ini r, /etc/php5/conf.d/hash.ini r, /etc/php5/conf.d/iconv.ini r, /etc/php5/conf.d/imap.ini r, /etc/php5/conf.d/json.ini r, /etc/php5/conf.d/mbstring.ini r, /etc/php5/conf.d/mcrypt.ini r, /etc/php5/conf.d/mhash.ini r, /etc/php5/conf.d/mysql.ini r, /etc/php5/conf.d/mysqli.ini r, /etc/php5/conf.d/openssl.ini r, /etc/php5/conf.d/pdo.ini r, /etc/php5/conf.d/pdo_mysql.ini r, /etc/php5/conf.d/pdo_sqlite.ini r, /etc/php5/conf.d/sqlite.ini r, /etc/php5/conf.d/suhosin.ini r, /etc/php5/conf.d/tidy.ini r, /etc/php5/conf.d/tokenizer.ini r, /etc/php5/conf.d/xmlreader.ini r, /etc/php5/conf.d/xmlwriter.ini r, /etc/php5/conf.d/xsl.ini r, /etc/php5/conf.d/zip.ini r, /etc/php5/conf.d/zlib.ini r, /proc//attr/current w, /srv/www/htdocs r, /srv/www/htdocs/* r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/** mr, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/python[12].[0-9]/.{py,pyc,pth,so} mr, /usr/lib64/apache2-leader/{lib,mod_}.so* mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mixr, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index wr, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lib/php5/session_mm_apache2handler0.sem kw, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/run/nscd/services r, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } /usr/sbin/httpd2-prefork/// flags=(complain) { #include <abstractions/nameservice> /proc//attr/current w, } /usr/sbin/httpd2-prefork///favicon.ico flags=(complain) { #include <abstractions/nameservice> /proc//attr/current w, /srv/www/htdocs/favicon.ico r, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork///wordpress/ flags=(complain) { #include <abstractions/nameservice> /dev/urandom r, /proc//attr/current w, /srv/www/htdocs/wordpress/index.php r, /srv/www/htdocs/wordpress/wp-blog-header.php r, /srv/www/htdocs/wordpress/wp-includes/classes.php r, /srv/www/htdocs/wordpress/wp-includes/functions.php r, /srv/www/htdocs/wordpress/wp-includes/plugin.php r, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork///wordpress/wp-admin/css/install.css flags=(complain) { #include <abstractions/nameservice> /srv/www/htdocs/wordpress/wp-admin/css/install.css r, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork///wordpress/wp-admin/setup-config.php flags=(complain) { #include <abstractions/nameservice> /dev/urandom r, /proc//attr/current w, /srv/www/htdocs/wordpress/wp-admin/setup-config.php r, /srv/www/htdocs/wordpress/wp-config-sample.php r, /srv/www/htdocs/wordpress/wp-includes/classes.php r, /srv/www/htdocs/wordpress/wp-includes/compat.php r, /srv/www/htdocs/wordpress/wp-includes/functions.php r, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork//DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mixr, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /proc//attr/current w, /var/log/apache2/* w, }	over 4 years ago	httpd2	330	eviled	Edit	History
opensuse10.3	/usr/lib/postfix/trivial-rewrite	# $Id: usr.lib.postfix.trivial-rewrite 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/trivial-rewrite { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/gai.conf r, /etc/postfix/*.db krw, /etc/{m,fs}tab r, /usr/lib/postfix/trivial-rewrite rmix, /var/spool/postfix/pid/unix.rewrite rw, }	over 4 years ago	ssh needed the ability to create /root/.ssh, and assorted CUPS fixes	186	crispin	Edit	History
opensuse10.3	/usr/sbin/wpa_supplicant	#include <tunables/global> /usr/sbin/wpa_supplicant flags=(complain) { #include <abstractions/base> capability net_admin, capability net_raw, capability sys_module, network inet dgram, network packet dgram, /proc/net/ r, /proc/net/unix r, /usr/sbin/wpa_supplicant mr, /var/run/NetworkManager/wpa_ctrl_* w, /var/run/wpa_supplicant-global w, /var/run/wpa_supplicant/ w, /var/run/wpa_supplicant/* w, }	over 4 years ago	argh, switch things back to complain for a while	289	jmichael	Edit	History
ubuntu-gutsy	/usr/bin/xsane	#include <tunables/global> /usr/bin/xsane { #include <abstractions/base> /usr/bin/xsane mr, }	over 4 years ago	gnome	289	hbpteam	Edit	History
ubuntu-gutsy	/bin/dash	#include <tunables/global> /bin/dash { #include <abstractions/base> /bin/cat ixr, /bin/dash mr, /etc/apparmor.d/bin.check-foreground-console r, /etc/apparmor.d/bin.dash r, /etc/apparmor.d/bin.fusermount r, /etc/apparmor.d/bin.ping6 r, /etc/apparmor.d/bin.su r, /etc/apparmor.d/bin.umount r, /etc/apparmor.d/lib.dhcp3-client.call-dhclient-script r, /etc/apparmor.d/usr.bin.X r, /etc/apparmor.d/usr.bin.Xorg r, /etc/apparmor.d/usr.bin.albumshaper r, /etc/apparmor.d/usr.bin.aplay r, /etc/apparmor.d/usr.bin.aqualung r, /etc/apparmor.d/usr.bin.arping r, /etc/apparmor.d/usr.bin.at r, /etc/apparmor.d/usr.bin.audacious r, /etc/apparmor.d/usr.bin.avidemux r, /etc/apparmor.d/usr.bin.basename r, /etc/apparmor.d/usr.bin.bluetooth-applet r, /etc/apparmor.d/usr.bin.bug-buddy r, /etc/apparmor.d/usr.bin.cddb-slave2-properties r, /etc/apparmor.d/usr.bin.chage r, /etc/apparmor.d/usr.bin.chfn r, /etc/apparmor.d/usr.bin.chsh r, /etc/apparmor.d/usr.bin.crontab r, /etc/apparmor.d/usr.bin.dbus-daemon r, /etc/apparmor.d/usr.bin.devhelp r, /etc/apparmor.d/usr.bin.djview4 r, /etc/apparmor.d/usr.bin.dvdrip r, /etc/apparmor.d/usr.bin.evolution r, /etc/apparmor.d/usr.bin.expiry r, /etc/apparmor.d/usr.bin.fileshareset r, /etc/apparmor.d/usr.bin.fping r, /etc/apparmor.d/usr.bin.fping6 r, /etc/apparmor.d/usr.bin.fwbuilder r, /etc/apparmor.d/usr.bin.gconftool-2 r, /etc/apparmor.d/usr.bin.gfloppy r, /etc/apparmor.d/usr.bin.gimp-2.4 r, /etc/apparmor.d/usr.bin.gksu r, /etc/apparmor.d/usr.bin.gnome-about-me r, /etc/apparmor.d/usr.bin.gnome-at-properties r, /etc/apparmor.d/usr.bin.gnome-default-applications-properties r, /etc/apparmor.d/usr.bin.gnome-dictionary r, /etc/apparmor.d/usr.bin.gnome-keyboard-properties r, /etc/apparmor.d/usr.bin.gnome-panel r, /etc/apparmor.d/usr.bin.gnome-screensaver r, /etc/apparmor.d/usr.bin.gnome-screenshot r, /etc/apparmor.d/usr.bin.gnome-session r, /etc/apparmor.d/usr.bin.gnome-sound-properties r, /etc/apparmor.d/usr.bin.gnome-splashscreen-manager r, /etc/apparmor.d/usr.bin.gnome-system-log r, /etc/apparmor.d/usr.bin.gnome-volume-control r, /etc/apparmor.d/usr.bin.gnome-volume-manager r, /etc/apparmor.d/usr.bin.gnome-wm r, /etc/apparmor.d/usr.bin.gpasswd r, /etc/apparmor.d/usr.bin.gstm r, /etc/apparmor.d/usr.bin.gtkterm r, /etc/apparmor.d/usr.bin.gucharmap r, /etc/apparmor.d/usr.bin.kchmviewer r, /etc/apparmor.d/usr.bin.kdesud r, /etc/apparmor.d/usr.bin.kgrantpty r, /etc/apparmor.d/usr.bin.kpac_dhcp_helper r, /etc/apparmor.d/usr.bin.lppasswd r, /etc/apparmor.d/usr.bin.mcpp r, /etc/apparmor.d/usr.bin.meld r, /etc/apparmor.d/usr.bin.metacity r, /etc/apparmor.d/usr.bin.mkfontdir r, /etc/apparmor.d/usr.bin.mkfontscale r, /etc/apparmor.d/usr.bin.monodevelop r, /etc/apparmor.d/usr.bin.mtr r, /etc/apparmor.d/usr.bin.nautilus r, /etc/apparmor.d/usr.bin.nautilus-cd-burner r, /etc/apparmor.d/usr.bin.nessus r, /etc/apparmor.d/usr.bin.newgrp r, /etc/apparmor.d/usr.bin.ooffice r, /etc/apparmor.d/usr.bin.pterm r, /etc/apparmor.d/usr.bin.screen r, /etc/apparmor.d/usr.bin.serpentine r, /etc/apparmor.d/usr.bin.slocate r, /etc/apparmor.d/usr.bin.ssh-agent r, /etc/apparmor.d/usr.bin.start_kdeinit r, /etc/apparmor.d/usr.bin.streamtuner r, /etc/apparmor.d/usr.bin.sudo r, /etc/apparmor.d/usr.bin.system-config-printer r, /etc/apparmor.d/usr.bin.system-config-printer-applet r, /etc/apparmor.d/usr.bin.traceroute6.iputils r, /etc/apparmor.d/usr.bin.tracker-search-tool r, /etc/apparmor.d/usr.bin.tvtime r, /etc/apparmor.d/usr.bin.update-manager r, /etc/apparmor.d/usr.bin.v4l-conf r, /etc/apparmor.d/usr.bin.vino-session r, /etc/apparmor.d/usr.bin.wall r, /etc/apparmor.d/usr.bin.wavbreaker r, /etc/apparmor.d/usr.bin.webhttrack r, /etc/apparmor.d/usr.bin.xcdroast r, /etc/apparmor.d/usr.bin.xdpyinfo r, /etc/apparmor.d/usr.bin.xine r, /etc/apparmor.d/usr.bin.xkbcomp r, /etc/apparmor.d/usr.bin.xrdb r, /etc/apparmor.d/usr.bin.xsane r, /etc/apparmor.d/usr.bin.xterm r, /etc/apparmor.d/usr.games.banner r, /etc/apparmor.d/usr.games.gnibbles r, /etc/apparmor.d/usr.games.gnobots2 r, /etc/apparmor.d/usr.games.gnometris r, /etc/apparmor.d/usr.games.gnomine r, /etc/apparmor.d/usr.games.gnotravex r, /etc/apparmor.d/usr.games.gnotski r, /etc/apparmor.d/usr.games.gtali r, /etc/apparmor.d/usr.games.iagno r, /etc/apparmor.d/usr.games.mahjongg r, /etc/apparmor.d/usr.games.same-gnome r, /etc/apparmor.d/usr.lib.bonobo-activation.bonobo-activation-server r, /etc/apparmor.d/usr.lib.deskbar-applet.deskbar-applet r, /etc/apparmor.d/usr.lib.eject.dmcrypt-get-device r, /etc/apparmor.d/usr.lib.evolution.2.12.evolution-exchange-storage r, /etc/apparmor.d/usr.lib.evolution.camel-lock-helper-1.2 r, /etc/apparmor.d/usr.lib.evolution.evolution-data-server-1.12 r, /etc/apparmor.d/usr.lib.fast-user-switch-applet.fast-user-switch-applet r, /etc/apparmor.d/usr.lib.firefox.firefox r, /etc/apparmor.d/usr.lib.gnome-control-center.gnome-settings-daemon r, /etc/apparmor.d/usr.lib.gnome-vfs-2.0.gnome-vfs-daemon r, /etc/apparmor.d/usr.lib.j2se.1.4.jre.javaws.javaws r, /etc/apparmor.d/usr.lib.jvm.java-1.5.0-sun-1.5.0.13.jre.bin.javaws r, /etc/apparmor.d/usr.lib.jvm.java-6-sun-1.6.0.03.jre.bin.java r, /etc/apparmor.d/usr.lib.libgconf2-4.gconf-sanity-check-2 r, /etc/apparmor.d/usr.lib.libgconf2-4.gconfd-2 r, /etc/apparmor.d/usr.lib.libvte9.gnome-pty-helper r, /etc/apparmor.d/usr.lib.nautilus-cd-burner.mapping-daemon r, /etc/apparmor.d/usr.lib.openssh.ssh-keysign r, /etc/apparmor.d/usr.lib.pt_chown r, /etc/apparmor.d/usr.lib.xcdroast.bin.xcdrwrap r, /etc/apparmor.d/usr.sbin.cupsd r, /etc/apparmor.d/usr.sbin.pppd r, /sbin/apparmor_parser Px, /usr/bin/infocmp Px, /usr/bin/mcpp Px, /usr/bin/xkbcomp Px, }	over 4 years ago	gnome	275	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/evolution/evolution-data-server-1.12	#include <tunables/global> /usr/lib/evolution/evolution-data-server-1.12 { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /home//.evolution/calendar/local/system/.ics rw, /home//.evolution/calendar/local/system/.ics~ rw, /home//.evolution/memos/local/system/.ics rw, /home//.evolution/memos/local/system/.ics~ rw, /home//.evolution/tasks/local/* rw, /home//.gnome2_private/ w, /proc//mounts r, /proc/stat r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/lib/evolution/evolution-data-server-1.12 mr, }	over 4 years ago	gnome	315	hbpteam	Edit	History
opensuse10.3	/usr/sbin/privoxy	#include <tunables/global> /usr/sbin/privoxy flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /usr/sbin/privoxy mr, /var/lib/privoxy/etc/* r, /var/lib/privoxy/lib/libso mr, /var/lib/privoxy/log/logfile w, /var/run/privoxy.pid w, }	over 4 years ago	argh, switch things back to complain for a while	223	jmichael	Edit	History
ubuntu-gutsy	/usr/sbin/sendmail	# $Id: usr.sbin.sendmail 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # Sendmail in Red Hat 7.3 got moved to /usr/sbin/sendmail.sendmail to # support /etc/alternatives/ -- SuSE has no such mechanism. So, this # file supports _BOTH_ sendmail's sendmail and postfix's sendmail. #include <tunables/global> /usr/sbin/sendmail { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/user-tmp> #include <program-chunks/postfix-common> /etc/aliases rw, /etc/aliases.db rw, /etc/fstab r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ldap.conf r, /etc/mail/* r, /etc/mail/statistics rw, /etc/mailname r, /etc/mtab r, /etc/postfix r, /etc/postfix/aliases r, /etc/postfix/aliases.db rw, /etc/postfix/main.cf r, /etc/postfix/postfix-script Px, /etc/sendmail.cf r, /etc/sendmail.cw r, /etc/shells r, /root/.forward rw, /root/dead.letter w, /usr/bin/procmail Px, /usr/kerberos/lib/lib.so mr, /usr/lib/postfix r, /usr/lib/postfix/master Px, /usr/lib/postfix/showq Px, /usr/lib/postfix/smtpd Px, /usr/lib/sasl r, /usr/lib/sasl/* mr, /usr/lib/sasl2 r, /usr/lib/sasl2/* mr, /usr/sbin/postalias Px, /usr/sbin/postdrop Pxmr, /usr/sbin/postfix Px, /usr/sbin/postqueue Px, /usr/sbin/sendmail rmix, /usr/sbin/sendmail.postfix rmix, /usr/sbin/sendmail.sendmail rmix, /var/lib/sendmail/statistics rwl, /var/run/sendmail.pid rwl, /var/run/sendmail/control rw, /var/run/sm-client.pid rwl, /var/run/utmp rw, /var/spool/clientmqueue r, /var/spool/clientmqueue/* rwl, /var/spool/mail rwl, /var/spool/mail/* rwl, /var/spool/mqueue rwl, /var/spool/mqueue/* rwl, /var/spool/postfix r, /var/spool/postfix/active r, /var/spool/postfix/bounce r, /var/spool/postfix/corrupt r, /var/spool/postfix/defer r, /var/spool/postfix/deferred r, /var/spool/postfix/incoming r, /var/spool/postfix/maildrop r, /var/spool/postfix/maildrop/* lrw, /var/spool/postfix/pid r, /var/spool/postfix/private r, /var/spool/postfix/public r, /var/spool/postfix/public/pickup w, /var/spool/postfix/public/qmgr w, /var/spool/postfix/public/showq w, /var/spool/postfix/saved r, @{PROC}/loadavg r, @{PROC}/net/if_inet6 r, }	over 2 years ago		136	stive	Edit	History
ubuntu-gutsy	/opt/grisoft/avg7/bin/avgscan	#include <tunables/global> /opt/grisoft/avg7/bin/avgscan { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, / r, /opt/grisoft/avg7/bin/avgscan mr, /opt/grisoft/avg7/data/ r, /opt/grisoft/avg7/data/* rw, /opt/grisoft/avg7/etc/* r, /opt/grisoft/avg7/etc/antispam/ r, /opt/grisoft/avg7/etc/antispam/* rw, /opt/grisoft/avg7/lib/libso mr, /opt/grisoft/lib/libso mr, /tmp/* w, /var/lib/amavis/tmp/** rw, /var/run/avgd.pgrp w, }	over 3 years ago		284	stive	Edit	History
opensuse10.3	/usr/sbin/squid	# $Id: usr.sbin.squid 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/squid flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> capability setgid, capability setuid, /dev/tty rw, /etc/mtab r, /etc/squid/* r, /usr/lib/squid/* rmix, /usr/sbin/digest_pw_auth rmix, /usr/sbin/diskd rmix, /usr/sbin/getpwname_auth rmix, /usr/sbin/ip_user_check rmix, /usr/sbin/msnt_auth rmix, /usr/sbin/ncsa_auth rmix, /usr/sbin/no_check.pl rmix, /usr/sbin/ntlm_auth rmix, /usr/sbin/pam_auth rmix, /usr/sbin/rcsquid rmix, /usr/sbin/smb_auth rmix, /usr/sbin/smb_auth.pl rmix, /usr/sbin/smb_auth.sh rmix, /usr/sbin/squid rmix, /usr/sbin/squid_ldap_auth rmix, /usr/sbin/squid_ldap_group rmix, /usr/sbin/squid_ldapauth rmix, /usr/sbin/squid_unix_group rmix, /usr/sbin/squidclient rmix, /usr/sbin/unlinkd rmix, /usr/sbin/wbinfo_group.pl rmix, /usr/sbin/yp_auth rmix, /usr/share/squid/ r, /var/cache/squid/ lrw, /var/log/squid/access.log w, /var/log/squid/cache.log rw, /var/log/squid/store.log w, /var/run/squid.pid lrw, @{PROC}/[0-9]*/mounts r, @{PROC}/mounts r, }	over 4 years ago		197	pbaumann	Edit	History
ubuntu-gutsy	/usr/bin/vino-session	#include <tunables/global> /usr/bin/vino-session { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc/*/mounts r, /usr/bin/vino-session mr, }	over 4 years ago	gnome	305	hbpteam	Edit	History
opensuse10.3	/usr/lib/control-center-2.0/novell-sysconfig-proxy-helper	#include <tunables/global> /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/sysconfig/proxy r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper mr, }	over 4 years ago	none	314	cinimod	Edit	History
opensuse10.3	/usr/bin/gnome-at-visual	#include <tunables/global> /usr/bin/gnome-at-visual { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/gconftool-2 Pxmr, /usr/bin/gnome-at-visual mr, }	over 4 years ago	none	183	cinimod	Edit	History
opensuse10.3	/home/dominic/bin/seed_initial_repository	#include <tunables/global> /home/dominic/bin/seed_initial_repository { #include <abstractions/base> #include <abstractions/perl> /home/dominic/bin/seed_initial_repository mr, /usr/bin/perl ix, }	over 4 years ago	none	209	cinimod	Edit	History
opensuse11.0	/home/mouse/SecondLife-i686-1.22.11.113941/secondlife	#include <tunables/global> /home/mouse/SecondLife-i686-1.22.11.113941/secondlife flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	Secondlife	152	Mouse	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, /home//.config/Trolltech.conf rk, /home//.fontconfig/ r, /home//.mozilla/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, /proc/interrupts r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/iconengines/ r, /usr/lib/qt4/plugins/imageformats/ r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/locale/* r, /usr/share/icons/** r, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, }	over 3 years ago	skype	143	vicd	Edit	History
opensuse10.3	/etc/init.d/apache2	#include <tunables/global> /etc/init.d/apache2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /etc/init.d/apache2 mr, } /etc/init.d/apache2//DEFAULT_URI flags=(complain) { } /etc/init.d/apache2//HANDLING_UNTRUSTED_INPUT flags=(complain) { }	over 4 years ago		205	eviled	Edit	History
opensuse10.3	/bin/ps	#include <tunables/global> /bin/ps { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> capability dac_override, capability sys_admin, capability sys_ptrace, /bin/ps mr, /proc/ r, /proc//attr/current r, /proc//cmdline r, /proc//stat r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, }	over 4 years ago	Import of jmichaels profiles	216	dominic	Edit	History
opensuse10.3	/usr/lib/postfix/cleanup	# $Id: usr.lib.postfix.cleanup 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/cleanup { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability net_bind_service, /etc/gai.conf r, /etc/postfix/* krw, /etc/{m,fs}tab r, /usr/lib/postfix/cleanup rmix, /var/spool/postfix/** krw, /{var/spool/postfix/,}hold/[0-9A-F]* w, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/[0-9].[0-9] rwl, /{var/spool/postfix/,}pid/unix.cleanup rw, /{var/spool/postfix/,}private/{rewrite,bounce} w, /{var/spool/postfix/,}public/qmgr w, }	over 4 years ago	ssh needed the ability to create /root/.ssh, and assorted CUPS fixes	269	crispin	Edit	History
opensuse10.3	/usr/bin/f-spot	#include <tunables/global> /usr/bin/f-spot flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/f-spot/* rw, /home//.gnome2/f-spot/photos.db krw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.thumbnails/* r, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /home//Photos/* r, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /usr/bin/f-spot mr, /usr/bin/mono ixr, /usr/lib/f-spot/.dll mr, /usr/lib/f-spot/f-spot.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/share/f-spot/icons/ r, /usr/share/f-spot/icons/ r, /usr/share/fonts/** mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	argh, switch things back to complain for a while	179	jmichael	Edit	History
opensuse10.3	/usr/bin/totem-video-thumbnailer	#include <tunables/global> /usr/bin/totem-video-thumbnailer { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home//.gstreamer-0.10/registry.i686.xml r, /home//Desktop/** r, /usr/bin/totem-video-thumbnailer mr, }	over 4 years ago	Import of jmichaels profiles	257	dominic	Edit	History
opensuse10.3	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/base> /usr/sbin/sshd mr, }	over 4 years ago		271	sebastian	Edit	History
opensuse11.0	/usr/lib64/thunderbird/thunderbird.sh	#include <tunables/global> /usr/lib64/thunderbird/thunderbird.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/basename rix, /bin/bash ix, /bin/grep rix, /dev/tty rw, /etc/fonts/** r, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/* r, /etc/gtk-2.0/gdk-pixbuf64.loaders r, /etc/gtk-2.0/gtk64.immodules r, /etc/gtk-2.0/gtkrc r, /etc/magic r, /etc/mailcap r, /etc/mime.types r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/pango64.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.fontconfig/59e5c0affdd6bccc8f589a5c5c6f8d20-le64.cache-3 r, owner /home//.fonts.conf r, owner /home//.gtkrc-2.0-kde4 r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/applications/mimeinfo.cache r, owner /home//.local/share/applications/wine-extension-txt.desktop r, owner /home//.local/share/icons/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.mozilla/extensions/\{3550f703-e582-4d05-9a08-453d09bdfdc6\}/ r, owner /home//.thunderbird/2hg611if.default/ r, owner /home//.thunderbird/2hg611if.default/.parentlock wk, /home//.thunderbird/2hg611if.default/Cache/* rw, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/ r, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX rw, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.msf rw, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.sbd/ r, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.sbd/Archives.msf w, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.sbd/Drafts-1.msf rw, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.sbd/Sent-1 rw, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.sbd/Sent-1.msf rw, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.sbd/Templates.msf w, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/INBOX.sbd/Trash.msf rw, owner /home//.thunderbird/2hg611if.default/ImapMail/secureimap.t-online.de/msgFilterRules.dat r, owner "/home//.thunderbird/2hg611if.default/Mail/Local Folders/" r, owner "/home//.thunderbird/2hg611if.default/Mail/Local Folders/Archives.sbd/" r, owner "/home//.thunderbird/2hg611if.default/Mail/Local Folders/Archives.sbd/2009.sbd/" r, owner "/home//.thunderbird/2hg611if.default/Mail/Local Folders/Archives.sbd/2010.sbd/" r, owner "/home//.thunderbird/2hg611if.default/Mail/Local Folders/Archives.sbd/2011.sbd/" r, owner "/home//.thunderbird/2hg611if.default/Mail/Local Folders/Inbox.msf" rw, owner "/home//.thunderbird/2hg611if.default/Mail/smart mailboxes/" r, owner "/home//.thunderbird/2hg611if.default/Mail/smart mailboxes/Drafts.msf" rw, owner "/home//.thunderbird/2hg611if.default/Mail/smart mailboxes/Inbox.msf" rw, owner "/home//.thunderbird/2hg611if.default/Mail/smart mailboxes/Sent.msf" rw, owner "/home//.thunderbird/2hg611if.default/Mail/smart mailboxes/Trash.msf" rw, owner /home//.thunderbird/2hg611if.default/XPC.mfasl r, owner /home//.thunderbird/2hg611if.default/XUL.mfasl r, owner /home//.thunderbird/2hg611if.default/abook.mab rw, owner /home//.thunderbird/2hg611if.default/cert8.db rw, owner /home//.thunderbird/2hg611if.default/compatibility.ini r, owner /home//.thunderbird/2hg611if.default/compreg.dat r, owner /home//.thunderbird/2hg611if.default/cookies.sqlite rwk, owner /home//.thunderbird/2hg611if.default/extensions.cache r, owner /home//.thunderbird/2hg611if.default/extensions.ini r, owner /home//.thunderbird/2hg611if.default/extensions/ r, owner /home//.thunderbird/2hg611if.default/folderTree.json rw, owner /home//.thunderbird/2hg611if.default/global-messages-db.sqlite rwk, owner /home//.thunderbird/2hg611if.default/global-messages-db.sqlite-journal rw, owner /home//.thunderbird/2hg611if.default/history.mab rw, owner /home//.thunderbird/2hg611if.default/impab.mab rw, owner /home//.thunderbird/2hg611if.default/key3.db rw, owner /home//.thunderbird/2hg611if.default/localstore-1.rdf rw, owner /home//.thunderbird/2hg611if.default/localstore.rdf rw, owner /home//.thunderbird/2hg611if.default/lock w, owner /home//.thunderbird/2hg611if.default/mailViews.dat r, owner /home//.thunderbird/2hg611if.default/mimeTypes-1.rdf rw, owner /home//.thunderbird/2hg611if.default/mimeTypes.rdf rw, owner /home//.thunderbird/2hg611if.default/panacea.dat rw, owner /home//.thunderbird/2hg611if.default/permissions.sqlite rwk, owner /home//.thunderbird/2hg611if.default/prefs-1.js rw, owner /home//.thunderbird/2hg611if.default/prefs.js rw, owner /home//.thunderbird/2hg611if.default/secmod.db r, owner /home//.thunderbird/2hg611if.default/session.json rw, owner /home//.thunderbird/2hg611if.default/signons.sqlite rwk, owner /home//.thunderbird/2hg611if.default/training.dat r, owner /home//.thunderbird/2hg611if.default/traits.dat r, owner /home//.thunderbird/2hg611if.default/virtualFolders.dat rw, owner /home//.thunderbird/2hg611if.default/xpti.dat r, owner "/home//.thunderbird/Crash Reports/InstallTime2011090700" r, owner /home//.thunderbird/profiles.ini r, owner /home//Dokumente/signatur.txt r, /opt/kde3/share/applications/mimeinfo.cache r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, /proc/cpuinfo r, /proc/filesystems r, /proc/meminfo r, /tmp/ r, /tmp/* rw, owner /tmp/etilqs_yYTdscKvms88ozg rw, owner /tmp/nscopy.tmp rw, owner /tmp/nsemail.eml rw, owner /tmp/nsmail.txt rw, /usr/lib64/ mr, /usr/lib64/thunderbird/thunderbird-bin rix, /usr/share/applications/kde4/kwrite.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/applications/writer.desktop r, /usr/share/fonts/ r, /usr/share/icons/ r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/Oxygen_White/cursors/00008160000006810000408080010102 r, /usr/share/icons/Oxygen_White/cursors/e-resize r, /usr/share/icons/Oxygen_White/cursors/ibeam r, /usr/share/icons/Oxygen_White/cursors/left_ptr r, /usr/share/icons/Oxygen_White/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/icons/oxygen/16x16/actions/dialog-cancel.png r, /usr/share/icons/oxygen/16x16/actions/document-print-preview.png r, /usr/share/icons/oxygen/16x16/actions/document-print.png r, /usr/share/icons/oxygen/16x16/actions/document-save-as.png r, /usr/share/icons/oxygen/16x16/actions/edit-clear.png r, /usr/share/icons/oxygen/16x16/actions/edit-delete.png r, /usr/share/icons/oxygen/16x16/actions/edit-find.png r, /usr/share/icons/oxygen/16x16/actions/format-justify-left.png r, /usr/share/icons/oxygen/16x16/actions/format-text-bold.png r, /usr/share/icons/oxygen/16x16/actions/format-text-italic.png r, /usr/share/icons/oxygen/16x16/actions/format-text-underline.png r, /usr/share/icons/oxygen/16x16/actions/window-close.png r, /usr/share/icons/oxygen/16x16/places/folder.png r, /usr/share/icons/oxygen/22x22/actions/document-save.png r, /usr/share/icons/oxygen/22x22/actions/tools-check-spelling.png r, /usr/share/icons/oxygen/icon-theme.cache r, /usr/share/icons/oxygen/index.theme r, /usr/share/locale-bundle/de/LC_MESSAGES/GConf2.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/mime/mime.cache r, /usr/share/mime/text/plain.xml r, /usr/share/misc/magic.mgc r, owner /usr/share/mozilla/extensions/\{3550f703-e582-4d05-9a08-453d09bdfdc6\}/ w, /usr/share/myspell/de_DE.aff r, /usr/share/myspell/de_DE.dic r, /usr/share/pixmaps/ r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Buttons/button-active.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Buttons/button-hover.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Buttons/button-normal.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Check-Radio/menucheck1.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/ListHeaders/list_header.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Menu-Menubar/menu.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Menu-Menubar/menuitem.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Scrollbars/scroll-thumb-vert.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Scrollbars/slider-vert.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Scrollbars/stepper-down.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Scrollbars/stepper-up-insens.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Scrollbars/trough-scrollbar-vert.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Shadows/entry.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Shadows/null.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Tabs/notebook-top.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Tabs/null2.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Tabs/null2l.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/Tabs/tab-top-active.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/arrows/arrow-down.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/arrows/arrow-right.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/arrows/arrow-up.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/gtkrc r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/icons.rc r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/h1.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/line-h.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/line-v.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/menubar.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/progressbar-fill.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/progressbar.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/resize_grip.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/toolbar.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/v1.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/others/windowbg.png r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/panel.rc r, /usr/share/themes/Oxygen-Molecule/gtk-2.0/scrollbar.rc r, /var/cache/fontconfig/* r, /var/cache/gio-2.0/defaults.list r, /var/tmp/ r, }	7 months ago		25	dodoApparmor	Edit	History
opensuse10.3	/bin/date	#include <tunables/global> /bin/date flags=(complain) { #include <abstractions/base> /bin/date mr, }	over 2 years ago		142	long	Edit	History
opensuse11.0	/usr/bin/gnomesu	#include <tunables/global> /usr/bin/gnomesu { #include <abstractions/base> /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/* r, /etc/gtk-2.0/* r, /etc/nsswitch.conf r, /etc/pango/* r, /etc/passwd r, /etc/sound/events/* r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.esd_auth r, owner /home//.fontconfig/* r, owner /home//.icons/ r, /sbin/yast2 cx, /tmp/ r, /tmp/.X11-unix/X0 w, owner /tmp/.esd-1000/socket rw, owner /tmp/gconfd-brian/lock/ior r, owner /tmp/orbit- w, owner /tmp/orbit-brian/ w, owner /tmp/orbit-brian/* w, /usr/bin/bug-buddy rix, /usr/bin/gnomesu mr, /usr/lib/ mr, /usr/lib/libgnomesu/gnomesu-pam-backend cx, /usr/share/X11/locale/C/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/icons/ r, /usr/share/icons/ r, /usr/share/pixmaps/ r, /usr/share/themes/** r, /var/cache/fontconfig/* r, /var/run/nscd/socket w, profile /sbin/yast2 { } profile /usr/lib/libgnomesu/gnomesu-pam-backend { capability setgid, capability setuid, owner /dev/urandom r, owner /etc/environment r, owner /etc/group r, owner /etc/ld.so.cache r, owner /etc/login.defs r, owner /etc/nsswitch.conf r, owner /etc/pam.d/* r, owner /etc/passwd r, owner /etc/security/* r, owner /etc/shadow r, /lib/ld-2.8.so rix, owner /lib/libso mr, owner /lib/security/pam_.so mr, owner /lib/xcrypt/libxcrypt_2a.so. mr, owner /proc/sys/kernel/ngroups_max r, owner /root/* w, /usr/bin/xauth rix, owner /usr/lib/libso mr, /usr/lib/libgnomesu/* mr, owner /var/run/nscd/socket w, } }	over 3 years ago	...	204	knotwurk	Edit	History
opensuse10.3	/usr/bin/zypper	#include <tunables/global> /usr/bin/zypper flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability fsetid, capability ipc_lock, /bin/cp ixr, /bin/rpm Ux, /etc/rpm/ r, /etc/rpm/macros.* r, /etc/sysconfig/proxy r, /etc/sysconfig/storage r, /etc/zypp/repos.d/ r, /etc/zypp/repos.d/.repo r, /etc/zypp/zypp.conf r, /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /proc/stat r, /sys/bus/ r, /usr/bin/gpg2 ixr, /usr/bin/zypper mr, /usr/share/zypp/schema/ r, /var/adm/mount/ rw, /var/cache/zypp/ r, /var/cache/zypp/raw/** rw, /var/cache/zypp/zypp.db krw, /var/cache/zypp/zypp.db-journal w, /var/lib/rpm/ w, /var/lib/rpm/Basenames r, /var/lib/rpm/Name r, /var/lib/rpm/Packages kr, /var/lib/zypp/db/languages/ r, /var/lib/zypp/db/patches/ r, /var/lib/zypp/db/patterns/ r, /var/lib/zypp/db/patterns/* r, /var/lib/zypp/db/products/ r, /var/lib/zypp/db/products/* r, /var/lib/zypp/db/selections/ r, /var/log/zypper.log w, /var/run/zypp.pid krw, /var/tmp/ rw, }	over 4 years ago	more updates	217	jmichael	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/firefox/firefox.sh mr, }	over 4 years ago	firefox	272	Falko_Gehde	Edit	History
opensuse10.3	/usr/lib/control-center-2.0/novell-sysconfig-proxy-helper	#include <tunables/global> /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/sysconfig/proxy r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper mr, }	over 4 years ago	Import of jmichaels profiles	331	dominic	Edit	History
ubuntu-gutsy	/usr/bin/evince	#include <tunables/global> /usr/bin/evince { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/dash ixr, /etc/esound/esd.conf r, /etc/sound/events/.soundlist r, /home//* rw, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.icons/OSX_Cursors_v0.2/cursors/ r, /home//Desktop/.pdf r, /proc//mounts r, /proc/meminfo r, /usr/bin/evince mr, /usr/local/share/icons/ r, /usr/share/evince/.glade r, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/**/ r, }	over 4 years ago	gnome	190	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gnome-volume-manager	#include <tunables/global> /usr/bin/gnome-volume-manager { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc//mounts r, /usr/bin/gnome-volume-manager mr, /var/run/console/ r, }	over 4 years ago	gnome	204	hbpteam	Edit	History
opensuse10.3	/usr/bin/gnome-at-visual	#include <tunables/global> /usr/bin/gnome-at-visual { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/gconftool-2 Pxmr, /usr/bin/gnome-at-visual mr, }	over 4 years ago	Import of jmichaels profiles	215	dominic	Edit	History
opensuse10.3	/usr/lib/cups/daemon/cups-deviced	#include <tunables/global> /usr/lib/cups/daemon/cups-deviced flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability setgid, capability setuid, /bin/bash ixr, /proc/meminfo r, /usr/bin/smbspool Px, /usr/lib/cups/backend/ r, /usr/lib/cups/backend/beh Px, /usr/lib/cups/backend/hal Px, /usr/lib/cups/backend/ipp Px, /usr/lib/cups/backend/lpd Px, /usr/lib/cups/backend/novell Px, /usr/lib/cups/backend/parallel Px, /usr/lib/cups/backend/pipe Px, /usr/lib/cups/backend/scsi Px, /usr/lib/cups/backend/serial Px, /usr/lib/cups/backend/snmp Px, /usr/lib/cups/backend/socket Px, /usr/lib/cups/backend/usb Px, /usr/lib/cups/daemon/cups-deviced mr, }	over 4 years ago	cups testing	326	dominic	Edit	History
opensuse11.0	/sbin/rpcbind	#include <tunables/global> /sbin/rpcbind flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, owner /etc/hosts.allow r, owner /etc/hosts.deny r, owner /etc/netconfig r, owner /var/run/rpcbind.lock ak, owner /var/run/rpcbind.sock w, }	about 1 year ago	rpcbindchangelog	64	klintholmes	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> deny capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /etc/magic r, /usr/bin/file rix, /usr/lib/firefox/firefox px, /usr/share/misc/magic.mgc r, }	about 1 year ago		76	aanta	Edit	History
opensuse11.0	/usr/bin/smbclient	#include <tunables/global> /usr/bin/smbclient flags=(complain) { #include <abstractions/base> }	over 2 years ago	initial	91	jeffray847	Edit	History
opensuse10.3	/usr/bin/totem-video-thumbnailer	#include <tunables/global> /usr/bin/totem-video-thumbnailer { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home//.gstreamer-0.10/registry.i686.xml r, /home//Desktop/** r, /usr/bin/totem-video-thumbnailer mr, }	over 4 years ago	none	219	cinimod	Edit	History
opensuse10.3	/bin/ps	#include <tunables/global> /bin/ps { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability sys_admin, capability sys_ptrace, /bin/ps mr, /proc/ r, /proc//attr/current r, /proc//cmdline r, /proc//stat r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, }	over 4 years ago	none	173	cinimod	Edit	History
opensuse11.0	/sbin/rpcbind	#include <tunables/global> /sbin/rpcbind flags=(complain) { #include <abstractions/base> }	about 1 year ago	rpcbindchangelog	78	ellir1a	Edit	History
opensuse11.0	/usr/bin/which	#include <tunables/global> /usr/bin/which { #include <abstractions/base> }	over 2 years ago	x	112	pone13	Edit	History
ubuntu-gutsy	/etc/cron.daily/apt	#include <tunables/global> /etc/cron.daily/apt { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability setgid, capability setuid, /bin/dash ixr, /bin/dd ixr, /bin/sleep ixr, /bin/which ixr, /etc/apt/apt.conf.d/ r, /etc/apt/apt.conf.d/* r, /etc/apt/sources.list r, /etc/apt/sources.list.d/ r, /etc/cron.daily/apt mr, /etc/sudoers r, /proc//fd/ r, /proc//mounts r, /proc/acpi/ac_adapter/ r, /proc/sys/kernel/ngroups_max r, /sbin/on_ac_power ixr, /usr/bin/apt-config ixr, /usr/bin/apt-get ixr, /usr/bin/cksum ixr, /usr/bin/cut ixr, /usr/bin/gconftool-2 ixr, /usr/bin/getent ixr, /usr/bin/sudo ixr, /var/cache/apt/ w, /var/cache/apt/pkgcache.bin rw, /var/cache/apt/srcpkgcache.bin rw, /var/lib/apt/* r, /var/lib/apt/lists/* r, /var/lib/dpkg/* r, /var/lib/dpkg/lock krw, /var/lib/dpkg/updates/ r, /var/run/utmp krw, }	over 2 years ago		101	stive	Edit	History
opensuse10.3	/opt/kde3/bin/kaffeine	#include <tunables/global> /opt/kde3/bin/kaffeine { #include <abstractions/base> #include <abstractions/nameservice> / r, /bin/ r, /boot/ r, /dev/ r, /dev/snd/* rw, /dev/sr0 r, /etc/ r, /etc/X11/kstylerc r, /etc/X11/qt_plugins_3.3rc r, /etc/X11/qtrc r, /etc/exports r, /etc/fonts/ r, /etc/fstab r, /etc/kde3rc r, /etc/mtab r, /etc/opt/kde3/share/config/kioslaverc r, /etc/opt/kde3/share/icons// r, /etc/rpc r, /etc/security/fileshare.conf r, /home/ r, /home//* r, /home//.dvdcss/ rw, /home//.kde/share/apps/kaffeine/* rw, /home//.kde/share/config/ lrw, /home//.qt/ krw, /home//.xine/catalog.cache rw, /home//.xine/config rw, /home//.xine/config~ w, /lib/ r, /lib64/ r, /media/ r, /media/* r, /mnt/ r, /opt/ r, /opt/kde3/bin/kaffeine mr, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib64/* mr, /opt/kde3/lib64/kde3/* mr, /opt/kde3/lib64/kde3/plugins/styles/ r, /opt/kde3/lib64/kde3/plugins/styles/* mr, /opt/kde3/share/apps/kaffeine/ r, /opt/kde3/share/config/kdeglobals r, /opt/kde3/share/config/profilerc r, /opt/kde3/share/config/ui/ui_standards.rc r, /opt/kde3/share/icons/ r, /opt/kde3/share/locale-bundle/nb/LC_MESSAGES/* r, /opt/kde3/share/locale/nb/LC_MESSAGES/* r, /proc/ r, /sbin/ r, /srv/ r, /sys/ r, /tmp/ r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/* w, /tmp/ksocket-n5/* w, /usr/ r, /usr/lib64/** mr, /usr/share/X11/* r, /usr/share/X11/locale/* r, /usr/share/X11/locale/en_US.UTF-8/* r, /usr/share/alsa/ r, /usr/share/desktop-data/qtrc r, /usr/share/fonts/ r, /usr/share/icons/ r, /usr/share/xine/ r, /var/ r, /var/cache/fontconfig/* r, /var/cache/libx11/compose/* r, /var/tmp/kdecache-n5/ksycoca r, /vol/ r, /vol/** r, /windows/ r, }	over 3 years ago		136	Zanmato	Edit	History
opensuse10.3	/usr/sbin/NetworkManagerDispatcher	#include <tunables/global> /usr/sbin/NetworkManagerDispatcher { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/ r, /etc/NetworkManager/dispatcher.d/autofs Px, /etc/NetworkManager/dispatcher.d/netcontrol_global_hooks Px, /etc/NetworkManager/dispatcher.d/netcontrol_services Px, /etc/NetworkManager/dispatcher.d/nfs Px, /etc/NetworkManager/dispatcher.d/privoxy Px, /proc/meminfo r, /usr/sbin/NetworkManagerDispatcher mr, /var/run/NetworkManagerDispatcher.pid w, }	over 4 years ago	Import of jmichaels profiles	282	dominic	Edit	History
opensuse10.3	/usr/lib/GConf/2/gconfd-2	# $Id: usr.lib.GConf.2.gconfd-2 735 2007-06-11 05:17:30Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/GConf/2/gconfd-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.defaults/schemas/ r, /etc/gconf/gconf.xml.mandatory r, /usr/lib/GConf/2/gconfd-2 rmix, /usr/lib/GConf/2/libgconfbackend-xml.so mr, /usr/lib64/GConf/2/libgconfbackend-xml.so mr, /usr/share/locale/ r, @{HOME}/.gconf r, @{HOME}/.gconf/ lrw, @{HOME}/.gconfd/** lrw, }	over 4 years ago	20071015	270	davepl	Edit	History
opensuse10.3	/etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh	#include <tunables/global> /etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh mr, /proc/meminfo r, /usr/sbin/sabayon-apply Px, }	over 4 years ago	none	180	cinimod	Edit	History
opensuse11.0	/sbin/rpcbind	#include <tunables/global> /sbin/rpcbind { #include <abstractions/base> owner /sbin/rpcbind r, owner /var/run/rpcbind.lock rk, }	about 1 year ago	rpcbindchangelog	67	dweidman	Edit	History
opensuse11.0	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/base> }	over 2 years ago	apparmor.sshd.changelog	136	elemgee	Edit	History
opensuse10.3	/opt/kde3/bin/kioexec	#include <tunables/global> /opt/kde3/bin/kioexec flags=(complain) { #include <abstractions/base> #include <abstractions/kde> #include <abstractions/nameservice> /cur/tmp/ w, /home/ r, /home//.kde/share// rw, /home//.kde/share/config/ rw, /home//.qt/ krw, /opt/ r, /opt/kde3/bin/kioexec mr, /opt/kde3/bin/kpdf px, /usr/ r, /usr/lib/RealPlayer10/realplay px, }	over 3 years ago	weiÃnich	187	shivver-fox	Edit	History
ubuntu-gutsy	/usr/bin/gnome-splashscreen-manager	#include <tunables/global> /usr/bin/gnome-splashscreen-manager { #include <abstractions/base> /usr/bin/env ix, /usr/bin/gnome-splashscreen-manager mr, }	over 4 years ago	gnome	367	hbpteam	Edit	History
opensuse10.3	/home/dominic/bin/test_lock.pl	#include <tunables/global> /home/dominic/bin/test_lock.pl flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/bash ixr, /bin/ls ixmr, /home/dominic/bin/test_lock.pl mr, /home/dominic/lock_test kw, /home/dominic/src/svn/ r, /home/dominic/src/svn/novell/ r, /home/dominic/src/svn/novell/trunk.dev/** r, /tmp/ r, /usr/bin/flock ixr, /var/tmp/ r, }	over 4 years ago	stuff	259	dominic_2	Edit	History
opensuse10.3	/usr/bin/gimp-2.2	#include <tunables/global> /usr/bin/gimp-2.2 { #include <abstractions/base> /usr/bin/gimp-2.2 mr, }	over 4 years ago	initial gimp profile	199	jmichael	Edit	History
opensuse10.3	/usr/lib/cups/daemon/cups-deviced	#include <tunables/global> /usr/lib/cups/daemon/cups-deviced flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/perl> #include <abstractions/python> capability setgid, capability setuid, /bin/bash ixr, /dev/bus/usb/ r, /dev/bus/usb/** rw, /dev/lp0 rw, /dev/ttyS0 w, /dev/tty{} w, /proc/meminfo r, /root/.hplip/hplip.conf r, /usr/bin/env ixr, /usr/bin/perl ix, /usr/bin/python2.5 ixr, /usr/bin/smbspool ixr, /usr/lib/cups/backend/beh ixr, /usr/lib/cups/backend/canon ixr, /usr/lib/cups/backend/epson ixr, /usr/lib/cups/backend/hal ixr, /usr/lib/cups/backend/hp ixr, /usr/lib/cups/backend/hpfax ixr, /usr/lib/cups/backend/ipp ixr, /usr/lib/cups/backend/lpd ixr, /usr/lib/cups/backend/parallel ixr, /usr/lib/cups/backend/pipe ixr, /usr/lib/cups/backend/scsi ixr, /usr/lib/cups/backend/serial ixr, /usr/lib/cups/backend/snmp ixr, /usr/lib/cups/backend/socket ixr, /usr/lib/cups/backend/usb ixr, /usr/lib/cups/daemon/cups-deviced mr, /usr/share/hplip/.py r, /usr/share/hplip/*.pyc r, }	over 4 years ago		308	dhughes	Edit	History
opensuse11.0	/home/darkfine/.flock/flock-browser	#include <tunables/global> /home/darkfine/.flock/flock-browser flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		80	darkfine	Edit	History
opensuse11.0	/opt/google/picasa/3.0/bin/picasa	#include <tunables/global> /opt/google/picasa/3.0/bin/picasa flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		122	mormoe	Edit	History
ubuntu-gutsy	/etc/cron.daily/man-db	#include <tunables/global> /etc/cron.daily/man-db { #include <abstractions/base> #include <abstractions/perl> #include <abstractions/user-manpages> capability chown, capability setgid, capability setuid, / r, /bin/chown ixr, /bin/dash ixr, /etc/cron.daily/man-db mr, /etc/group r, /etc/manpath.config r, /etc/nsswitch.conf r, /etc/passwd r, /sbin/start-stop-daemon ixr, /usr/bin/find ixr, /usr/bin/perl ix, /usr/bin/xargs ixr, /usr/lib/ mr, /usr/lib/man-db/manconv ixr, /usr/lib/man-db/mandb ixr, /usr/man/ r, /usr/sbin/dpkg-statoverride ixr, /usr/share/man/ r, /usr/share/perl/ r, /usr/share/perl5/ r, /var/cache/ r, /var/cache/man/ rw, /var/cache/man/ krw, /var/lib/dpkg/* r, }	over 3 years ago		218	stive	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		240	sylwek	Edit	History
opensuse10.3	/usr/sbin/NetworkManagerDispatcher	#include <tunables/global> /usr/sbin/NetworkManagerDispatcher { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/ r, /etc/NetworkManager/dispatcher.d/autofs Px, /etc/NetworkManager/dispatcher.d/netcontrol_global_hooks Px, /etc/NetworkManager/dispatcher.d/netcontrol_services Px, /etc/NetworkManager/dispatcher.d/nfs Px, /etc/NetworkManager/dispatcher.d/privoxy Px, /proc/meminfo r, /usr/sbin/NetworkManagerDispatcher mr, /var/run/NetworkManagerDispatcher.pid w, }	over 4 years ago	none	274	cinimod	Edit	History
ubuntu-gutsy	/usr/lib/libgconf2-4/gconfd-2	#include <tunables/global> /usr/lib/libgconf2-4/gconfd-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.defaults/%%gconf-tree.xml r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.mandatory/%%gconf-tree.xml r, /home//.gconf/ r, /home//.gconf/.testing.writeability w, /home//.gconf/apps/ r, /home//.gconf/apps/deskbar/* rw, /home//.gconf/apps/evolution/ rw, /home//.gconf/apps/evolution/.xml rw, /home//.gconf/apps/evolution/addressbook/ r, /home//.gconf/apps/evolution/calendar/ r, /home//.gconf/apps/evolution/calendar/display/ r, /home//.gconf/apps/evolution/calendar/memos/ r, /home//.gconf/apps/evolution/calendar/notify/ r, /home//.gconf/apps/evolution/calendar/tasks/ r, /home//.gconf/apps/evolution/mail/ r, /home//.gconf/apps/evolution/mail/.new rw, /home//.gconf/apps/evolution/memos/ r, /home//.gconf/apps/evolution/memos/* r, /home//.gconf/apps/evolution/shell/ r, /home//.gconf/apps/evolution/shell/.new rw, /home//.gconf/apps/evolution/shell/view_defaults/ r, /home//.gconf/apps/evolution/shell/view_defaults/.new rw, /home//.gconf/apps/evolution/shell/view_defaults/folder_bar/ r, /home//.gconf/apps/evolution/shell/view_defaults/folder_bar/.new rw, /home//.gconf/apps/evolution/tasks/ r, /home//.gconf/apps/gnome-screensaver/%%gconf.xml.new rw, /home//.gconf/apps/gnome-screensaver/.xml rw, /home//.gconf/apps/metacity/ r, /home//.gconf/apps/metacity/.xml r, /home//.gconf/apps/metacity/general/ r, /home//.gconf/apps/metacity/general/.xml r, /home//.gconf/apps/nautilus/ r, /home//.gconf/apps/nautilus/preferences/.xml r, /home//.gconf/apps/panel/ r, /home//.gconf/apps/panel/applets/clock_screen0/ r, /home//.gconf/apps/panel/applets/clock_screen0/.xml rw, /home//.gconf/apps/panel/applets/clock_screen0/prefs/ r, /home//.gconf/apps/panel/applets/clock_screen0/prefs/.new rw, /home//.gconf/apps/panel/applets/clock_screen0/prefs/timezones/ r, /home//.gconf/apps/panel/applets/clock_screen0/prefs/timezones/.new rw, /home//.gconf/apps/panel/applets/deskbar_screen0/ r, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/ r, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/prefs/ r, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/prefs/.new rw, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/prefs/.xml rw, /home//.gconf/apps/panel/applets/mixer_screen0/ r, /home//.gconf/apps/panel/applets/notification_area_screen0/ r, /home//.gconf/apps/panel/applets/show_desktop_button_screen0/ r, /home//.gconf/apps/panel/applets/trashapplet_screen0/ r, /home//.gconf/apps/panel/applets/window_list_screen0/ r, /home//.gconf/apps/panel/applets/window_list_screen0/prefs/ r, /home//.gconf/apps/panel/applets/window_list_screen0/prefs/.new rw, /home//.gconf/apps/panel/applets/window_list_screen0/prefs/.xml rw, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/ r, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/*.xml rw, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/prefs/ r, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/prefs/.new rw, /home//.gconf/apps/panel/general/.xml r, /home//.gconf/apps/panel/toplevels/ r, /home//.gconf/apps/panel/toplevels/bottom_panel_screen0/ r, /home//.gconf/apps/panel/toplevels/bottom_panel_screen0/.xml r, /home//.gconf/apps/panel/toplevels/bottom_panel_screen0/background/%%gconf.xml r, /home//.gconf/desktop/ r, /home//.gconf/desktop/gnome/ r, /home//.gconf/desktop/gnome/.xml r, /home//.gconf/desktop/gnome/accessibility/ r, /home//.gconf/desktop/gnome/accessibility/keyboard/.xml r, /home//.gconf/desktop/gnome/applications/ r, /home//.gconf/desktop/gnome/applications/window_manager/.new rw, /home//.gconf/desktop/gnome/applications/window_manager/.xml rw, /home//.gconf/desktop/gnome/background/%%gconf.xml r, /home//.gconf/desktop/gnome/font_rendering/.xml r, /home//.gconf/desktop/gnome/peripherals/ r, /home//.gconf/desktop/gnome/peripherals/keyboard/ r, /home//.gconf/desktop/gnome/peripherals/keyboard/%%gconf.xml r, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /tmp/gconfd-void/lock/0t1193126927ut222865u1000p17459r1477785876k3219965624 kw, /usr/lib/libgconf2-4/gconfd-2 mr, /var/lib/gconf/debian.defaults/ r, /var/lib/gconf/debian.defaults/.xml r, /var/lib/gconf/defaults/ r, /var/lib/gconf/defaults/.xml r, }	over 4 years ago	gnome	405	hbpteam	Edit	History
opensuse10.3	/usr/lib/thunderbird/thunderbird.sh	#include <tunables/global> /usr/lib/thunderbird/thunderbird.sh { #include <abstractions/base> #include <abstractions/bash> /bin/basename Px, /bin/bash ix, /usr/bin/aoss px, /usr/bin/which px, /usr/lib/thunderbird/thunderbird.sh mr, }	over 4 years ago	20071015	277	davepl	Edit	History
opensuse10.3	/etc/gdm/Init/Default	#include <tunables/global> /etc/gdm/Init/Default { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/uname Px, /etc/gdm/Init/Default mr, /proc/meminfo r, /usr/bin/setxkbmap Px, /usr/bin/xmodmap Px, /usr/bin/xrdb Px, }	over 4 years ago	Import of jmichaels profiles	253	dominic	Edit	History
ubuntu-gutsy	/usr/bin/basename	#include <tunables/global> /usr/bin/basename { #include <abstractions/base> /usr/bin/basename mr, }	over 4 years ago	gnome	266	hbpteam	Edit	History
opensuse10.3	/etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh	#include <tunables/global> /etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/X11/xinit/xinitrc.d/sabayon-xinitrc.sh mr, /proc/meminfo r, /usr/sbin/sabayon-apply Px, }	over 4 years ago	Import of jmichaels profiles	192	dominic	Edit	History
opensuse11.0	/bin/dd	#include <tunables/global> /bin/dd flags=(complain) { #include <abstractions/base> }	6 months ago	teste	21	edufraga	Edit	History
opensuse11.0	/bin/arch	#include <tunables/global> /bin/arch flags=(complain) { #include <abstractions/base> }	over 3 years ago	ravee1	272	ravee	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c rw, /dev/snd/pcmC0D0p rw, /dev/snd/pcmC0D1c rw, /dev/snd/pcmC0D2c rw, /dev/snd/pcmC0D2p rw, /dev/snd/pcmC0D3c rw, /dev/snd/pcmC0D4p rw, /dev/snd/pcmC1D0c rw, /dev/snd/timer r, /etc/fonts/** r, /etc/gai.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.mozilla/ r, /home//.mozilla/eclipse/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox/wl87hxn7.default/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/favicons/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/images/ r, /home//.mozilla/firefox/wl87hxn7.default/adblockplus/ r, /home//.mozilla/firefox/wl87hxn7.default/bookmarkbackups/ r, /home//.mozilla/firefox/wl87hxn7.default/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/images/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/skin/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/prefs.js r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5393 w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/ICH4.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/fonts/* r, /usr/share/icons/DMZ-White/cursor.theme r, /usr/share/icons/DMZ-White/cursors/arrow r, /usr/share/icons/DMZ-White/cursors/double_arrow r, /usr/share/icons/DMZ-White/cursors/xterm r, /usr/share/icons/DMZ-White/index.theme r, /usr/share/icons/Human/index.theme r, /usr/share/icons/Tangerine/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/skype/** kr, /var/cache/fontconfig/059138ec877db160474b4d5de1248d14-x86.cache-2 r, /var/cache/fontconfig/089dead882dea3570ffc31a9898cfb69-x86.cache-2 r, /var/cache/fontconfig/0f32d3adc6a232110812e17374eaa446-x86.cache-2 r, /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2 r, /var/cache/fontconfig/102e5142c2e9e50c5e8ece26694a2dad-x86.cache-2 r, /var/cache/fontconfig/118d8d5311348bbdf5fe3b106d7c13d4-x86.cache-2 r, /var/cache/fontconfig/142ecfc435bad6f1fbc2648c1119d5eb-x86.cache-2 r, /var/cache/fontconfig/20bd79ad97094406f7d1b9654bfbd926-x86.cache-2 r, /var/cache/fontconfig/21a99156bb11811cef641abeda519a45-x86.cache-2 r, /var/cache/fontconfig/2561679576a9c7fd2ce41d281d4e00d1-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4123634e9c08547d899d0aaff05ebe69-x86.cache-2 r, /var/cache/fontconfig/4794a0821666d79190d59a36cb4f44b5-x86.cache-2 r, /var/cache/fontconfig/4c599c202bc5c08e2d34565a40eac3b2-x86.cache-2 r, /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2 r, /var/cache/fontconfig/61c830dfac3fd78a12654da5e9ba3f56-x86.cache-2 r, /var/cache/fontconfig/6330322105e0c4105d7c7a6ea2974107-x86.cache-2 r, /var/cache/fontconfig/6333f38776742d18e214673cd2c24e34-x86.cache-2 r, /var/cache/fontconfig/6386b86020ecc1ef9690bb720a13964f-x86.cache-2 r, /var/cache/fontconfig/646addb8444faa74ee138aa00ab0b6a0-x86.cache-2 r, /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2 r, /var/cache/fontconfig/707971e003b4ae6c8121c3a920e507f5-x86.cache-2 r, /var/cache/fontconfig/75a2cd575a62c63e802c11411fb87c37-x86.cache-2 r, /var/cache/fontconfig/7b4a97c10f6c0166998ddfa1cf7392fb-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8ab5f685cd6d8ba67c37c908faf08172-x86.cache-2 r, /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2 r, /var/cache/fontconfig/92a571655fb1c0ec1c4d6f496220600a-x86.cache-2 r, /var/cache/fontconfig/9404ff413c67fc2a1526fd14eb4163a8-x86.cache-2 r, /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2 r, /var/cache/fontconfig/9c0624108b9a2ae8552f664125be8356-x86.cache-2 r, /var/cache/fontconfig/a1131b7be650f9abae4907495aa5815d-x86.cache-2 r, /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86.cache-2 r, /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2 r, /var/cache/fontconfig/a960c40fc9306f090224a04585f8a963-x86.cache-2 r, /var/cache/fontconfig/b21a91cee725896328b8cee8091cf747-x86.cache-2 r, /var/cache/fontconfig/b3fedf7c409f006ca1a6fceffceb77cf-x86.cache-2 r, /var/cache/fontconfig/b5a4f3f568a71026ccdc6a3a51afa9b4-x86.cache-2 r, /var/cache/fontconfig/b8613a33de00eecd32d5a94c3c617829-x86.cache-2 r, /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2 r, /var/cache/fontconfig/c855463f699352c367813e37f3f70ea7-x86.cache-2 r, /var/cache/fontconfig/cabbd14511b9e8a55e92af97fb3a0461-x86.cache-2 r, /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2 r, /var/cache/fontconfig/d82eb4fd963d448e2fcb7d7b793b5df3-x86.cache-2 r, /var/cache/fontconfig/da1bd5ca8443ffe22927a23ce431d198-x86.cache-2 r, /var/cache/fontconfig/ddc79d3ea06a7c6ffa86ede85f3bb5df-x86.cache-2 r, /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2 r, /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2 r, /var/cache/fontconfig/e0f9e95429e756d56293ed4d63866094-x86.cache-2 r, /var/cache/fontconfig/e13b20fdb08344e0e664864cc2ede53d-x86.cache-2 r, /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2 r, /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2 r, /var/cache/fontconfig/e7071f4a29fa870f4323321c154eba04-x86.cache-2 r, /var/cache/fontconfig/e9e44584608a73233979f764b5f9dd81-x86.cache-2 r, /var/cache/fontconfig/eeebfc908bd29a90773fd860017aada4-x86.cache-2 r, /var/cache/fontconfig/f5a93ac943883aa0fd9a7bfe0f6ec3c1-x86.cache-2 r, /var/cache/fontconfig/f71c1c7b3f795e5e20ad4a8800a9d397-x86.cache-2 r, /var/cache/fontconfig/fcff1cd55d48a2c86a175e9943c3506d-x86.cache-2 r, /var/cache/fontconfig/fd9416c4b92f07c6f59a3a8cf496e9dc-x86.cache-2 r, /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86.cache-2 r, /var/cache/fontconfig/fe547fea3a41b43a38975d292a2b19c7-x86.cache-2 r, /var/lib/defoma/fontconfig.d/fonts.conf r, }	over 4 years ago		327	guyome	Edit	History
ubuntu-gutsy	/usr/bin/wavbreaker	#include <tunables/global> /usr/bin/wavbreaker { #include <abstractions/base> /usr/bin/wavbreaker mr, }	over 4 years ago	gnome	211	hbpteam	Edit	History
opensuse10.3	/usr/bin/kde4	#include <tunables/global> /usr/bin/kde4 { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/kde4 mr, }	over 4 years ago	none	219	cinimod	Edit	History
opensuse10.3	/sbin/chkconfig	#include <tunables/global> /sbin/chkconfig flags=(complain) { #include <abstractions/base> #include <abstractions/perl> /etc/init.d/ r, /etc/init.d/* r, /etc/init.d/boot.d/ r, /etc/init.d/rc*.d/ r, /etc/xinetd.d/ r, /sbin/chkconfig mr, /sbin/runlevel Px, /usr/bin/perl ix, }	over 4 years ago	argh, switch things back to complain for a while	247	jmichael	Edit	History
opensuse10.3	/bin/dbus-daemon	#include <tunables/global> /bin/dbus-daemon { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/nameservice> capability dac_override, capability setgid, capability setuid, /bin/dbus-daemon mr, /etc/dbus-1/session.conf r, /etc/dbus-1/system.conf r, /etc/dbus-1/system.d/ r, /etc/dbus-1/system.d/.conf r, /usr/bin/helix-dbus-server Px, /usr/lib/control-center-2.0/gnome-settings-daemon Px, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon Px, /usr/lib/notification-daemon-1.0/notification-daemon Px, /usr/share/dbus-1/services/ r, /usr/share/dbus-1/services/.service r, /var/run/dbus/pid w, }	over 4 years ago	none	295	cinimod	Edit	History
opensuse10.3	/usr/lib/cups/backend/beh	#include <tunables/global> /usr/lib/cups/backend/beh flags=(complain) { #include <abstractions/base> #include <abstractions/perl> /usr/bin/perl ix, /usr/lib/cups/backend/beh mr, }	over 4 years ago	cups testing	299	dominic	Edit	History
opensuse11.0	/etc/init.d/apache2	#include <tunables/global> /etc/init.d/apache2 { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	about 1 year ago	apparmor-profil	58	oreuter	Edit	History
opensuse10.3	/opt/google-earth/googleearth-bin	#include <tunables/global> /opt/google-earth/googleearth-bin { #include <abstractions/base> /opt/google-earth/googleearth-bin mr, /opt/google-earth/libQt3Support.so.* mr, /opt/google-earth/libQtCore.so.* mr, /opt/google-earth/libQtGui.so.* mr, /opt/google-earth/libQtNetwork.so.* mr, /opt/google-earth/libQtSql.so.* mr, /opt/google-earth/libQtXml.so.* r, /opt/google-earth/libQtXml.so.4 mr, /opt/google-earth/libbase.so r, /opt/google-earth/libgcc_s.so.* mr, /opt/google-earth/libgoogleearth_lib.so mr, /opt/google-earth/libstdc\+\+.so.* r, /opt/google-earth/libstdc\+\+.so.6 mr, }	over 3 years ago		324	mathias	Edit	History
opensuse10.3	/games/cod4/cod4_lnxded	#include <tunables/global> /games/cod4/cod4_lnxded flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /games/cod4/cod4_lnxded mr, }	over 3 years ago		177	hbree	Edit	History
opensuse10.3	/etc/gdm/Init/Default	#include <tunables/global> /etc/gdm/Init/Default { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/uname Px, /etc/gdm/Init/Default mr, /proc/meminfo r, /usr/bin/setxkbmap Px, /usr/bin/xmodmap Px, /usr/bin/xrdb Px, }	over 4 years ago	none	234	cinimod	Edit	History
opensuse10.3	/usr/sbin/NetworkManager	#include <tunables/global> /usr/sbin/NetworkManager { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/nameservice> capability net_admin, capability net_raw, capability sys_module, network packet packet, /etc/resolv.conf w, /etc/resolv.conf.tmp rw, /etc/sysconfig/network/ r, /etc/sysconfig/network/dhcp r, /proc/net/psched r, /sbin/ip Px, /usr/lib/NetworkManager/nm-crash-logger Px, /usr/sbin/NetworkManager mr, /usr/sbin/nscd Px, /usr/sbin/wpa_supplicant Px, /var/run/NetworkManager.pid w, /var/run/NetworkManager/wpa_ctrl_* w, /var/run/wpa_supplicant-global w, /var/run/wpa_supplicant/* w, }	over 4 years ago	Import of jmichaels profiles	244	dominic	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	about 1 month ago	http-initd	7	lordssyndicate	Edit	History
ubuntu-gutsy	/usr/bin/id	#include <tunables/global> /usr/bin/id flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /proc/*/mounts r, /proc/filesystems r, /usr/bin/id mr, }	over 4 years ago	gnome	298	hbpteam	Edit	History
opensuse10.3	/usr/lib/nautilus-cd-burner/mapping-daemon	#include <tunables/global> /usr/lib/nautilus-cd-burner/mapping-daemon flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /tmp/mapping-* w, /tmp/virtual-*/ w, /usr/lib/nautilus-cd-burner/mapping-daemon mr, }	over 4 years ago	argh, switch things back to complain for a while	316	jmichael	Edit	History
ubuntu-gutsy	/usr/bin/kchmviewer	#include <tunables/global> /usr/bin/kchmviewer { #include <abstractions/base> /usr/bin/kchmviewer mr, }	over 4 years ago	gnome	311	hbpteam	Edit	History
opensuse10.3	/bin/dbus-daemon	#include <tunables/global> /bin/dbus-daemon { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability dac_override, capability setgid, capability setuid, /bin/dbus-daemon mr, /etc/dbus-1/session.conf r, /etc/dbus-1/system.conf r, /etc/dbus-1/system.d/ r, /etc/dbus-1/system.d/.conf r, /etc/opt/kde3/share/ r, /home// r, /home//.local/share/ r, /home//.strigi/.conf rw, /home//.strigi/clucene/* r, /home//.strigi/lock kw, /home//.strigi/socket w, /opt/kde3/share/ r, /usr/bin/helix-dbus-server Px, /usr/bin/knotify4 Px, /usr/bin/strigidaemon Pxmr, /usr/lib/control-center-2.0/gnome-settings-daemon Px, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon Px, /usr/lib/notification-daemon-1.0/notification-daemon Px, /usr/lib/strigi/.so mr, /usr/share/dbus-1/services/ r, /usr/share/dbus-1/services/.service r, /usr/share/strigi/** r, /var/run/dbus/pid w, }	over 4 years ago		299	dominic	Edit	History
opensuse11.0	/usr/bin/wine	#include <tunables/global> /usr/bin/wine flags=(complain) { #include <abstractions/base> }	about 1 year ago	windows Anwendungen	79	falk	Edit	History
opensuse11.0	/bin/dbus-daemon	#include <tunables/global> /bin/dbus-daemon { #include <abstractions/base> }	over 2 years ago		74	Andyrip1983	Edit	History
opensuse11.0	/usr/bin/strip	#include <tunables/global> /usr/bin/strip { #include <abstractions/base> }	over 2 years ago	zcnnnnzc	145	zczc2311	Edit	History
opensuse10.3	/usr/sbin/NetworkManager	#include <tunables/global> /usr/sbin/NetworkManager { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/nameservice> capability net_admin, capability net_raw, capability sys_module, network packet packet, /etc/resolv.conf w, /etc/resolv.conf.tmp rw, /etc/sysconfig/network/ r, /etc/sysconfig/network/dhcp r, /proc/net/psched r, /sbin/ip Px, /usr/lib/NetworkManager/nm-crash-logger Px, /usr/sbin/NetworkManager mr, /usr/sbin/nscd Px, /usr/sbin/wpa_supplicant Px, /var/run/NetworkManager.pid w, /var/run/NetworkManager/wpa_ctrl_* w, /var/run/wpa_supplicant-global w, /var/run/wpa_supplicant/* w, }	over 4 years ago	none	199	cinimod	Edit	History
opensuse11.0	/root/tarek.sh	#include <tunables/global> /root/tarek.sh { #include <abstractions/base> }	over 3 years ago		168	tarek	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename flags=(complain) { #include <abstractions/base> /bin/basename mr, }	over 4 years ago		368	overwrite	Edit	History
opensuse10.3	/bin/netstat	#include <tunables/global> /bin/netstat flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability sys_ptrace, /bin/netstat mr, /proc/ r, /proc//cmdline r, /proc//fd/ r, /proc/net/ r, /proc/net/* r, }	over 4 years ago	argh, switch things back to complain for a while	220	jmichael	Edit	History
opensuse11.0	/etc/apparmor.d/usr.sbin.httpd2-prefork	#include <tunables/global> /etc/apparmor.d/usr.sbin.httpd2-prefork { #include <abstractions/base> }	about 1 year ago	1	31	black	Edit	History
opensuse10.3	/usr/lib/cyrus/bin/tls_prune	#include <tunables/global> /usr/lib/cyrus/bin/tls_prune { #include <abstractions/base> /etc/imapd.* r, /mnt/mail/config/ rw, /usr/lib/cyrus/bin/tls_prune mr, /var/lib/imap/ rw, }	over 4 years ago		175	arclyde	Edit	History
opensuse10.3	/usr/bin/libssui-tool	#include <tunables/global> /usr/bin/libssui-tool { #include <abstractions/base> /usr/bin/libssui-tool mr, }	over 4 years ago	none	275	cinimod	Edit	History
opensuse11.0	/usr/local/CrushFTP5_PC/crushftp_init2.sh	#include <tunables/global> /usr/local/CrushFTP5_PC/crushftp_init2.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		66	dirty_a	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /** r, /etc/gre.d/ r, owner /home//.beagle/socket w, /home//.beagle/socket r, owner /home//.config/gtk-2.0/ w, /home//.config/gtk-2.0/ r, owner /home//.config/qtcurve.gtk-colors w, /home//.config/qtcurve.gtk-colors r, owner /home//.config/qtcurve.gtk-icons w, /home//.config/qtcurve.gtk-icons r, owner /home//.mozilla/firefox/* w, /home//.mozilla/firefox/* r, owner /home//.mozilla/firefox//* wk, /home//.mozilla/firefox//* r, owner /home//.mozilla/firefox//Cache.Trash/ w, owner /var/mozilla//.mozilla/firefox/* w, /var/mozilla//.mozilla/firefox/* r, owner /var/mozilla//.mozilla/firefox//* wk, /var/mozilla//.mozilla/firefox//* r, owner /var/mozilla//.mozilla/firefox//Cache.Trash/ w, }	over 2 years ago	setupd	136	Anon	Edit	History
opensuse10.3	/usr/bin/claws-mail	#include <tunables/global> /usr/bin/claws-mail flags=(complain) { #include <abstractions/base> /home/vljliljlv/.claws-mail/tagsrc w, /home/vljliljlv/rajakarta/queue/ r, /usr/bin/claws-mail mr, }	over 3 years ago	claws-mail log	246	praanap	Edit	History
opensuse10.3	/usr/sbin/clamd	#include <tunables/global> /usr/sbin/clamd flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, /etc/clamd.conf r, /usr/sbin/clamd mr, /var/lib/clamav/ r, /var/lib/clamav/** krw, }	over 4 years ago	clamd	243	kaizer	Edit	History
opensuse10.3	/usr/lib/gnome-keyring-1/gnome-keyring-ask	#include <tunables/global> /usr/lib/gnome-keyring-1/gnome-keyring-ask { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /home//.Xauthority r, /home//.fontconfig/* r, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /usr/lib/gnome-keyring-1/gnome-keyring-ask mr, }	over 4 years ago	none	185	cinimod	Edit	History
opensuse11.0	/bin/basename	#include <tunables/global> /bin/basename { deny /dev/urandom r, deny /etc/ld.so.cache r, /bin/basename mr, /lib/ld-.so mrcx, /lib/libc-2.8.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/* r, /usr/share/locale/locale.alias r, profile /lib/ld-2.8.so { } }	over 3 years ago		222	philodoxia	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_nice, /bin/basename rix, owner /bin/bash r, /bin/bash ix, /bin/grep rix, owner /dev/tty rw, owner /etc/gnome-vfs-2.0/modules/ r, owner /etc/gnome-vfs-2.0/modules/default-modules.conf r, owner /etc/gnome-vfs-2.0/modules/smb-module.conf r, owner /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, owner /etc/gre.d/ r, owner /etc/gre.d/* r, owner /etc/gtk-2.0/* r, owner /etc/magic r, owner /etc/mailcap r, owner /etc/mime.types r, owner /etc/opt/kde3/share/applications/ r, owner /etc/opt/kde3/share/applications/* r, owner /etc/pango/pango.modules r, owner /opt/kde3/share/applications/ r, owner /opt/kde3/share/applications/mimeinfo.cache r, owner /opt/kde3/share/icons/ r, owner /opt/kde3/share/icons/** r, owner /proc//mounts r, owner /proc/meminfo r, owner /root/.ICEauthority r, owner /root/.beagle/ToIndex/ rw, owner /root/.mozilla/extensions// r, owner /root/.mozilla/firefox/* rwk, owner /tmp/ r, owner /tmp/.X11-unix/* w, owner /tmp/orbit-root/ w, owner /tmp/orbit-root/* w, /usr/bin/file rix, owner /usr/lib/ mw, /usr/lib/ r, /usr/lib/firefox/firefox rix, /usr/lib/firefox/firefox.sh rix, owner /usr/share/applications/ r, owner /usr/share/applications/mimeinfo.cache r, owner /usr/share/doc// r, owner /usr/share/gvfs/remote-volume-monitors/ r, owner /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, owner /usr/share/gvfs/remote-volume-monitors/hal.monitor r, owner /usr/share/icons/ r, owner /usr/share/icons/* r, owner /usr/share/mime/mime.cache r, owner /usr/share/misc/magic.mgc r, owner /usr/share/mozilla/extensions/ r, owner /usr/share/pixmaps/ r, owner /usr/share/themes/Gilouche/ r, owner /var/cache/gio-2.0/defaults.list r, owner /var/run/dbus/system_bus_socket w, owner /var/run/gdm/auth-for-root-otNJlI/database r, owner /var/tmp/ rw, }	over 3 years ago		185	mdemoulin	Edit	History
opensuse10.3	/usr/lib/gnome-screensaver/gnome-screensaver-dialog	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-dialog { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /home//.Xauthority r, /home//.fontconfig/* lrw, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/unix2_chkpwd Px, /usr/bin/gdmflexiserver Px, /usr/bin/hal-find-by-property Pxmr, /usr/lib/gnome-screensaver/gnome-screensaver-dialog mr, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/gnome-screensaver/*.glade r, }	over 4 years ago	none	209	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/gconftool-2	#include <tunables/global> /usr/bin/gconftool-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /usr/bin/gconftool-2 mr, }	over 4 years ago	gnome	245	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/nqmgr	# $Id: usr.lib.postfix.nqmgr 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/nqmgr { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/postfix/main.cf r, /usr/lib/postfix/nqmgr rmix, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/local w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/smtp w, /{var/spool/postfix/,}public/flush w, /{var/spool/postfix/,}public/qmgr r, }	over 3 years ago		176	stive	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		253	rbedger	Edit	History
opensuse10.3	/usr/lib/gnome-keyring-1/gnome-keyring-ask	#include <tunables/global> /usr/lib/gnome-keyring-1/gnome-keyring-ask { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /home//.Xauthority r, /home//.fontconfig/* r, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /usr/lib/gnome-keyring-1/gnome-keyring-ask mr, }	over 4 years ago	Import of jmichaels profiles	193	dominic	Edit	History
opensuse11.0	/usr/bin/gnome-terminal	#include <tunables/global> /usr/bin/gnome-terminal flags=(complain) { #include <abstractions/base> ^null-f { capability sys_ptrace, } }	about 1 year ago		71	Alexander Gorobets	Edit	History
opensuse11.0	/usr/bin/vlc	#include <tunables/global> /usr/bin/vlc flags=(complain) { #include <abstractions/base> }	over 3 years ago		271	antonin_s	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	dave3	268	shot211	Edit	History
opensuse10.3	/usr/sbin/cron	#include <tunables/global> /usr/sbin/cron flags=(complain) { #include <abstractions/base> /usr/sbin/cron mr, }	over 4 years ago		275	rm2011	Edit	History
opensuse10.3	/usr/lib/gnome-screensaver/gnome-screensaver-dialog	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-dialog { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /home//.Xauthority r, /home//.fontconfig/* lrw, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/unix2_chkpwd Px, /usr/bin/gdmflexiserver Px, /usr/bin/hal-find-by-property Pxmr, /usr/lib/gnome-screensaver/gnome-screensaver-dialog mr, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/gnome-screensaver/*.glade r, }	over 4 years ago	Import of jmichaels profiles	230	dominic	Edit	History
opensuse10.3	/usr/lib/NetworkManager/nm-crash-logger	#include <tunables/global> /usr/lib/NetworkManager/nm-crash-logger { #include <abstractions/base> /usr/lib/NetworkManager/nm-crash-logger mr, }	over 4 years ago	Import of jmichaels profiles	217	dominic	Edit	History
opensuse10.3	/sbin/syslog-ng	# $Id$ # ------------------------------------------------------------------ # # Copyright (C) 2006 Novell/SUSE # Copyright (C) 2006 Christian Boltz # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslog-ng { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability fowner, capability fsetid, capability sys_tty_config, /dev/log w, /dev/tty10 rw, /dev/xconsole rw, /etc/syslog-ng/* r, /etc/hosts.deny r, /etc/hosts.allow r, /sbin/syslog-ng mr, /var/lib//dev/log w, /var/log/* w, /var/run/syslog-ng.pid w, }	over 4 years ago	Remove duplicate "/etc/syslog-ng/* r" line.	323	mtomaschewski	Edit	History
opensuse10.3	/usr/bin/banshee	#include <tunables/global> /usr/bin/banshee flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.config/banshee/* r, /home//.config/banshee/banshee.db krw, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml mrw, /home//.gstreamer-0.10/registry.i686.xml.tmp rw, /home//.icons/ r, /home//.local/share/icons/ r, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /usr/bin/banshee mr, /usr/bin/mono ixr, /usr/lib/banshee/.dll mr, /usr/lib/banshee/banshee.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/share/banshee/.xml r, /usr/share/banshee/audio-profiles/ r, /usr/share/fonts/* mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	argh, switch things back to complain for a while	246	jmichael	Edit	History
opensuse10.3	/home/dominic/bin/test_lock.pl	#include <tunables/global> /home/dominic/bin/test_lock.pl { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/bash ixr, /bin/ls ixmr, /home/dominic/bin/test_lock.pl mr, /home/dominic/lock_test kw, /home/dominic/src/svn/ r, /home/dominic/src/svn/novell/ r, /home/dominic/src/svn/novell/trunk.dev/** r, /tmp/ r, /usr/bin/flock ixr, /var/tmp/ r, }	over 4 years ago	none	223	cinimod	Edit	History
opensuse10.3	/usr/sbin/squid	# $Id: usr.sbin.squid 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/squid flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> capability setgid, capability setuid, /dev/tty rw, /etc/mtab r, /etc/squid/* r, /usr/lib/squid/* rmix, /usr/sbin/digest_pw_auth rmix, /usr/sbin/diskd rmix, /usr/sbin/getpwname_auth rmix, /usr/sbin/ip_user_check rmix, /usr/sbin/msnt_auth rmix, /usr/sbin/ncsa_auth rmix, /usr/sbin/no_check.pl rmix, /usr/sbin/ntlm_auth rmix, /usr/sbin/pam_auth rmix, /usr/sbin/rcsquid rmix, /usr/sbin/smb_auth rmix, /usr/sbin/smb_auth.pl rmix, /usr/sbin/smb_auth.sh rmix, /usr/sbin/squid rmix, /usr/sbin/squid_ldap_auth rmix, /usr/sbin/squid_ldap_group rmix, /usr/sbin/squid_ldapauth rmix, /usr/sbin/squid_unix_group rmix, /usr/sbin/squidclient rmix, /usr/sbin/unlinkd rmix, /usr/sbin/wbinfo_group.pl rmix, /usr/sbin/yp_auth rmix, /usr/share/squid/ r, /var/cache/squid/ lrw, /var/log/squid/access.log w, /var/log/squid/cache.log rw, /var/log/squid/store.log w, /var/run/squid.pid lrw, @{PROC}/[0-9]*/mounts r, @{PROC}/mounts r, }	over 4 years ago		148	squid	Edit	History
ubuntu-gutsy	/tmp/upxBCN1WMIANOG	#include <tunables/global> /tmp/upxBCN1WMIANOG flags=(complain) { #include <abstractions/base> /tmp/upxBCN1WMIANOG mr, }	over 4 years ago	lkdxjlk	208	snide	Edit	History
opensuse10.3	/opt/kde3/bin/kpdf	#include <tunables/global> /opt/kde3/bin/kpdf { #include <abstractions/base> /opt/kde3/bin/kpdf mr, /opt/kde3/lib64/libDCOP.so.* mr, /opt/kde3/lib64/libkdecore.so.* mr, /opt/kde3/lib64/libkdefx.so.* mr, /opt/kde3/lib64/libkdesu.so.* mr, /opt/kde3/lib64/libkdeui.so.* mr, /opt/kde3/lib64/libkio.so.* mr, /opt/kde3/lib64/libkparts.so.* mr, /opt/kde3/lib64/libkwalletclient.so.* mr, /tmp/.X11-unix/* w, }	over 4 years ago		357	kijo387	Edit	History
ubuntu-gutsy	/usr/lib/evolution/2.12/evolution-exchange-storage	#include <tunables/global> /usr/lib/evolution/2.12/evolution-exchange-storage { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.evolution/.db rw, /home//.evolution/.db~ rw, /home//.gnome2_private/ w, /proc/*/mounts r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/lib/evolution/2.12/evolution-exchange-storage mr, }	over 4 years ago	gnome	337	hbpteam	Edit	History
opensuse10.3	/usr/sbin/saslauthd	#include <tunables/global> /usr/sbin/saslauthd { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, /etc/saslauthd.conf r, /usr/sbin/saslauthd mr, /var/run/sasl2/* krw, }	over 4 years ago		277	jco	Edit	History
opensuse10.3	/usr/lib/NetworkManager/nm-crash-logger	#include <tunables/global> /usr/lib/NetworkManager/nm-crash-logger { #include <abstractions/base> /usr/lib/NetworkManager/nm-crash-logger mr, }	over 4 years ago	none	206	cinimod	Edit	History
opensuse10.3	/usr/lib64/jvm/java-1.6.0.u4-sun-1.6.0.u4/jre/bin/java	#include <tunables/global> /usr/lib64/jvm/java-1.6.0.u4-sun-1.6.0.u4/jre/bin/java flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> /bin/bash ixr, /dev/tty rw, /etc/sysconfig/clock r, /proc//maps r, /proc/meminfo r, /proc/net/if_inet6 r, /proc/net/ipv6_route r, /proc/stat r, /tmp/* mrw, /usr/bin/readlink ixr, /usr/lib64/** mr, /usr/lib64/jvm/java-1.6.0.u4-sun-1.6.0.u4/jre/bin/java.bin ixr, /usr/local/BGBillingServer/data/data.properties r, /usr/local/BGBillingServer/data/log4j.properties r, /usr/local/BGBillingServer/lib/ r, /usr/local/BGBillingServer/lib/activation.jar mr, /usr/local/BGBillingServer/lib/annotations-api.jar mr, /usr/local/BGBillingServer/lib/avalon-framework.jar mr, /usr/local/BGBillingServer/lib/batik.jar mr, /usr/local/BGBillingServer/lib/bsh-1.3.0.jar mr, /usr/local/BGBillingServer/lib/call.jar mr, /usr/local/BGBillingServer/lib/catalina.jar mr, /usr/local/BGBillingServer/lib/commons-beanutils.jar mr, /usr/local/BGBillingServer/lib/commons-chain.jar mr, /usr/local/BGBillingServer/lib/commons-collections.jar mr, /usr/local/BGBillingServer/lib/commons-dbcp-1.1.jar mr, /usr/local/BGBillingServer/lib/commons-digester.jar mr, /usr/local/BGBillingServer/lib/commons-el.jar mr, /usr/local/BGBillingServer/lib/commons-logging.jar mr, /usr/local/BGBillingServer/lib/commons-pool-1.1.jar mr, /usr/local/BGBillingServer/lib/cos.jar mr, /usr/local/BGBillingServer/lib/dialup.jar mr, /usr/local/BGBillingServer/lib/fop-hyph.jar mr, /usr/local/BGBillingServer/lib/fop.jar mr, /usr/local/BGBillingServer/lib/gnu-crypto.jar mr, /usr/local/BGBillingServer/lib/image-filters.jar mr, /usr/local/BGBillingServer/lib/jasper-compiler-jdt.jar mr, /usr/local/BGBillingServer/lib/jasper-compiler.jar mr, /usr/local/BGBillingServer/lib/jasper-jdt.jar mr, /usr/local/BGBillingServer/lib/jasper-runtime.jar mr, /usr/local/BGBillingServer/lib/jasper.jar mr, /usr/local/BGBillingServer/lib/jasperreports.jar mr, /usr/local/BGBillingServer/lib/jcommon.jar mr, /usr/local/BGBillingServer/lib/jetty-util.jar mr, /usr/local/BGBillingServer/lib/jetty.jar mr, /usr/local/BGBillingServer/lib/jfreechart.jar mr, /usr/local/BGBillingServer/lib/jsch.jar mr, /usr/local/BGBillingServer/lib/jstl.jar mr, /usr/local/BGBillingServer/lib/ldap.jar mr, /usr/local/BGBillingServer/lib/log4j-1.2.8.jar mr, /usr/local/BGBillingServer/lib/mail.jar mr, /usr/local/BGBillingServer/lib/mysql-5.0.3.jar mr, /usr/local/BGBillingServer/lib/npay.jar mr, /usr/local/BGBillingServer/lib/reports.jar mr, /usr/local/BGBillingServer/lib/serializer.jar mr, /usr/local/BGBillingServer/lib/server.jar mr, /usr/local/BGBillingServer/lib/servlet.jar mr, /usr/local/BGBillingServer/lib/smack.jar mr, /usr/local/BGBillingServer/lib/smackx.jar mr, /usr/local/BGBillingServer/lib/snmp4_13.jar mr, /usr/local/BGBillingServer/lib/standard.jar mr, /usr/local/BGBillingServer/lib/struts-core.jar mr, /usr/local/BGBillingServer/lib/struts-taglib.jar mr, /usr/local/BGBillingServer/lib/struts-tiles.jar mr, /usr/local/BGBillingServer/lib/tomcat-coyote.jar mr, /usr/local/BGBillingServer/lib/tomcat-juli.jar mr, /usr/local/BGBillingServer/lib/xalan.jar mr, /usr/local/BGBillingServer/lib/xercesImpl.jar mr, /usr/local/BGBillingServer/log/dataloader.log w, /usr/local/BGBillingServer/log/scheduler.log w, /usr/local/BGBillingServer/log/scheduler.out w, /usr/local/BGBillingServer/log/script.log w, /usr/local/BGBillingServer/log/server.log w, /usr/share/zoneinfo/ r, }	over 3 years ago	andrew	237	gankov	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/privoxy	#include <tunables/global> /etc/NetworkManager/dispatcher.d/privoxy { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/privoxy mr, /etc/init.d/privoxy Px, /proc/meminfo r, /sbin/chkconfig Px, }	over 4 years ago	none	175	cinimod	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { }	over 4 years ago	skype_neu	234	spiky781	Edit	History
opensuse10.3	/usr/sbin/ntpdate	#include <tunables/global> /usr/sbin/ntpdate flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability sys_nice, capability sys_time, /etc/gai.conf r, /proc/meminfo r, /usr/sbin/ntpdate mr, /var/run/nscd/services r, }	over 4 years ago	argh, switch things back to complain for a while	197	jmichael	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		225	sudakovi	Edit	History
opensuse11.0	/bin/netstat	#include <tunables/global> /bin/netstat { #include <abstractions/base> capability dac_override, capability sys_ptrace, owner /bin/netstat r, owner /proc/ r, /proc//cmdline r, /proc//fd/ r, owner /proc//net/raw r, owner /proc//net/raw6 r, owner /proc//net/tcp r, owner /proc//net/tcp6 r, owner /proc//net/udp r, owner /proc//net/udp6 r, owner /proc/*/net/unix r, }	over 3 years ago		174	zamnet	Edit	History
opensuse10.3	/usr/bin/gnome-cups-icon	#include <tunables/global> /usr/bin/gnome-cups-icon { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.cups/lpoptions r, /home//.gnome2_private/ w, /tmp/orbit-*/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/gnome-cups-icon mr, /var/run/cups/cups.sock w, /var/run/nscd/services r, }	over 4 years ago	none	278	cinimod	Edit	History
opensuse10.3	/usr/sbin/postfix	#include <tunables/global> /usr/sbin/postfix { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /bin/bash ixr, /bin/egrep ixr, /bin/grep ixr, /bin/ls ixmr, /bin/uname ixr, /dev/console rw, /dev/tty rw, /etc/gai.conf r, /etc/postfix/ r, /etc/postfix/dynamicmaps.cf r, /etc/postfix/main.cf r, /etc/postfix/master.cf r, /etc/postfix/post-install r, /etc/postfix/postfix-files r, /etc/postfix/postfix-script ixr, /etc/postfix/relocated.db krw, /etc/postfix/transport.db krw, /etc/postfix/virtual.db krw, /proc/meminfo r, /proc/net/if_inet6 r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/cmp ixr, /usr/bin/find ixr, /usr/lib/postfix/bounce ixr, /usr/lib/postfix/error ixr, /usr/lib/postfix/master ixr, /usr/lib/postfix/pickup ixr, /usr/lib/postfix/qmgr ixr, /usr/lib/postfix/smtp ixr, /usr/lib/postfix/trivial-rewrite ixr, /usr/sbin/ r, /usr/sbin/postconf ixr, /usr/sbin/postfix mr, /usr/sbin/postlog ixr, /usr/sbin/postqueue ixr, /usr/sbin/postsuper ixr, /usr/sbin/sendmail r, /usr/share/doc/packages/postfix/README_FILES/QMQP_README r, /var/run/nscd/services r, /var/spool/postfix/ r, /var/spool/postfix/active/ r, /var/spool/postfix/active/100091AF41CB krw, /var/spool/postfix/active/4BE3E1AF41C1 krw, /var/spool/postfix/active/4CE981AF41C2 krw, /var/spool/postfix/active/644E71AF41C4 krw, /var/spool/postfix/active/A3C3F1AF41B0 krw, /var/spool/postfix/active/BDB231AF41B6 krw, /var/spool/postfix/active/CAE441AF41C0 krw, /var/spool/postfix/bounce/ r, /var/spool/postfix/corrupt/ r, /var/spool/postfix/defer/ r, /var/spool/postfix/defer/1/ r, /var/spool/postfix/defer/1/100091AF41CB kw, /var/spool/postfix/defer/4/ r, /var/spool/postfix/defer/4/4BE3E1AF41C1 kw, /var/spool/postfix/defer/4/4CE981AF41C2 kw, /var/spool/postfix/defer/6/ r, /var/spool/postfix/defer/6/644E71AF41C4 kw, /var/spool/postfix/defer/A/ r, /var/spool/postfix/defer/A/A3C3F1AF41B0 kw, /var/spool/postfix/defer/B/ r, /var/spool/postfix/defer/B/BDB231AF41B6 kw, /var/spool/postfix/defer/C/ r, /var/spool/postfix/defer/C/CAE441AF41C0 kw, /var/spool/postfix/deferred/ r, /var/spool/postfix/deferred/1/ r, /var/spool/postfix/deferred/1/100091AF41CB rw, /var/spool/postfix/deferred/4/ r, /var/spool/postfix/deferred/4/4BE3E1AF41C1 rw, /var/spool/postfix/deferred/4/4CE981AF41C2 rw, /var/spool/postfix/deferred/6/ r, /var/spool/postfix/deferred/6/644E71AF41C4 rw, /var/spool/postfix/deferred/A/ r, /var/spool/postfix/deferred/A/A3C3F1AF41B0 rw, /var/spool/postfix/deferred/B/ r, /var/spool/postfix/deferred/B/BDB231AF41B6 rw, /var/spool/postfix/deferred/C/ r, /var/spool/postfix/deferred/C/CAE441AF41C0 rw, /var/spool/postfix/flush/ r, /var/spool/postfix/hold/ r, /var/spool/postfix/incoming/ r, /var/spool/postfix/maildrop/ r, /var/spool/postfix/pid/master.pid krw, /var/spool/postfix/pid/unix.defer krw, /var/spool/postfix/pid/unix.retry krw, /var/spool/postfix/pid/unix.smtp krw, /var/spool/postfix/private/ r, /var/spool/postfix/private/anvil w, /var/spool/postfix/private/bounce w, /var/spool/postfix/private/bsmtp w, /var/spool/postfix/private/cyrus w, /var/spool/postfix/private/defer w, /var/spool/postfix/private/discard w, /var/spool/postfix/private/error w, /var/spool/postfix/private/ifmail w, /var/spool/postfix/private/lmtp w, /var/spool/postfix/private/local w, /var/spool/postfix/private/maildrop w, /var/spool/postfix/private/procmail w, /var/spool/postfix/private/proxymap w, /var/spool/postfix/private/relay w, /var/spool/postfix/private/retry w, /var/spool/postfix/private/rewrite w, /var/spool/postfix/private/scache w, /var/spool/postfix/private/smtp w, /var/spool/postfix/private/trace w, /var/spool/postfix/private/uucp w, /var/spool/postfix/private/verify w, /var/spool/postfix/private/virtual w, /var/spool/postfix/public/ r, /var/spool/postfix/public/cleanup w, /var/spool/postfix/public/flush w, /var/spool/postfix/public/pickup rw, /var/spool/postfix/public/qmgr rw, /var/spool/postfix/public/showq w, /var/spool/postfix/trace/ r, }	over 4 years ago		247	milos	Edit	History
opensuse11.0	/usr/bin/epiphany	#include <tunables/global> /usr/bin/epiphany flags=(complain) { #include <abstractions/base> }	about 1 year ago		42	lukasjaeger	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/privoxy	#include <tunables/global> /etc/NetworkManager/dispatcher.d/privoxy { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/privoxy mr, /etc/init.d/privoxy Px, /proc/meminfo r, /sbin/chkconfig Px, }	over 4 years ago	Import of jmichaels profiles	163	dominic	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> capability kill, capability net_bind_service, capability setgid, capability setuid, /etc/apache2/*.conf r, /etc/apache2/conf.d/ r, /etc/apache2/vhosts.d/ r, /etc/mime.types r, /proc//attr/current w, /usr/lib/*.so mr, /usr/sbin/httpd2-prefork mr, /var/log/apache2/access_log w, /var/log/apache2/error_log w, /var/run/httpd2.pid w, } /usr/sbin/httpd2-prefork///manual { /proc//attr/current w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork///~dominic/thinking-rock.ics { /home//public_html/thinking-rock.ics r, /proc//attr/current w, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork//DEFAULT_URI { #include <abstractions/nameservice> /home//.html r, /proc//attr/current w, /usr/share/.var r, /usr/share/apache2/error/.html r, /var/log/apache2/access_log w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /proc/*/attr/current w, }	over 4 years ago	none	199	cinimod	Edit	History
opensuse10.3	/sbin/dhclient	#include <tunables/global> /sbin/dhclient flags=(complain) { #include <abstractions/base> capability net_bind_service, capability net_raw, network inet dgram, network packet packet, /etc/dhclient.conf r, /etc/resolv.conf w, /etc/resolv.conf.saved.by.dhclient rw, /proc/net/dev r, /sbin/dhclient mr, /sbin/dhclient-script Px, /var/lib/dhcp/dhclient-.leases rw, /var/lib/dhcp/dhclient.leases rw, /var/run/dhclient-.pid rw, /var/run/dhclient.pid rw, /var/run/nscd/services r, /var/run/nscd/socket w, }	over 4 years ago	allow -d gdb option for firefox plus other misc updates	222	jmichael	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^null-1159 { /dev/urandom r, } ^null-1af { /dev/shm/ r, owner /dev/shm/pulse-shm-1336710452 r, owner /dev/shm/pulse-shm-1701642870 r, owner /dev/shm/pulse-shm-2439352966 r, owner /dev/shm/pulse-shm-2441896503 rw, /dev/urandom r, /etc/ld.so.cache r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/pulse/client.conf r, /etc/resolv.conf r, /etc/services r, owner /home//.esd_auth r, owner /home//.mozilla/** r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/0438DB5Bd01 rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/45A3934Ed01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/643FBE4Bd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/75BE42DDd01 rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/9B59C0CDd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/A47014BDd01 rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/AA689699d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/AC969064d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/B541EE9Dd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/C80991C2d01 rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/CF73296Fd01 rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/F89A0BDAd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_003_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/XPC.mfasl rw, owner /home//.mozilla/firefox/9bgr3l2j.default/XUL.mfasl rw, owner /home//.mozilla/firefox/9bgr3l2j.default/content-prefs.sqlite rk, owner /home//.mozilla/firefox/9bgr3l2j.default/cookies.sqlite w, owner /home//.mozilla/firefox/9bgr3l2j.default/cookies.sqlite-journal w, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/icon.png r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/icon.png r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3\}/content/extovl.xul r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3\}/content/pie.png r, owner /home//.mozilla/firefox/9bgr3l2j.default/places.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/places.sqlite-journal rw, owner /home//.mozilla/firefox/9bgr3l2j.default/pluginreg.dat rw, owner /home//.mozilla/firefox/9bgr3l2j.default/prefs-1.js w, owner /home//.mozilla/firefox/9bgr3l2j.default/sessionstore-1.js w, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifier3.sqlite-journal w, owner /home//.pki/nssdb/cert9.db rk, owner /home//.pki/nssdb/key4.db rk, owner /home//.pulse-cookie rwk, /lib/libso mr, /proc/meminfo r, /usr/lib/browser-plugins/ r, /usr/lib/firefox/chrome/icons/default/default16.png r, /usr/lib/firefox/chrome/icons/default/default32.png r, /usr/lib/firefox/chrome/icons/default/default48.png r, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/gnome-vfs-2.0/modules/libfile.so mr, /usr/lib/jvm/java-1.6.0-openjdk-1.6.0/jre/lib/i386/IcedTeaPlugin.so mr, /usr/lib/libso mr, /usr/lib/libcanberra-0.18/libcanberra-pulse.so mr, /usr/lib/locale/ r, /usr/lib/pango/1.6.0/modules/pango-arabic-fc.so mr, /usr/lib/pango/1.6.0/modules/pango-arabic-lang.so mr, /usr/lib/pango/1.6.0/modules/pango-thai-fc.so mr, /usr/lib/xulrunner-1.9.2.4/dictionaries/ r, /usr/lib/xulrunner-1.9.2.4/modules/DownloadUtils.jsm r, /usr/share/applications/mimeinfo.cache r, /usr/share/fonts/ r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/locale/** r, /usr/share/mime/mime.cache r, /usr/share/myspell/en_US.aff r, /usr/share/myspell/en_US.dic r, /usr/share/sounds/freedesktop/index.theme r, /var/cache/gio-2.0/defaults.list r, /var/lib/dbus/machine-id r, owner /var/run/gdm/auth-for-usera-FQmTLv/database r, } ^null-1b { capability sys_ptrace, /dev/urandom r, /etc/ld.so.cache r, /etc/mime.types r, /etc/services r, owner /home//.adobe/Flash_Player/AssetCache/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol r, owner /home//.mozilla/firefox/9bgr3l2j.default/ABE/rules/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/1534E248d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/3DBFCDF8d01 r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/509EE8C8d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/555C737Dd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/72FA32D5d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/9BCDCEA0d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/AD4A6281d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/C4023C98d01 r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/D3E66F98d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/EB8DFFFFd01 r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/FB13FBF6d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/FC3D511Cd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_003_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_MAP_ w, owner /home//.mozilla/firefox/9bgr3l2j.default/XPC.mfasl r, owner /home//.mozilla/firefox/9bgr3l2j.default/cert8.db w, owner /home//.mozilla/firefox/9bgr3l2j.default/content-prefs.sqlite rk, owner /home//.mozilla/firefox/9bgr3l2j.default/cookies.sqlite wk, owner /home//.mozilla/firefox/9bgr3l2j.default/cookies.sqlite-journal w, owner /home//.mozilla/firefox/9bgr3l2j.default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/formhistory.sqlite-journal rw, owner /home//.mozilla/firefox/9bgr3l2j.default/key3.db w, owner /home//.mozilla/firefox/9bgr3l2j.default/localstore-1.rdf w, owner /home//.mozilla/firefox/9bgr3l2j.default/mimeTypes.rdf r, owner /home//.mozilla/firefox/9bgr3l2j.default/places.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/places.sqlite-journal rw, owner /home//.mozilla/firefox/9bgr3l2j.default/pluginreg.dat rw, owner /home//.mozilla/firefox/9bgr3l2j.default/search.sqlite rk, owner /home//.mozilla/firefox/9bgr3l2j.default/sessionstore-1.js w, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifier3.sqlite-journal w, owner /home//.mozilla/firefox/profiles.ini r, /lib/libso mr, /proc/ r, /proc//cmdline r, /proc//stat r, /proc//status r, /proc/cpuinfo r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/uptime r, owner /tmp/plugtmp-2/plugin-all_V14_spec_120_600.xml w, /usr/lib/browser-plugins/ r, /usr/lib/browser-plugins/libflashplayer.so mr, /usr/lib/firefox/blocklist.xml r, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/jvm/java-1.6.0-openjdk-1.6.0/jre/lib/i386/IcedTeaPlugin.so mr, /usr/lib/libso* mr, /usr/lib/locale/ r, /usr/share/fonts/ r, /usr/share/icons/DMZ/cursors/dnd-copy r, /usr/share/locale/** r, /usr/share/mime/mime.cache r, owner /var/run/gdm/auth-for-usera-zcIQ80/database r, } ^null-1e { /etc/.cache r, /lib/libso* mr, /usr/lib/gconv/.cache r, /usr/lib/locale/* r, /usr/share/locale/** r, } ^null-20 { /etc/.cache r, /etc/magic r, /lib/libso* mr, /usr/lib/firefox/firefox r, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, /usr/share/misc/magic.mgc r, } ^null-22 { /etc/.cache r, /etc/services r, owner /home//*.db w, owner /home//*.js rw, owner /home//.mozilla/firefox/*.rdf w, owner /home//.mozilla/firefox/*.sqlite rwk, owner /home//.mozilla/firefox/*.sqlite-journal rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_001_ w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_002_ w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_003_ w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_MAP_ w, owner /home//.mozilla/firefox/9bgr3l2j.default/XPC.mfasl r, owner /home//.mozilla/firefox/9bgr3l2j.default/adblockplus/patterns.ini-temp w, owner /home//.mozilla/firefox/9bgr3l2j.default/blocklist.xml rw, owner /home//.mozilla/firefox/9bgr3l2j.default/bookmarkbackups/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/bookmarkbackups/bookmarks-2010-06-22.json w, /lib/libso mr, /usr/lib/gconv/.cache r, /usr/lib/locale/* r, /usr/share/locale/** r, } ^null-22f7 { /dev/urandom r, /etc/hosts r, /etc/ld.so.cache r, /etc/services r, owner /home//.mozilla/firefox/9bgr3l2j.default/ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifier3.sqlite rwk, owner /home//Download/openSUSE-11.2-DVD-i586.iso w, /lib/libso mr, /proc/* r, /usr/lib/* mr, /usr/lib/gconv/* r, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-24 { /dev/urandom r, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gre.d/ r, /etc/gre.d/1.9.1.9.system.conf r, /etc/gre.d/1.9.2.3.system.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/ld.so.cache r, /etc/mime.types r, /etc/nsswitch.conf r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, /etc/selinux/config r, /etc/services r, owner /home//.ICEauthority r, owner /home//.fontconfig/9c59dcc9b22e2c865779f06f6255adc7-x86.cache-2 r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/.parentlock wk, owner /home//.mozilla/firefox/9bgr3l2j.default/ABE/rules/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/ABE/rules/SYSTEM.abe r, owner /home//.mozilla/firefox/9bgr3l2j.default/ABE/rules/USER.abe r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache.Trash/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache.Trash/Trash/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache.Trash/Trash/Cache/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/0B2B46B9d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/1A8B79D4d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/2CABF679d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/4297084Cd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/54593247d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/8C2E15ABd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/D5E58BB6d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/F3196A5Cd01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/F4F0C734d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/FE8C0906d01 w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_003_ w, owner /home//.mozilla/firefox/9bgr3l2j.default/Cache/_CACHE_MAP_ rw, owner /home//.mozilla/firefox/9bgr3l2j.default/NoScriptSTS.db r, owner /home//.mozilla/firefox/9bgr3l2j.default/XPC.mfasl r, owner /home//.mozilla/firefox/9bgr3l2j.default/XUL.mfasl r, owner /home//.mozilla/firefox/9bgr3l2j.default/adblockplus/patterns.ini r, owner /home//.mozilla/firefox/9bgr3l2j.default/cert8.db r, owner /home//.mozilla/firefox/9bgr3l2j.default/compatibility.ini r, owner /home//.mozilla/firefox/9bgr3l2j.default/compreg.dat r, owner /home//.mozilla/firefox/9bgr3l2j.default/content-prefs.sqlite rk, owner /home//.mozilla/firefox/9bgr3l2j.default/cookies.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/cookies.sqlite-journal rw, owner /home//.mozilla/firefox/9bgr3l2j.default/downloads.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/downloads.sqlite-journal w, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions.cache r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions.ini r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions.rdf r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/chrome.manifest r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/chrome/noscript.jar r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/preferences/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/preferences/noscript.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/chrome.manifest r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/chrome/chrome.jar r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/components/debugService.xpt r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/components/filterManager.xpt r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/defaults/preferences/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/defaults/preferences/dta.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/defaults/preferences/filters.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{DDC359D1-844A-42a7-9AA1-88A850A938A8\}/defaults/preferences/privacycontrol.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome.manifest r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/adblockplus.jar r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/adblockplus.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3\}/chrome.manifest r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3\}/defaults/preferences/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3\}/defaults/preferences/bpprefs.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3\}/skin/BetterPrivacyButton.css r, owner /home//.mozilla/firefox/9bgr3l2j.default/extensions/\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3\}/skin/btn_large.png r, owner /home//.mozilla/firefox/9bgr3l2j.default/formhistory.sqlite rk, owner /home//.mozilla/firefox/9bgr3l2j.default/key3.db r, owner /home//.mozilla/firefox/9bgr3l2j.default/localstore.rdf r, owner /home//.mozilla/firefox/9bgr3l2j.default/mimeTypes.rdf r, owner /home//.mozilla/firefox/9bgr3l2j.default/permissions.sqlite rk, owner /home//.mozilla/firefox/9bgr3l2j.default/places.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/places.sqlite-journal rw, owner /home//.mozilla/firefox/9bgr3l2j.default/pluginreg.dat rw, owner /home//.mozilla/firefox/9bgr3l2j.default/prefs-1.js w, owner /home//.mozilla/firefox/9bgr3l2j.default/prefs.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/search.json r, owner /home//.mozilla/firefox/9bgr3l2j.default/search.sqlite rk, owner /home//.mozilla/firefox/9bgr3l2j.default/searchplugins/ r, owner /home//.mozilla/firefox/9bgr3l2j.default/secmod.db r, owner /home//.mozilla/firefox/9bgr3l2j.default/sessionstore-1.js w, owner /home//.mozilla/firefox/9bgr3l2j.default/sessionstore.bak w, owner /home//.mozilla/firefox/9bgr3l2j.default/sessionstore.js r, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifier3.sqlite-journal w, owner /home//.mozilla/firefox/9bgr3l2j.default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/9bgr3l2j.default/xpti.dat r, owner "/home//.mozilla/firefox/Crash Reports/InstallTime2010040100" r, owner "/home//.mozilla/firefox/Crash Reports/LastCrash" r, owner /home//.mozilla/firefox/profiles.ini r, /lib/libso* mr, owner /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /tmp/ r, /usr/lib/browser-plugins/ r, /usr/lib/firefox/application.ini r, /usr/lib/firefox/chrome/ r, /usr/lib/firefox/chrome/browser.jar r, /usr/lib/firefox/chrome/browser.manifest r, /usr/lib/firefox/chrome/classic.jar r, /usr/lib/firefox/chrome/classic.manifest r, /usr/lib/firefox/chrome/en-US.jar r, /usr/lib/firefox/chrome/en-US.manifest r, /usr/lib/firefox/chrome/icons/default/default16.png r, /usr/lib/firefox/chrome/icons/default/default32.png r, /usr/lib/firefox/chrome/icons/default/default48.png r, /usr/lib/firefox/chrome/reporter.manifest r, /usr/lib/firefox/components/browser.xpt r, /usr/lib/firefox/components/libbrowsercomps.so mr, /usr/lib/firefox/components/libbrowserdirprovider.so mr, /usr/lib/firefox/defaults/preferences/ r, /usr/lib/firefox/defaults/preferences/channel-prefs.js r, /usr/lib/firefox/defaults/preferences/firefox-branding.js r, /usr/lib/firefox/defaults/preferences/firefox-build.js r, /usr/lib/firefox/defaults/preferences/firefox-l10n.js r, /usr/lib/firefox/defaults/preferences/firefox-openSUSE.js r, /usr/lib/firefox/defaults/preferences/firefox.js r, /usr/lib/firefox/defaults/preferences/kde.js r, } ^null-26 { /dev/urandom r, /etc/ r, owner /home//.mozilla/firefox/* rwk, /lib/* mr, /proc/meminfo r, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/libso mr, /usr/lib/locale/ r, /usr/share/locale/ r, } ^null-396 { } ^null-398 { /etc/ld.so.cache r, /etc/magic r, /lib/libso mr, } ^null-39a { } ^null-39c { } ^null-3ac { } ^null-3ae { } ^null-3b0 { } ^null-3b2 { } ^null-477 { owner /home/*/.mozilla/firefox/x1nowm3w.default/places.sqlite-journal w, } }	about 1 year ago		107	usera	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	fire	215	rocio	Edit	History
opensuse11.0	/usr/bin/konqueror	#include <tunables/global> /usr/bin/konqueror flags=(complain) { #include <abstractions/base> deny /etc/fonts/fonts.conf r, }	over 3 years ago	cambiosnaveg	148	miriamb	Edit	History
ubuntu-gutsy	/usr/bin/passwd	# ------------------------------------------------------------------ # # Copyright (C) 2006 Volker Kuhlmann # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/bin/passwd { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability sys_resource, /etc/.pwd.lock w, /etc/pwdutils/logging r, /etc/shadow rwl, /etc/shadow.old rwl, /etc/shadow.tmp?????? rwl, /usr/bin/passwd mr, /usr/lib/pwdutils/lib.so mr, /usr/lib64/pwdutils/lib.so mr, /usr/share/cracklib/pw_dict.hwm r, /usr/share/cracklib/pw_dict.pwd r, /usr/share/cracklib/pw_dict.pwi r, }	over 3 years ago		125	stive	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/firefox/firefox.sh mr, }	over 4 years ago	firefox	212	sontaya	Edit	History
opensuse10.3	/usr/bin/beagle-search	#include <tunables/global> /usr/bin/beagle-search { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/beagle-search mr, }	over 4 years ago	Import of jmichaels profiles	215	dominic	Edit	History
opensuse10.3	/usr/bin/gnome-cups-icon	#include <tunables/global> /usr/bin/gnome-cups-icon { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.cups/lpoptions r, /home//.gnome2_private/ w, /tmp/orbit-*/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/gnome-cups-icon mr, /var/run/cups/cups.sock w, /var/run/nscd/services r, }	over 4 years ago	Import of jmichaels profiles	300	dominic	Edit	History
opensuse10.3	/bin/hostname	#include <tunables/global> /bin/hostname flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability sys_admin, /bin/hostname mr, }	over 4 years ago	argh, switch things back to complain for a while	238	jmichael	Edit	History
opensuse10.3	/etc/X11/xinit/fixkeyboard	#include <tunables/global> /etc/X11/xinit/fixkeyboard { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /etc/X11/xinit/fixkeyboard mr, }	over 3 years ago		170	hello	Edit	History
opensuse10.3	/sbin/checkproc	#include <tunables/global> /sbin/checkproc flags=(complain) { #include <abstractions/base> capability dac_override, capability sys_ptrace, /dev/blog w, /home//.gnupg/agent.pid r, /proc/ r, /proc//stat r, /proc/*/statm r, /sbin/checkproc mr, /usr/bin/gpg-agent r, /usr/sbin/NetworkManager r, /usr/sbin/NetworkManagerDispatcher r, /usr/sbin/automount r, /usr/sbin/dhcdbd r, /usr/sbin/ntpd r, /var/run/NetworkManager.pid r, /var/run/NetworkManagerDispatcher.pid r, /var/run/dhcdbd.pid r, }	over 4 years ago	few more profile changes	271	jmichael	Edit	History
opensuse10.3	/usr/sbin/postlog	#include <tunables/global> /usr/sbin/postlog flags=(complain) { #include <abstractions/base> /usr/sbin/postlog mr, }	over 4 years ago	changes 6	197	security	Edit	History
opensuse10.3	/usr/bin/VBox	#include <tunables/global> /usr/bin/VBox flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> capability sys_ptrace, network inet dgram, network inet stream, network inet6 stream, / r, /Archiv/ rw, /Archiv/.Trash-overwrite/ rw, /Archiv/.Trash-patrick/ rw, /Archiv/Filez/ rw, /Archiv/Filez/GSO/ rw, /Archiv/Filez/GSO/ rw, /Archiv/Filez/Multimedia/Tonstudio/ r, /Archiv/Filez/Multimedia/Tonstudio/ rw, /bin/ r, /bin/basename ixr, /bin/bash ixr, /bin/gawk ixr, /bin/grep ixr, /bin/lsmod ixr, /bin/ps ixr, /bin/rm ixr, /boot/ r, /dev/ r, /dev/fd0 rw, /dev/sr0 r, /dev/tty rw, /dev/vboxdrv rw, /etc/ r, /etc/X11/qt_plugins_3.3rc r, /etc/X11/qtrc r, /etc/fonts/** r, /etc/fstab r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/mapping-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gre.d/ r, /etc/gre.d/1.8.1.10.conf r, /etc/gre.d/1.8.1.9.conf r, /etc/host.conf r, /etc/hosts r, /etc/magic r, /etc/nsswitch.conf r, /etc/passwd r, /etc/resolv.conf r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.VirtualBox/* rw, /home//.VirtualBox/Machines/GSO/GSO.xml rw, /home//.VirtualBox/Machines/GSO/Logs/* rw, "/home//.VirtualBox/Machines/WinXP TonStudio/" w, /home//.VirtualBox/VDI/* krw, /home//.Xauthority r, /home//.fontconfig/.cache-2 r, /home//.gnome2_private/ w, /home//.qt/.qtrc.lock krw, /home//.qt/qtrc r, /lib/ r, /log.txt r, /media/ r, /mnt/ r, /mypcs/ rw, /myscripts/ r, /opt/ r, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib/kde3/plugins/styles/plastik.so mr, /opt/kde3/lib/libso mr, /proc/ r, /proc//mounts r, /proc//stat r, /proc//status r, /proc/bus/usb/002/004 rw, /proc/bus/usb/003/002 rw, /proc/bus/usb/003/003 rw, /proc/bus/usb/003/004 rw, /proc/bus/usb/003/008 rw, /proc/bus/usb/004/002 rw, /proc/bus/usb/004/003 rw, /proc/bus/usb/004/004 rw, /proc/bus/usb/004/008 rw, /proc/bus/usb/005/002 rw, /proc/bus/usb/005/004 rw, /proc/bus/usb/005/008 rw, /proc/bus/usb/006/002 rw, /proc/bus/usb/006/003 rw, /proc/bus/usb/006/004 rw, /proc/bus/usb/007/002 rw, /proc/bus/usb/007/003 rw, /proc/bus/usb/007/004 rw, /proc/bus/usb/007/005 rw, /proc/bus/usb/007/006 rw, /proc/bus/usb/devices r, /proc/meminfo r, /proc/modules r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, /sbin/ r, /srv/ r, /sys/ r, /tmp/ rw, /tmp/.ICE-unix/ w, /tmp/.X11-unix/X0 w, /tmp/.vbox-overwrite-ipc/ rw, /tmp/.vbox-overwrite-ipc/ipcd w, /tmp/.vbox-overwrite-ipc/lock kw, /tmp/gconfd-overwrite/lock/ior r, /tmp/orbit-overwrite/ w, /tmp/orbit-overwrite/linc-* w, /usr/ r, /usr/bin/VBox mr, /usr/bin/bug-buddy ixr, /usr/bin/expr ixr, /usr/bin/file ixr, /usr/bin/gnome-open ixr, /usr/bin/which ixr, /usr/bin/whoami ixr, /usr/lib/ mr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/firefox.sh ixr, /usr/lib/virtualbox/VBoxSVC ixr, /usr/lib/virtualbox/VBoxXPCOMIPCD ixr, /usr/lib/virtualbox/VirtualBox ixr, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/desktop-data/qtrc r, /usr/share/doc/packages/VirtualBox/ r, /usr/share/fonts/ r, /usr/share/icons/Industrial/cursors/hand2 r, /usr/share/icons/Industrial/cursors/left_ptr r, /usr/share/icons/Industrial/cursors/left_ptr_watch r, /usr/share/icons/Industrial/cursors/sb_h_double_arrow r, /usr/share/icons/Industrial/cursors/sb_v_double_arrow r, /usr/share/icons/Industrial/cursors/watch r, /usr/share/icons/Industrial/cursors/xterm r, /usr/share/icons/Industrial/index.theme r, /usr/share/icons/Tango/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/misc/magic.mgc r, /usr/share/virtualbox/** r, /var/ r, /var/cache/fontconfig/* r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/nscd/group r, /var/run/nscd/passwd r, /var/run/nscd/socket w, }	over 4 years ago		334	overwrite	Edit	History
opensuse10.3	/usr/bin/gnome-wm	#include <tunables/global> /usr/bin/gnome-wm flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/grep ixr, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/compiz Px, /usr/bin/gnome-wm mr, /usr/bin/xdpyinfo Px, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	174	jmichael	Edit	History
opensuse11.0	/usr/bin/rekonq	#include <tunables/global> /usr/bin/rekonq flags=(complain) { #include <abstractions/base> }	over 2 years ago		120	andy	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> network inet6 stream, /bin/basename rix, /bin/bash rix, /bin/grep rix, /dev/tty rw, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/obex-module.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gre.d/ r, /etc/gre.d/1.9.0.10.system.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/magic r, /etc/mailcap r, /etc/mime.types r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.adobe/Flash_Player/AssetCache/ r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.macromedia/Flash_Player/#SharedObjects/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//.mozilla/firefox/profiles.ini r, owner /home//.mozilla/firefox/z93fh6hz.default/ r, owner /home//.mozilla/firefox/z93fh6hz.default/.parentlock wk, owner /home//.mozilla/firefox/z93fh6hz.default/Cache/71ED5980d01 rw, owner /home//.mozilla/firefox/z93fh6hz.default/Cache/7E9511C6d01 w, owner /home//.mozilla/firefox/z93fh6hz.default/Cache/F654F908d01 a, owner /home//.mozilla/firefox/z93fh6hz.default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/z93fh6hz.default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/z93fh6hz.default/Cache/_CACHE_003_ rw, owner /home//.mozilla/firefox/z93fh6hz.default/Cache/_CACHE_MAP_ rw, owner /home//.mozilla/firefox/z93fh6hz.default/XPC.mfasl r, owner /home//.mozilla/firefox/z93fh6hz.default/XUL.mfasl r, owner /home//.mozilla/firefox/z93fh6hz.default/blocklist.xml r, owner /home//.mozilla/firefox/z93fh6hz.default/cert8.db rw, owner /home//.mozilla/firefox/z93fh6hz.default/compatibility.ini r, owner /home//.mozilla/firefox/z93fh6hz.default/compreg.dat r, owner /home//.mozilla/firefox/z93fh6hz.default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/z93fh6hz.default/cookies.sqlite rwk, owner /home//.mozilla/firefox/z93fh6hz.default/cookies.sqlite-journal w, owner /home//.mozilla/firefox/z93fh6hz.default/downloads.sqlite rwk, owner /home//.mozilla/firefox/z93fh6hz.default/downloads.sqlite-journal w, owner /home//.mozilla/firefox/z93fh6hz.default/extensions.cache r, owner /home//.mozilla/firefox/z93fh6hz.default/extensions.ini r, owner /home//.mozilla/firefox/z93fh6hz.default/extensions/ r, owner /home//.mozilla/firefox/z93fh6hz.default/extensions/\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA\}/chrome.manifest r, owner /home//.mozilla/firefox/z93fh6hz.default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/z93fh6hz.default/formhistory.sqlite-journal w, owner /home//.mozilla/firefox/z93fh6hz.default/key3.db rw, owner /home//.mozilla/firefox/z93fh6hz.default/localstore.rdf rw, owner /home//.mozilla/firefox/z93fh6hz.default/lock w, owner /home//.mozilla/firefox/z93fh6hz.default/mimeTypes.rdf rw, owner /home//.mozilla/firefox/z93fh6hz.default/permissions.sqlite rwk, owner /home//.mozilla/firefox/z93fh6hz.default/places.sqlite rwk, owner /home//.mozilla/firefox/z93fh6hz.default/places.sqlite-journal a, owner /home//.mozilla/firefox/z93fh6hz.default/pluginreg.dat rw, owner /home//.mozilla/firefox/z93fh6hz.default/prefs.js r, owner /home//.mozilla/firefox/z93fh6hz.default/search.sqlite rwk, owner /home//.mozilla/firefox/z93fh6hz.default/secmod.db r, owner /home//.mozilla/firefox/z93fh6hz.default/sessionstore-1.js rw, owner /home//.mozilla/firefox/z93fh6hz.default/sessionstore.js w, owner /home//.mozilla/firefox/z93fh6hz.default/signons3.txt r, owner /home//.mozilla/firefox/z93fh6hz.default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/z93fh6hz.default/xpti.dat r, owner /home//.qt/qtrc r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /opt/kde3/share/icons/crystalsvg/16x16/actions/fileclose.png r, /opt/kde3/share/icons/crystalsvg/16x16/filesystems/folder.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/back.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/forward.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/gohome.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/reload.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/stop.png r, owner /proc//cmdline r, owner /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /tmp/ r, /tmp/.X11-unix/X0 w, owner /tmp/gconfd-student/lock/ior r, owner /tmp/orbit-student/ w, owner /tmp/orbit-student/linc-2298-0-50c0f73068d0 w, owner /tmp/orbit-student/linc-229a-0-7bc151235aa4 w, /usr/bin/file rix, /usr/lib/* mr, /usr/lib/firefox/firefox rix, /usr/lib/firefox/firefox.sh rix, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/fonts/** r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/left_ptr_watch r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/mime/mime.cache r, /usr/share/misc/magic.mgc r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/31f82260556886db06538972b4bc1ecd-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/c16af864172909159ced9a806109b5c1-x86.cache-2 r, /var/cache/fontconfig/c36a5ca5419b5200dcfc86d54b5d311a-x86.cache-2 r, /var/cache/fontconfig/c8921bbb32c531cd76cce8461cdbbf27-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/gio-2.0/defaults.list r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/dbus/system_bus_socket w, /var/run/nscd/passwd r, /var/run/nscd/socket w, /var/tmp/ rw, owner /var/tmp/etilqs_hfE3sYjMcS7gdzg w, }	over 2 years ago		141	usernowy	Edit	History
opensuse11.0	/usr/lib64/jvm/java-1.6.0-sun-1.6.0.u6/jre/bin/java	#include <tunables/global> /usr/lib64/jvm/java-1.6.0-sun-1.6.0.u6/jre/bin/java flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	registro 2	137	aladedragon	Edit	History
opensuse11.0	Gaëtan	France de normandie	over 3 years ago		187	paris_gaetan	Edit	History
opensuse10.3	/usr/bin/beagle-search	#include <tunables/global> /usr/bin/beagle-search { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/beagle-search mr, }	over 4 years ago	none	202	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/xkbcomp	#include <tunables/global> /usr/bin/xkbcomp { #include <abstractions/X> #include <abstractions/base> /usr/bin/xkbcomp mr, /var/lib/xkb/*.xkm w, }	over 4 years ago	gnome	320	hbpteam	Edit	History
opensuse10.3	/bin/hostname	#include <tunables/global> /bin/hostname flags=(complain) { #include <abstractions/base> /bin/hostname mr, }	over 4 years ago	k	227	erich	Edit	History
opensuse11.0	/srv/teamspeak/ts3server_linux_x86	#include <tunables/global> /srv/teamspeak/ts3server_linux_x86 { #include <abstractions/base> #include <abstractions/nameservice> owner /dev/shm/* rw, owner /srv/teamspeak/ r, owner /srv/teamspeak/** mrwk, }	about 1 year ago	Removed whitespace.	45	hach-que	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> capability kill, capability net_bind_service, capability setgid, capability setuid, /etc/apache2/*.conf r, /etc/apache2/conf.d/ r, /etc/apache2/vhosts.d/ r, /etc/mime.types r, /proc//attr/current w, /usr/lib/*.so mr, /usr/sbin/httpd2-prefork mr, /var/log/apache2/access_log w, /var/log/apache2/error_log w, /var/run/httpd2.pid w, } /usr/sbin/httpd2-prefork///manual { /proc//attr/current w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork///~dominic/thinking-rock.ics { /home//public_html/thinking-rock.ics r, /proc//attr/current w, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork//DEFAULT_URI { #include <abstractions/nameservice> /home//.html r, /proc//attr/current w, /usr/share/.var r, /usr/share/apache2/error/.html r, /var/log/apache2/access_log w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /proc/*/attr/current w, }	over 4 years ago	more tweaks	302	dominic_2	Edit	History
ubuntu-gutsy	/usr/bin/gnome-volume-control	#include <tunables/global> /usr/bin/gnome-volume-control { #include <abstractions/base> /usr/bin/gnome-volume-control mr, }	over 4 years ago	gnome	233	hbpteam	Edit	History
opensuse10.3	/sbin/ifconfig	#include <tunables/global> /sbin/ifconfig { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, capability sys_module, /proc/net/ r, /proc/net/* r, /sbin/ifconfig mr, }	over 4 years ago	none	275	cinimod	Edit	History
opensuse10.3	/sbin/unix2_chkpwd	#include <tunables/global> /sbin/unix2_chkpwd { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> /sbin/unix2_chkpwd mr, }	over 4 years ago	none	235	cinimod	Edit	History
opensuse10.3	/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon	#include <tunables/global> /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/ r, /etc/fstab r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /proc/*/mounts r, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon mr, }	over 4 years ago	argh, switch things back to complain for a while	263	jmichael	Edit	History
opensuse11.0	/usr/bin/passwd	# ------------------------------------------------------------------ # # Copyright (C) 2006 Volker Kuhlmann # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/bin/passwd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability sys_resource, /etc/.pwd.lock w, /etc/pwdutils/logging r, /etc/shadow rwl, /etc/shadow.old rwl, /etc/shadow.tmp?????? rwl, /usr/bin/passwd mr, /usr/lib/pwdutils/lib.so mr, /usr/lib64/pwdutils/lib.so mr, /usr/share/cracklib/pw_dict.hwm r, /usr/share/cracklib/pw_dict.pwd r, /usr/share/cracklib/pw_dict.pwi r, }	about 1 year ago		64	August	Edit	History
opensuse11.0	/bin/ping	#include <tunables/global> /bin/ping { #include <abstractions/base> #include <abstractions/nameservice> capability net_raw, capability setuid, network inet raw, deny /etc/resolv.conf r, deny /var/lib/nameg r, /bin/ping r, }	over 2 years ago		60	test2	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	over 3 years ago	neu1	204	stueck	Edit	History
opensuse11.0	/usr/lib/NetworkManager/nm-dhcp-client.action	#include <tunables/global> /usr/lib/NetworkManager/nm-dhcp-client.action { #include <abstractions/base> owner /usr/lib/ m, owner /usr/lib/ r, owner /var/run/dbus/system_bus_socket w, }	over 3 years ago	...	181	knotwurk	Edit	History
opensuse10.3	/usr/sbin/vsftpd	# $Id: usr.sbin.vsftpd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/vsftpd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> / r, /dev/urandom r, /etc/fstab r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/mtab r, /etc/shells r, /etc/vsftpd.* r, /etc/vsftpd/* r, /srv/ftp/ r, /srv/ftp/ wr, /usr/sbin/vsftpd rmix, /var/log/vsftpd.log w, /var/log/xferlog w, @{HOMEDIRS} r, @{HOME}/ rwl, }	over 3 years ago	andrew	248	gankov	Edit	History
opensuse11.0	/opt/google/chrome/google-chrome	#include <tunables/global> /opt/google/chrome/google-chrome flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ix, /opt/google/chrome/google-chrome r, ^null-39 flags=(complain) { /etc/ld.so.cache r, /lib/libc-2.10.1.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-3b flags=(complain) { /etc/ld.so.cache r, /lib/libc-2.10.1.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-3d flags=(complain) { deny capability chown, deny capability dac_override, deny capability fsetid, deny capability setgid, deny capability setuid, deny capability sys_admin, deny capability sys_chroot, deny owner /proc/ r, deny /proc/2186/fd/ r, deny /proc/2427/fd/ r, /dev/urandom r, /etc/fonts/** r, /etc/ld.so.cache mr, /etc/localtime r, owner /home/jussier/.fontconfig/c01270a3a4ffb1849c76eac544526ed1-x86.cache-2 r, owner /home/jussier/.fonts.conf r, /lib/libso mr, /opt/google/chrome/chrome.pak mr, /opt/google/chrome/libffmpegsumo.so mr, /opt/google/chrome/locales/pt-BR.pak mr, } ^null-45 flags=(complain) { /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-47 flags=(complain) { /etc/ld.so.cache r, /lib/libc-2.10.1.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-49 flags=(complain) { capability chown, capability dac_override, capability sys_admin, capability sys_ptrace, deny /proc/2427/fd/ r, deny /proc/2472/fd/ r, deny /proc/2473/fd/ r, deny /proc/2481/fd/ r, deny /proc/2487/fd/ r, deny /proc/2489/fd/ r, deny /proc/2538/fd/ r, deny /proc/2539/fd/ r, deny /proc/2541/fd/ r, deny /proc/2543/fd/ r, deny /proc/2547/fd/ r, deny /proc/2548/fd/ r, deny /proc/2631/fd/ r, deny /proc/2670/fd/ r, deny /proc/2677/fd/ r, deny /proc/2680/fd/ r, deny /proc/3583/fd/ r, deny /proc/3735/fd/ r, deny /proc/3747/fd/ r, deny /proc/3758/fd/ r, deny /proc/3760/fd/ r, deny /proc/3763/fd/ r, deny owner /proc/6001/fd/ r, deny /proc/6691/fd/ r, deny /proc/6696/fd/ r, deny /proc/6707/fd/ r, deny /proc/8339/fd/ r, deny /proc/8358/fd/ r, deny /proc/8368/fd/ r, deny /proc/8501/fd/ r, deny /proc/8506/fd/ r, deny /proc/8508/fd/ r, deny /proc/8520/fd/ r, deny /proc/8722/fd/ r, deny /proc/8725/fd/ r, deny owner /proc/8727/fd/ r, deny /proc/9527/fd/ r, deny /proc/9528/fd/ r, deny /proc/9529/fd/ r, deny /proc/9530/fd/ r, deny /proc/9565/fd/ r, deny /proc/9568/fd/ r, deny /proc/9572/fd/ r, deny /proc/9574/fd/ r, deny /proc/9582/fd/ r, deny /proc/9583/fd/ r, deny /proc/9770/fd/ r, deny /proc/9775/fd/ r, deny /proc/9789/fd/ r, deny /proc/9791/fd/ r, deny /proc/9800/fd/ r, deny owner /proc/9800/mounts r, deny owner /proc/9800/status r, deny /proc/9803/fd/ r, deny owner /proc/9804/fd/ r, deny owner /proc/9805/fd/ r, deny owner /proc/9805/mounts r, deny owner /proc/9805/status r, deny owner /proc/9807/fd/ r, deny /proc/sys/kernel/shmmax r, deny /usr/share/zoneinfo/Australia/ r, deny /usr/share/zoneinfo/Australia/ACT r, deny /usr/share/zoneinfo/Australia/Adelaide r, deny /usr/share/zoneinfo/Australia/Brisbane r, deny /usr/share/zoneinfo/Australia/Broken_Hill r, deny /usr/share/zoneinfo/Australia/Canberra r, deny /usr/share/zoneinfo/Australia/Currie r, deny /usr/share/zoneinfo/Australia/Darwin r, deny /usr/share/zoneinfo/Australia/Eucla r, deny /usr/share/zoneinfo/Australia/Hobart r, deny /usr/share/zoneinfo/Australia/LHI r, deny /usr/share/zoneinfo/Australia/Lindeman r, deny /usr/share/zoneinfo/Australia/Lord_Howe r, deny /usr/share/zoneinfo/Australia/Melbourne r, deny /usr/share/zoneinfo/Australia/NSW r, deny /usr/share/zoneinfo/Australia/North r, deny /usr/share/zoneinfo/Australia/Perth r, deny /usr/share/zoneinfo/Australia/Queensland r, deny /usr/share/zoneinfo/Australia/South r, deny /usr/share/zoneinfo/Australia/Sydney r, deny /usr/share/zoneinfo/Australia/Tasmania r, deny /usr/share/zoneinfo/Australia/Victoria r, deny /usr/share/zoneinfo/Australia/West r, deny /usr/share/zoneinfo/Australia/Yancowinna r, deny /usr/share/zoneinfo/Brazil/ r, /dev/urandom r, /etc/fonts/** r, /etc/ld.so.cache mr, /etc/localtime r, owner /home/jussier/.fontconfig/c01270a3a4ffb1849c76eac544526ed1-x86.cache-2 r, owner /home/jussier/.fonts.conf r, /lib/libbz2.so.* mr, /lib/libc-.so mr, /lib/libdbus-1.so. mr, /lib/libdl-.so mr, /lib/libexpat.so. mr, /lib/libgcc_s.so.* mr, /lib/libm-.so mr, /lib/libpcre.so. mr, /lib/libpthread-.so mr, /lib/libresolv-.so mr, /lib/librt-.so mr, /lib/libselinux.so. mr, /lib/libz.so.* mr, /opt/google/chrome/chrome.pak mr, /opt/google/chrome/libffmpegsumo.so mr, /opt/google/chrome/locales/pt-BR.pak mr, owner /proc/ r, /proc/2186/fd/ r, /usr/lib/gconv/gconv-modules.cache mr, /usr/lib/libso mr, /usr/lib/libORBit-2.so.* mr, /usr/lib/libX11.so.* mr, /usr/lib/libXau.so.* mr, /usr/lib/libXcomposite.so.* mr, /usr/lib/libXcursor.so.* mr, /usr/lib/libXdamage.so.* mr, /usr/lib/libXext.so.* mr, /usr/lib/libXfixes.so.* mr, /usr/lib/libXi.so.* mr, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS mr, /usr/lib/locale/pt_BR.utf8/LC_COLLATE mr, /usr/lib/locale/pt_BR.utf8/LC_CTYPE mr, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION mr, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT mr, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES mr, /usr/lib/locale/pt_BR.utf8/LC_MONETARY mr, /usr/lib/locale/pt_BR.utf8/LC_NAME mr, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC mr, /usr/lib/locale/pt_BR.utf8/LC_PAPER mr, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE mr, /usr/lib/locale/pt_BR.utf8/LC_TIME mr, /usr/share/locale/locale.alias r, /usr/share/zoneinfo/ r, /usr/share/zoneinfo/** r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 mr, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 mr, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 mr, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 mr, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, } ^null-7f { #include <abstractions/base> } ^null-81 { #include <abstractions/base> } ^null-83 { #include <abstractions/base> #include <abstractions/fonts> capability chown, capability dac_override, capability sys_admin, capability sys_chroot, capability sys_ptrace, owner /home//.fontconfig/.cache-3 r, owner /home//.fonts.conf r, owner /proc//auxv r, owner /proc/*/fd/ r, /proc/cpuinfo r, /proc/filesystems r, /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq r, owner /tmp/chrome-sandbox-chroot-KHXaUq/ rw, } }	about 1 year ago	junk	75	WeBeGood	Edit	History
opensuse10.3	/sbin/ifconfig	#include <tunables/global> /sbin/ifconfig { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, capability sys_module, /proc/net/ r, /proc/net/* r, /sbin/ifconfig mr, }	over 4 years ago	Import of jmichaels profiles	292	dominic	Edit	History
ubuntu-gutsy	/usr/lib/firefox/run-mozilla.sh	#include <tunables/global> /usr/lib/firefox/run-mozilla.sh flags=(complain) { #include <abstractions/base> /bin/dash ixr, /bin/which Px, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/lib/firefox/firefox-bin Px, /usr/lib/firefox/run-mozilla.sh mr, }	over 4 years ago	gnome	254	hbpteam	Edit	History
opensuse10.3	/usr/bin/regina	#include <tunables/global> /usr/bin/regina flags=(complain) { #include <abstractions/base> /usr/bin/regina px, }	over 4 years ago		183	dhughes	Edit	History
opensuse10.3	/sbin/unix2_chkpwd	#include <tunables/global> /sbin/unix2_chkpwd { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> /sbin/unix2_chkpwd mr, }	over 4 years ago	Import of jmichaels profiles	256	dominic	Edit	History
opensuse10.3	/dados/root/Documents/downloads/zoiper	#include <tunables/global> /dados/root/Documents/downloads/zoiper flags=(complain) { #include <abstractions/base> /dados/root/Documents/downloads/zoiper mr, }	over 4 years ago		217	msdepaula	Edit	History
opensuse11.0	/usr/sbin/useradd	# $Id: usr.sbin.useradd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/useradd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/perl> capability chown, capability dac_override, capability fowner, capability fsetid, capability sys_resource, /bin/bash mrix, owner /etc/.pwd.lock k, /etc/.pwd.lock rw, /etc/default/useradd r, /etc/group* rwl, /etc/gshadow* rwl, /etc/login.defs r, /etc/passwd* rwl, /etc/pwdutils/logging r, /etc/shadow* rwl, /etc/skel r, /etc/skel/** r, /usr/lib/pwdutils/so* mr, /usr/sbin/adduser mrix, /usr/sbin/useradd mrix, /usr/sbin/useradd.local mrix, /var/log/faillog rw, /var/log/lastlog rw, /var/run/nscd.pid rw, /var/run/utmp rw, /var/spool/mail/* rw, @{HOMEDIRS}** rw, @{PROC}/[0-9]*/mounts r, @{PROC}/filesystems r, }	about 1 month ago		4	psonoda	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_ptrace, owner /etc/apache2/conf.d/ r, owner /etc/apache2/conf.d/php5.conf r, owner /etc/apache2/default-server.conf r, owner /etc/apache2/errors.conf r, owner /etc/apache2/httpd.conf r, owner /etc/apache2/listen.conf r, owner /etc/apache2/mod_autoindex-defaults.conf r, owner /etc/apache2/mod_info.conf r, owner /etc/apache2/mod_log_config.conf r, owner /etc/apache2/mod_mime-defaults.conf r, owner /etc/apache2/mod_status.conf r, owner /etc/apache2/mod_userdir.conf r, owner /etc/apache2/mod_usertrack.conf r, owner /etc/apache2/server-tuning.conf r, owner /etc/apache2/ssl-global.conf r, owner /etc/apache2/sysconfig.d/global.conf r, owner /etc/apache2/sysconfig.d/include.conf r, owner /etc/apache2/sysconfig.d/loadmodule.conf r, owner /etc/apache2/uid.conf r, owner /etc/apache2/vhosts.d/ r, owner /etc/mime.types r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, /proc//attr/current w, owner /usr/lib/* m, /usr/lib/** r, owner /usr/sbin/httpd2-prefork r, owner /var/lib/php5/session_mm_apache2handler0.sem wk, owner /var/log/apache2/access_log a, owner /var/log/apache2/error_log a, owner /var/run/httpd2.pid w, ^/ flags=(complain) { #include <abstractions/nameservice> /proc//attr/current w, /srv/www/htdocs/index.html r, /var/log/apache2/access_log w, } ^/favicon.ico flags=(complain) { #include <abstractions/nameservice> /proc//attr/current w, /srv/www/htdocs/favicon.ico r, /var/log/apache2/access_log w, } ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /proc/*/attr/current w, } }	over 2 years ago	james4	106	tux	Edit	History
ubuntu-gutsy	/etc/cron.daily/bsdmainutils	#include <tunables/global> /etc/cron.daily/bsdmainutils { #include <abstractions/base> /bin/dash ixr, /etc/cron.daily/bsdmainutils mr, }	over 3 years ago		148	stive	Edit	History
opensuse10.3	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability setgid, capability setuid, /bin/bash ixr, /etc/gai.conf r, /etc/ssh/ssh_config r, /home//.ssh/known_hosts ar, /proc/meminfo r, /root/.Xauthority rw, /root/.Xauthority-c w, /root/.Xauthority-l lw, /root/.ssh/ w, /root/.ssh/known_hosts rw, /usr/bin/ssh mr, /usr/bin/xauth ixr, /var/run/nscd/ r, }	over 4 years ago	Initial Setup	253	PsychoDad	Edit	History
ubuntu-gutsy	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin flags=(complain) { #include <abstractions/base> /usr/bin/pidgin mr, }	over 4 years ago		199	guyome	Edit	History
opensuse11.0	/opt/google/chrome/google-chrome	#include <tunables/global> /opt/google/chrome/google-chrome flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		95	Andyrip1983	Edit	History
opensuse11.0	/usr/bin/ktorrent	#include <tunables/global> /usr/bin/ktorrent flags=(complain) { #include <abstractions/base> /usr/bin/ktorrent r, }	over 3 years ago		316	vismedaki	Edit	History
opensuse11.0	/opt/kde3/bin/amarok	#include <tunables/global> /opt/kde3/bin/amarok flags=(complain) { #include <abstractions/base> /opt/kde3/lib/libso mr, }	over 3 years ago	23Oktober2008	191	marevent	Edit	History
opensuse11.0	/usr/bin/cdrdao	#include <tunables/global> /usr/bin/cdrdao flags=(complain) { #include <abstractions/base> /usr/bin/cdrdao mr, }	over 3 years ago		135	foxxxxfire	Edit	History
opensuse10.3	/FYP/FileReadWrite	#include <tunables/global> /FYP/FileReadWrite { #include <abstractions/base> /FYP/FileReadWrite mr, /FYP/data/prices.dat rw, }	over 4 years ago		265	FYPJ	Edit	History
opensuse10.3	/usr/bin/aoss	#include <tunables/global> /usr/bin/aoss { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/aoss mr, /usr/lib/thunderbird/thunderbird-bin px, }	over 4 years ago	20071015	199	davepl	Edit	History
opensuse10.3	/usr/sbin/sabayon-apply	#include <tunables/global> /usr/sbin/sabayon-apply { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> /etc/xml/catalog r, /etc/xml/suse-catalog.xml r, /home//.Xauthority r, /home//.xsession-errors w, /proc/meminfo r, /usr/bin/env ixr, /usr/bin/python2.5 ixr, /usr/sbin/sabayon-apply mr, }	over 4 years ago	none	261	cinimod	Edit	History
opensuse10.3	/usr/bin/gdmflexiserver	#include <tunables/global> /usr/bin/gdmflexiserver flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /usr/bin/gdmflexiserver mr, /var/lib/gdm/* r, /var/run/gdm.pid r, /var/run/gdm_socket rw, }	over 4 years ago	argh, switch things back to complain for a while	178	jmichael	Edit	History
opensuse10.3	/usr/lib/ssh/x11-ssh-askpass	#include <tunables/global> /usr/lib/ssh/x11-ssh-askpass flags=(complain) { #include <abstractions/base> /usr/lib/ssh/x11-ssh-askpass mr, }	over 4 years ago	argh, switch things back to complain for a while	223	jmichael	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /dev/shm/ r, owner /dev/shm/pulse-shm-1311617008 r, owner /dev/shm/pulse-shm-29060866 rw, owner /dev/shm/pulse-shm-3992416065 rw, /dev/tty rw, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gre.d/ r, /etc/gre.d/1.9.0.17-64bit.system.conf r, /etc/gre.d/1.9.2.0-64bit.system.conf r, /etc/gtk-2.0/gdk-pixbuf64.loaders r, /etc/gtk-2.0/gtk64.immodules r, /etc/gtk-2.0/gtkrc r, /etc/magic r, /etc/mailcap r, /etc/mime.types r, /etc/pango/pango64.modules r, /etc/pulse/client.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.esd_auth r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//.mozilla/firefox/default/ r, owner /home//.mozilla/firefox/default/.parentlock wk, owner /home//.mozilla/firefox/default/XPC.mfasl r, owner /home//.mozilla/firefox/default/XUL.mfasl r, owner /home//.mozilla/firefox/default/adblockplus/patterns.ini rw, owner /home//.mozilla/firefox/default/adblockplus/patterns.ini-temp rw, owner /home//.mozilla/firefox/default/bookmarkbackups/ r, owner /home//.mozilla/firefox/default/cert8.db rw, owner /home//.mozilla/firefox/default/compatibility.ini r, owner /home//.mozilla/firefox/default/compreg.dat r, owner /home//.mozilla/firefox/default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/default/cookies.sqlite rwk, owner /home//.mozilla/firefox/default/cookies.sqlite-journal w, owner /home//.mozilla/firefox/default/downloads.sqlite rwk, owner /home//.mozilla/firefox/default/downloads.sqlite-journal w, owner /home//.mozilla/firefox/default/extensions.cache r, owner /home//.mozilla/firefox/default/extensions.ini r, owner /home//.mozilla/firefox/default/extensions/ r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/chrome/secondsearch.jar r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/defaults/preferences/secondsearch.js r, owner /home//.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/defaults/preferences/textlink.js r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/adblockplus.jar r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/adblockplus.js r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/bindings.xml r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/branch.properties r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/firebug.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/panel.html r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/defaults/preferences/firebug.js r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/locale/en-US/firebug.dtd r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/locale/en-US/firebug.properties r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/Templarian_inspector.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNext.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextActive.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextArmed.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/console.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/continueDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/css.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/debugger.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/dom.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug-gray-16.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/html.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/layout.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/net.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/panel.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/panelbase.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepIntoDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepOutDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepOverDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/traceConsole.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/detach.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/down.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/firebug.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/min.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/off.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/panel.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabBg.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/up.png r, owner /home//.mozilla/firefox/default/firebug/annotations.json rw, owner /home//.mozilla/firefox/default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/default/key3.db rw, owner /home//.mozilla/firefox/default/localstore-1.rdf rw, owner /home//.mozilla/firefox/default/localstore.rdf rw, owner /home//.mozilla/firefox/default/lock w, owner /home//.mozilla/firefox/default/mimeTypes.rdf rw, owner /home//.mozilla/firefox/default/permissions.sqlite rwk, owner /home//.mozilla/firefox/default/places.sqlite rwk, owner /home//.mozilla/firefox/default/places.sqlite-journal rw, owner /home//.mozilla/firefox/default/pluginreg.dat r, owner /home//.mozilla/firefox/default/prefs-1.js rw, owner /home//.mozilla/firefox/default/prefs.js rw, owner /home//.mozilla/firefox/default/search.json r, owner /home//.mozilla/firefox/default/search.sqlite rwk, owner /home//.mozilla/firefox/default/secmod.db r, owner /home//.mozilla/firefox/default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/default/urlclassifier3.sqlite-journal w, owner /home//.mozilla/firefox/default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/default/xpti.dat r, owner /home//.mozilla/firefox/profiles.ini r, owner /home//.qt/qtrc r, /opt/kde3/share/icons/crystalsvg/16x16/actions/add.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/fileclose.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/back.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/forward.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/gohome.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/reload.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/stop.png r, owner /proc//cmdline r, owner /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /tmp/ r, /tmp/.X11-unix/X0 w, owner /tmp/.esd-1005/socket rw, owner /tmp/orbit-student/ w, owner /tmp/orbit-student/linc-116a-0-9e318fc3e1a5 w, owner /tmp/orbit-student/linc-1b48-0-376f972d64afc w, owner /tmp/pulse-jLg7ZFuCbSIo/native w, /usr/bin/dbus-launch rix, /usr/bin/file rix, /usr/lib64/ mr, /usr/lib64/firefox/firefox rix, /usr/share/fonts/ r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/misc/magic.mgc r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/chrome.manifest r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/susefox-pfs.js r, /usr/share/sounds/freedesktop/index.theme r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86-64.cache-2 r, /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-x86-64.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86-64.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86-64.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86-64.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86-64.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86-64.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86-64.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86-64.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86-64.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86-64.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86-64.cache-2 r, /var/cache/fontconfig/c16af864172909159ced9a806109b5c1-x86-64.cache-2 r, /var/cache/fontconfig/c36a5ca5419b5200dcfc86d54b5d311a-x86-64.cache-2 r, /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86-64.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86-64.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86-64.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86-64.cache-2 r, /var/lib/dbus/machine-id r, /var/run/dbus/system_bus_socket w, /var/tmp/ r, }	over 2 years ago		177	xxxx	Edit	History
opensuse11.0	/usr/bin/mysql	#include <tunables/global> /usr/bin/mysql flags=(complain) { #include <abstractions/base> }	over 3 years ago	mysql	160	kovik-apparmor	Edit	History
opensuse11.0	/etc/init.d/apache2	#include <tunables/global> /etc/init.d/apache2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> audit network all, /bin/bash rwix, ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	about 1 year ago	apache2	71	qrsinc	Edit	History
opensuse10.3	/usr/sbin/sabayon-apply	#include <tunables/global> /usr/sbin/sabayon-apply { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> /etc/xml/catalog r, /etc/xml/suse-catalog.xml r, /home/*/.Xauthority r, /proc/meminfo r, /usr/bin/env ixr, /usr/bin/python2.5 ixr, /usr/sbin/sabayon-apply mr, }	over 4 years ago	Import of jmichaels profiles	276	dominic	Edit	History
opensuse10.3	/usr/bin/ekiga	#include <tunables/global> /usr/bin/ekiga flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /dev/ r, /dev/** r, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.beagle/socket w, /home//.config/qtcurvestylerc r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/gnomemeeting rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.kde/share/config/gtkrc-2.0 r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /opt/gnome/share/icons/ r, /opt/gnome/share/icons/Tango/icon-theme.cache r, /opt/gnome/share/icons/gnome/icon-theme.cache r, /opt/gnome/share/icons/hicolor/icon-theme.cache r, /opt/gnome/share/pixmaps/ r, /opt/kde3/share/pixmaps/ r, /proc//cmdline r, /proc/meminfo r, /proc/net/if_inet6 r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/ekiga mr, /usr/lib/pwlib/devices/sound/.so mr, /usr/lib/pwlib/devices/videoinput/.so mr, /usr/lib64/ mr, /usr/local/share/icons/ r, /usr/local/share/icons/hicolor/icon-theme.cache r, /usr/local/share/pixmaps/ r, /usr/share/mime/.xml r, /var/cache/libx11/compose/* r, }	over 4 years ago	ekiga-changelog	229	HutcH	Edit	History
ubuntu-gutsy	/usr/bin/dirname	#include <tunables/global> /usr/bin/dirname flags=(complain) { #include <abstractions/base> /usr/bin/dirname mr, }	over 4 years ago	gnome	204	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/evolution	#include <tunables/global> /usr/bin/evolution { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.evolution/ r, /home//.evolution/.db r, /home//.evolution/camel-cert.db rw, /home//.evolution/camel-cert.db~ rw, /home//.evolution/cert8.db rw, /home//.evolution/key3.db rw, /home//.evolution/mail/.xml rw, /home//.evolution/mail/config/* rw, /home//.evolution/mail/local/ krw, /home//.evolution/mail/local/.lock lw, /home//.evolution/mail/pop/* rw, /home//.gnome2_private/ w, /home//.gnome2_private/Evolution r, /home//.icons/ r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/bin/evolution mr, /usr/local/share/icons/ r, /usr/share/evolution/2.12/.xml r, /usr/share/evolution/2.12/etspec/message-list.etspec r, /usr/share/evolution/2.12/images/.png r, /usr/share/evolution/2.12/ui/.xml r, /usr/share/evolution/2.12/views/mail/.galview r, /usr/share/evolution/2.12/views/mail/.xml r, /usr/share/gtkhtml-3.14/.emacs r, }	over 4 years ago	gnome	245	hbpteam	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_ptrace, owner /etc/apache2/conf.d/ r, owner /etc/apache2/conf.d/mailman.conf r, owner /etc/apache2/conf.d/php5.conf r, owner /etc/apache2/default-server.conf r, owner /etc/apache2/errors.conf r, /etc/apache2/httpd.conf r, owner /etc/apache2/listen.conf r, owner /etc/apache2/mod_autoindex-defaults.conf r, owner /etc/apache2/mod_info.conf r, owner /etc/apache2/mod_log_config.conf r, owner /etc/apache2/mod_mime-defaults.conf r, owner /etc/apache2/mod_status.conf r, owner /etc/apache2/mod_userdir.conf r, owner /etc/apache2/mod_usertrack.conf r, /etc/apache2/server-tuning.conf r, owner /etc/apache2/ssl-global.conf r, owner /etc/apache2/sysconfig.d/global.conf r, owner /etc/apache2/sysconfig.d/include.conf r, /etc/apache2/sysconfig.d/loadmodule.conf r, /etc/apache2/uid.conf r, owner /etc/apache2/vhosts.d/ r, owner /etc/mime.types r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, /proc//attr/current w, owner /usr/lib/* m, /usr/lib/** r, owner /usr/sbin/httpd2-prefork r, owner /var/lib/php5/session_mm_apache2handler0.sem wk, owner /var/log/apache2/access_log a, owner /var/log/apache2/error_log w, owner /var/run/httpd2.pid w, ^/index.php { /srv/www/htdocs/index.php r, } ^/info.php { #include <abstractions/nameservice> /dev/urandom r, /etc/localtime r, /proc//attr/current w, /srv/www/htdocs/info.php r, /usr/share/zoneinfo/ r, /usr/share/zoneinfo/* r, /var/log/apache2/access_log w, } ^/touch-file.php { #include <abstractions/bash> #include <abstractions/nameservice> /bin/bash rix, /bin/ls mrix, /bin/touch rix, /dev/tty rw, /dev/urandom r, /etc/ld.so.cache r, /etc/localtime r, /lib/ld-2.9.so rix, /lib/libso mr, /proc//attr/current w, owner /proc//mounts r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /srv/www/htdocs/touch-file.php r, owner /tmp/heja rw, /var/log/apache2/access_log w, /var/log/apache2/error_log w, } ^DEFAULT_URI { /dev/urandom r, /proc//attr/current w, /srv/www/htdocs/touch-file.php r, /var/log/apache2/access_log w, /var/log/apache2/error_log w, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /proc//attr/current w, } }	about 1 year ago		78	geeko	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/bz2.ini r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/curl.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_pgsql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/pgsql.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/zlib.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/htdocs/data/.htpasswd rw, /srv/www/htdocs/pub/** rw, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, owner /usr/lib/** mr, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, owner /usr/lib64/ m, /usr/lib64/ r, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago	Initial	87	anachronism	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	#include <tunables/global> /usr/lib/firefox/firefox-bin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/grep ixr, /bin/netstat Px, /bin/ps Px, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.adobe/Flash_Player/* r, /home//.beagle/ToIndex/ w, /home//.beagle/socket w, /home//.bookmarks.html rw, /home//.config/ r, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.* rw, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.kde/share/config/ r, /home//.kde/share/config/gtkrc-qtc rw, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.macromedia/Flash_Player/** rw, /home//.mailcap r, /home//.mozilla/firefox/** rw, /home//.mozilla/firefox//.parentlock krw, /home//.mozilla/firefox//search.sqlite krw, /home//.mozilla/firefox//urlclassifier2.sqlite krw, /home//.mozilla/plugins/ r, /home//.mozilla/plugins/libflashplayer.so mr, /home//.recently-used.xbel r, /home//Desktop/ r, /home//Desktop/* rw, /home//Documents/* rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//cmdline r, /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/acroread Px, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/file-roller Px, /usr/bin/gimp-remote-2.2 Px, /usr/bin/gvim-normal ixr, /usr/bin/mplayer Px, /usr/bin/vlc Px, /usr/lib/Acrobat7/Browser/intellinux/.so mr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/firefox.sh Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/kde4/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/suse-help.svg r, /usr/share/gdm/applications/ r, /usr/share/mime/*.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	Running ff on kde tests.	220	dominic	Edit	History
opensuse10.3	/usr/sbin/cupsd	#include <tunables/global> /usr/sbin/cupsd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> capability chown, capability dac_override, capability fsetid, capability net_bind_service, network inet dgram, network inet stream, network inet6 dgram, network inet6 stream, /etc/cups/ r, /etc/cups/* r, /etc/gai.conf r, /etc/printcap w, /proc/net/ r, /proc/net/unix r, /usr/lib/cups/filter/rastertoz600 ixr, /usr/lib/cups/notifier/ r, /usr/sbin/cupsd mr, /usr/share/cups/** r, /var/cache/cups/job.cache rw, /var/cache/cups/remote.cache rw, /var/log/cups/access_log rw, /var/log/cups/error_log rw, /var/run/cups/certs/* w, /var/run/cups/cups.sock w, /var/run/nscd/services r, /var/spool/cups/tmp/ r, }	over 4 years ago	changes	251	security	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mixr, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index wr, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } /usr/sbin/httpd2-prefork//DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mixr, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, }	over 4 years ago		301	kungfu	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/firefox/firefox.sh mr, }	over 4 years ago	firefox	334	tube	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/basename rcx, /bin/bash rix, /bin/grep rix, /usr/bin/file rcx, /usr/lib/firefox/firefox px, profile /bin/basename flags=(complain) { #include <abstractions/base> /bin/basename mr, } profile /usr/bin/file flags=(complain) { #include <abstractions/base> /etc/magic r, /usr/bin/file mr, /usr/share/misc/magic.mgc r, } }	over 2 years ago	local profile changed	90	mts-consult	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	#include <tunables/global> /usr/lib/firefox/firefox-bin { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> network inet stream, network inet6 stream, deny /usr/bin/bug-buddy x, /bin/netstat cx, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.esd_auth r, owner /home//.fontconfig/* r, owner /home//.gnome2_private/ w, owner /home//.mozilla/firefox/** rw, owner /home//.mozilla/firefox//.sqlite rwk, owner /home//.mozilla/firefox//.parentlock wk, /usr/lib/firefox/firefox-bin mr, /var/cache/libx11/compose/ r, profile /bin/netstat { #include <abstractions/base> network inet dgram, /bin/netstat mr, /proc/net/ r, /proc/net/dev r, /proc/net/unix r, } }	over 3 years ago	test profile - please don't use	241	jjohansen	Edit	History
opensuse10.3	/usr/bin/xmodmap	#include <tunables/global> /usr/bin/xmodmap { #include <abstractions/X> #include <abstractions/base> /etc/X11/Xmodmap r, /usr/bin/xmodmap mr, /var/lib/gdm/* r, }	over 4 years ago	Import of jmichaels profiles	201	dominic	Edit	History
opensuse10.3	/usr/lib/cups/backend/lpd	#include <tunables/global> /usr/lib/cups/backend/lpd flags=(complain) { #include <abstractions/base> /usr/lib/cups/backend/lpd mr, }	over 4 years ago	cups testing	352	dominic	Edit	History
opensuse11.0	/usr/sbin/ypserv	#include <tunables/global> /usr/sbin/ypserv flags=(complain) { #include <abstractions/base> #include <abstractions/nis> capability net_bind_service, owner /etc/ypserv.conf r, owner /var/run/ypserv.pid wk, owner /var/yp/securenets r, }	over 2 years ago	nis	187	oliver siebert	Edit	History
opensuse11.0	/usr/bin/dirname	#include <tunables/global> /usr/bin/dirname flags=(complain) { #include <abstractions/base> /usr/bin/dirname mr, }	over 3 years ago		147	duffimc	Edit	History
ubuntu-gutsy	/usr/lib/postfix/pipe	# $Id: usr.lib.postfix.pipe 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/pipe { #include <abstractions/base> /usr/lib/postfix/pipe rmix, }	over 3 years ago		130	stive	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/kde> #include <abstractions/nameservice> deny owner /home//.mozilla/ r, /dev/snd/ mrw, /dev/video0 rw, /etc/gai.conf r, /etc/group mr, /home// r, /home//* rwk, /home//.Skype/ rw, /home//.Skype/** rwk, /home//.config/Trolltech.conf rwk, /home//.fontconfig/** r, /home//.kde/share/config/kioslaverc r, /proc//net/route r, /proc/interrupts r, /proc/net/route r, /proc/sys/kernel/osrelease r, /proc/sys/kernel/ostype r, /sys/devices/system/cpu/ r, /usr//ooo-2.0/share/fonts/* mr, /usr/bin/dbus-launch ux, /usr/bin/gconftool-2 ux, /usr/bin/skype mr, /usr/bin/xdg-open Ux, /usr/lib/ mr, /usr/share/alsa/ r, /usr/share/fonts/ mr, /usr/share/ghostscript/fonts/ mr, /usr/share/locale/ mr, /usr/share/skype/ r, /usr/share/skype/ mrk, /var/lib/dbus/machine-id r, }	over 3 years ago		205	woro	Edit	History
opensuse10.3	/usr/bin/smbspool	#include <tunables/global> /usr/bin/smbspool flags=(complain) { #include <abstractions/base> /usr/bin/smbspool mr, }	over 4 years ago	cups testing	389	dominic	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	#include <tunables/global> /usr/lib/firefox/firefox-bin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/grep ixr, /bin/netstat Px, /bin/ps Px, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.adobe/Flash_Player/* r, /home//.beagle/socket w, /home//.bookmarks.html rw, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.* rw, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.macromedia/Flash_Player/* r, /home//.mailcap r, /home//.mozilla/firefox/** rw, /home//.mozilla/firefox//.parentlock krw, /home//.mozilla/firefox//urlclassifier2.sqlite krw, /home//.mozilla/plugins/ r, /home//.mozilla/plugins/libflashplayer.so mr, /home//.recently-used.xbel r, /home//Desktop/ r, /home//Desktop/* rw, /home//Documents/* rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/acroread Px, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/file-roller Px, /usr/bin/gimp-remote-2.2 Px, /usr/bin/gvim-normal ixr, /usr/bin/mplayer Px, /usr/lib/Acrobat7/Browser/intellinux/.so mr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/firefox.sh Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/suse-help.svg r, /usr/share/gdm/applications/ r, /usr/share/mime/.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	none	206	cinimod	Edit	History
opensuse11.0	/usr/sbin/named	#include <tunables/global> /usr/sbin/named flags=(complain) { #include <abstractions/base> capability setgid, }	over 2 years ago		187	oliver siebert	Edit	History
opensuse11.0	/sbin/auditd	#include <tunables/global> /sbin/auditd flags=(complain) { #include <abstractions/base> capability sys_ptrace, owner /var/log/audit/audit.log w, }	over 2 years ago		104	ddiaz	Edit	History
opensuse11.0	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin { #include <abstractions/base> #include <abstractions/nameservice> /proc/*/mounts r, /tmp/.X11-unix/X0 w, /usr/bin/pidgin r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20.mo r, }	over 3 years ago		169	liviudm	Edit	History
ubuntu-gutsy	/etc/cron.daily/mlocate	#include <tunables/global> /etc/cron.daily/mlocate { #include <abstractions/base> capability chown, capability dac_override, capability dac_read_search, capability fowner, capability fsetid, capability sys_admin, / r, /*/ r, /bin/dash ixr, /etc/cron.daily/mlocate mr, /etc/group r, /etc/mtab r, /etc/nsswitch.conf r, /etc/updatedb.conf r, /proc//mounts r, /usr/bin/ionice ixr, /usr/bin/updatedb.mlocate ixr, /var/lib/mlocate/* rw, }	over 3 years ago		283	stive	Edit	History
opensuse11.0	/usr/bin/ktorrent	#include <tunables/global> /usr/bin/ktorrent flags=(complain) { #include <abstractions/base> }	over 3 years ago	23Oktober2008 kontrollieren	249	marevent	Edit	History
opensuse10.3	/usr/bin/gconftool-2	#include <tunables/global> /usr/bin/gconftool-2 flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability kill, capability sys_ptrace, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.defaults/.testing.writeability w, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/ rw, /etc/gconf/schema-install-source r, /etc/gconf/schemas/.schemas r, /etc/gconf/schemas/.entries r, /proc/ r, /proc//cmdline r, /proc/*/stat r, /usr/bin/gconftool-2 mr, /usr/bin/killall ixr, /usr/lib/GConf/2/gconfd-2 Px, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	179	jmichael	Edit	History
opensuse10.3	/usr/sbin/saslauthd	#include <tunables/global> /usr/sbin/saslauthd { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, /etc/saslauthd.conf r, /usr/sbin/saslauthd mr, /var/run/sasl2/* krw, }	over 4 years ago		516	arclyde	Edit	History
opensuse10.3	/usr/bin/xmodmap	#include <tunables/global> /usr/bin/xmodmap { #include <abstractions/X> #include <abstractions/base> /etc/X11/Xmodmap r, /home//.Xauthority r, /usr/bin/xmodmap mr, /usr/share/hotkey-setup/hotkey-setup.xmodmap r, /var/lib/gdm/ r, /var/lib/xdm/authdir/authfiles/* r, }	over 4 years ago	none	189	cinimod	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /dev/shm/ r, owner /dev/shm/pulse-shm-1037808892 a, owner /dev/shm/pulse-shm-1050034994 a, owner /dev/shm/pulse-shm-1211404745 a, owner /dev/shm/pulse-shm-1446638569 a, owner /dev/shm/pulse-shm-1467305529 a, owner /dev/shm/pulse-shm-1622741507 a, owner /dev/shm/pulse-shm-1666933600 a, owner /dev/shm/pulse-shm-1995585318 r, owner /dev/shm/pulse-shm-2019522700 a, owner /dev/shm/pulse-shm-2072243533 a, owner /dev/shm/pulse-shm-2119277422 a, owner /dev/shm/pulse-shm-2126906412 rw, owner /dev/shm/pulse-shm-2128378761 r, owner /dev/shm/pulse-shm-2151245320 rw, owner /dev/shm/pulse-shm-2363893065 a, owner /dev/shm/pulse-shm-2396850234 r, owner /dev/shm/pulse-shm-2442834231 a, owner /dev/shm/pulse-shm-2549977543 a, owner /dev/shm/pulse-shm-2814412486 rw, owner /dev/shm/pulse-shm-2841507022 r, owner /dev/shm/pulse-shm-2896430949 a, owner /dev/shm/pulse-shm-3220724062 a, owner /dev/shm/pulse-shm-3229653623 r, owner /dev/shm/pulse-shm-3537677242 a, owner /dev/shm/pulse-shm-376438538 a, owner /dev/shm/pulse-shm-381620161 r, owner /dev/shm/pulse-shm-3817757151 a, owner /dev/shm/pulse-shm-3880979559 a, owner /dev/shm/pulse-shm-3902959294 a, owner /dev/shm/pulse-shm-3920509661 r, owner /dev/shm/pulse-shm-3964460839 a, owner /dev/shm/pulse-shm-3965874173 a, owner /dev/shm/pulse-shm-4165102617 a, owner /dev/shm/pulse-shm-4282535935 rw, owner /dev/shm/pulse-shm-429055936 a, owner /dev/shm/pulse-shm-696274664 r, owner /dev/shm/pulse-shm-710565768 a, owner /dev/shm/pulse-shm-991070019 r, /dev/tty rw, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gre.d/ r, /etc/gre.d/1.9.2.0-64bit.system.conf r, /etc/gtk-2.0/gdk-pixbuf64.loaders r, /etc/gtk-2.0/gtk64.immodules r, /etc/gtk-2.0/gtkrc r, /etc/kde4rc r, /etc/magic r, /etc/mime.types r, /etc/pango/pango64.modules r, /etc/passwd r, /etc/pulse/client.conf r, /etc/resolv.conf r, /etc/rpc r, owner /home// rw, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf rk, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.esd_auth r, owner /home//.fonts.conf r, owner /home//.gnome2/firefox-jPaIUK a, owner /home//.gnome2/firefox-tfWoAF a, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals rk, owner /home//.kde4/share/apps/RecentDocuments/ rw, owner /home//.kde4/share/apps/kfileplaces/bookmarks.xml rw, owner /home//.kde4/share/apps/kfileplaces/bookmarks.xml.tbcache w, owner /home//.kde4/share/config/ w, owner /home//.kde4/share/config/kdeglobals rw, owner /home//.kde4/share/config/kioslaverc rw, owner /home//.kde4/share/config/kmozillahelperrc rw, owner /home//.kde4/share/config/kmozillahelperrc.lock.E10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.E10896 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.F10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.G10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.H10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.I10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.If6302 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.J10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.M10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.N10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.P10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.R10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.S10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.T10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.U10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.UV6302 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.V10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.V10896 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.Y10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.Z10896 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.a10896 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.b10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.b10896 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.bc6302 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.c10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.du6302 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.e10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.f10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.l10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.m10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.n10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.o10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.oN6302 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.q10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.r10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.s10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.u10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.w10400 a, owner /home//.kde4/share/config/kmozillahelperrc.lock.y10400 a, owner /home//.local/share/ r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//.mozilla/firefox/default/ r, owner /home//.mozilla/firefox/default/.parentlock wk, owner /home//.mozilla/firefox/default/Cache.Trash/ w, owner /home//.mozilla/firefox/default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/default/Cache/_CACHE_003_ rw, owner /home//.mozilla/firefox/default/Cache/_CACHE_MAP_ rw, owner /home//.mozilla/firefox/default/XPC.mfasl rw, owner /home//.mozilla/firefox/default/XUL.mfasl rw, owner /home//.mozilla/firefox/default/adblockplus/patterns-backup1.ini rw, owner /home//.mozilla/firefox/default/adblockplus/patterns-backup2.ini rw, owner /home//.mozilla/firefox/default/adblockplus/patterns-backup3.ini rw, owner /home//.mozilla/firefox/default/adblockplus/patterns-backup4.ini rw, owner /home//.mozilla/firefox/default/adblockplus/patterns-backup5.ini w, owner /home//.mozilla/firefox/default/adblockplus/patterns.ini rw, owner /home//.mozilla/firefox/default/adblockplus/patterns.ini-temp rw, owner /home//.mozilla/firefox/default/blocklist.xml rw, owner /home//.mozilla/firefox/default/bookmarkbackups/ r, owner /home//.mozilla/firefox/default/bookmarkbackups/bookmarks-2010-03-09.json a, owner /home//.mozilla/firefox/default/bookmarkbackups/bookmarks-2010-03-10.json a, owner /home//.mozilla/firefox/default/bookmarkbackups/bookmarks-2010-03-11.json a, owner /home//.mozilla/firefox/default/cert8.db rw, owner /home//.mozilla/firefox/default/compatibility.ini r, owner /home//.mozilla/firefox/default/compreg.dat r, owner /home//.mozilla/firefox/default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/default/cookies.sqlite rwk, owner /home//.mozilla/firefox/default/cookies.sqlite-journal rw, owner /home//.mozilla/firefox/default/downloads.sqlite rwk, owner /home//.mozilla/firefox/default/downloads.sqlite-journal w, owner /home//.mozilla/firefox/default/extensions.cache r, owner /home//.mozilla/firefox/default/extensions.ini r, owner /home//.mozilla/firefox/default/extensions.log a, owner /home//.mozilla/firefox/default/extensions.rdf rw, owner /home//.mozilla/firefox/default/extensions/ r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/chrome/secondsearch.jar r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/defaults/preferences/secondsearch.js r, owner /home//.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/defaults/preferences/textlink.js r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/adblockplus.jar r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/adblockplus.js r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/chrome.manifest r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/bindings.xml r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/blank.gif r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/branch.properties r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/consoleInjected.js r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/firebug.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/highlighter.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/panel.html r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/defaults/preferences/ r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/defaults/preferences/firebug.js r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/locale/en-US/firebug.dtd r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/locale/en-US/firebug.properties r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/Templarian_inspector.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/activation-menu-console.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNext.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextActive.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextArmed.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakOn/breakOnErrorSingle.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakOn/breakOnMutateSingle.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakpoint.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/console.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/continueDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/css.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/debugger.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/dom.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/errorIcon-sm.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/errorIcon.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug-gray-16.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug16.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug32.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/group.gif r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/html.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/layout.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/net.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/panel.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/panelbase.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepIntoDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepOutDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepOverDisabled.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/tabMenuTarget.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/tabMenuTargetHover.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/traceConsole.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/detach.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/down.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/firebug.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/min.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/off.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/panel.css r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabBg.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabLeft.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabLeftHover.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabMid.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabMidHover.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabRight.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabRightHover.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/twistyClosed.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/twistyOpen.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/up.png r, owner /home//.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/upHover.png r, owner /home//.mozilla/firefox/default/firebug/annotations.json rw, owner /home//.mozilla/firefox/default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/default/formhistory.sqlite-journal rw, owner /home//.mozilla/firefox/default/key3.db rw, owner /home//.mozilla/firefox/default/localstore-1.rdf rw, owner /home//.mozilla/firefox/default/localstore.rdf rw, owner /home//.mozilla/firefox/default/lock w, owner /home//.mozilla/firefox/default/mimeTypes.rdf rw, owner /home//.mozilla/firefox/default/permissions.sqlite rwk, owner /home//.mozilla/firefox/default/places.sqlite rwk, owner /home//.mozilla/firefox/default/places.sqlite-journal rw, owner /home//.mozilla/firefox/default/pluginreg.dat r, owner /home//.mozilla/firefox/default/prefs-1.js rw, owner /home//.mozilla/firefox/default/prefs.js rw, owner /home//.mozilla/firefox/default/search.json r, owner /home//.mozilla/firefox/default/search.sqlite rwk, owner /home//.mozilla/firefox/default/secmod.db r, owner /home//.mozilla/firefox/default/sessionstore-1.js a, owner /home//.mozilla/firefox/default/sessionstore.bak a, owner /home//.mozilla/firefox/default/sessionstore.js rw, owner /home//.mozilla/firefox/default/signons.sqlite rwk, owner /home//.mozilla/firefox/default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/default/urlclassifier3.sqlite-journal w, owner /home//.mozilla/firefox/default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/default/xpti.dat r, owner /home//.mozilla/firefox/profiles.ini r, owner /home//.qt/qtrc r, owner /home//Desktop/ w, owner /home//Desktop/.directory r, owner /home//adrIP1.pdf a, /opt/kde3/share/icons/crystalsvg/16x16/actions/add.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/fileclose.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/back.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/forward.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/gohome.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/reload.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/stop.png r, /opt/kde3/share/icons/hicolor/ r, owner /proc//cmdline r, owner /proc//fd/ r, owner /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /proc/stat r, /tmp/ r, /tmp/.X11-unix/X0 w, owner /tmp/.esd-1005/socket rw, owner /tmp/orbit-somebody/ w, owner /tmp/orbit-student/ w, owner /tmp/orbit-student/linc-11fb-0-1675149e8cebb w, owner /tmp/orbit-student/linc-1528-0-12ba44f55b9d9 w, owner /tmp/orbit-student/linc-1871-0-38866a5b6fa43 w, owner /tmp/orbit-student/linc-371c-0-5e2de8c5148b2 w, owner /tmp/orbit-student/linc-37b6-0-22a379a1b62c2 w, owner /tmp/orbit-student/linc-37f4-0-21e6196c5d3bd w, owner /tmp/orbit-student/linc-39e8-0-2f99ef516b6c5 w, owner /tmp/pulse-e1LERjqKYsca/native w, /usr/bin/dbus-launch rix, /usr/bin/expr rix, /usr/bin/file rix, /usr/bin/kdeinit4 rix, /usr/lib/mozilla/kmozillahelper rix, /usr/lib/nspluginwrapper/i386/linux/npviewer rix, /usr/lib64/* mr, /usr/lib64/firefox/firefox rix, /usr/lib64/kde4/libexec/drkonqi rix, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/gvfs/remote-volume-monitors/hal.monitor r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/DMZ/index.theme r, /usr/share/icons/hicolor/ r, /usr/share/icons/oxygen/ r, /usr/share/kde4/config/kdebug.areas r, /usr/share/kde4/config/kdebugrc r, /usr/share/locale-bundle/en_US/LC_MESSAGES/kde4-openSUSE.mo r, /usr/share/misc/magic.mgc r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/chrome.manifest r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/susefox-pfs.js r, /usr/share/myspell/en_US.aff r, /usr/share/myspell/en_US.dic r, /usr/share/sounds/freedesktop/index.theme r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86-64.cache-2 r, /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-x86-64.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86-64.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86-64.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86-64.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86-64.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86-64.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86-64.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86-64.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86-64.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86-64.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86-64.cache-2 r, /var/cache/fontconfig/c16af864172909159ced9a806109b5c1-x86-64.cache-2 r, /var/cache/fontconfig/c36a5ca5419b5200dcfc86d54b5d311a-x86-64.cache-2 r, /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86-64.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86-64.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86-64.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86-64.cache-2 r, /var/cache/libx11/compose/l4_030_313cb605_00280cc0 r, /var/lib/dbus/machine-id r, /var/run/dbus/system_bus_socket w, /var/tmp/ r, owner /var/tmp/kdecache-student/kpc/kde-icon-cache.data rw, owner /var/tmp/kdecache-student/kpc/kde-icon-cache.index rw, owner /var/tmp/kdecache-student/ksycoca4 r, }	over 2 years ago	aaa	241	userx	Edit	History
opensuse10.3	/usr/bin/gnome-terminal	#include <tunables/global> /usr/bin/gnome-terminal { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash Ux, /dev/ptmx rw, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/gnome-terminal mr, /usr/lib/vte/gnome-pty-helper Px, /usr/share/terminfo/** r, /usr/share/vte/termcap/* r, /var/cache/libx11/compose/* r, }	over 4 years ago	Import of jmichaels profiles	237	dominic	Edit	History
opensuse11.0	/etc/init.d/xinetd	#include <tunables/global> /etc/init.d/xinetd flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	change0	135	tbrolin	Edit	History
ubuntu-gutsy	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld { #include <abstractions/base> #include <abstractions/mysql> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability dac_override, capability setgid, capability setuid, /etc/group m, /etc/hosts.allow r, /etc/hosts.deny r, /etc/mysql/.pem r, /etc/mysql/conf.d/ r, /etc/mysql/conf.d/ r, /etc/mysql/my.cnf r, /etc/passwd m, /usr/sbin/mysqld mr, /usr/share/mysql/ r, /var/lib/mysql/ r, /var/lib/mysql/ rwk, /var/log/mysql/ r, /var/log/mysql/* rw, /var/run/mysqld/mysqld.pid w, /var/run/mysqld/mysqld.sock w, }	over 3 years ago		184	stive	Edit	History
opensuse10.3	/usr/lib/gnome-main-menu/main-menu	#include <tunables/global> /usr/lib/gnome-main-menu/main-menu flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.config/ w, /home//.config/gnome-main-menu/ w, /home//.config/gnome-main-menu/showable_files_migrated w, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/subclasses r, /home//.recently-used.xbel r, /home//.recently-used.xbel.* rw, /home//.thumbnails/ w, /home//.thumbnails/** rw, /home//Desktop/* r, /home//Documents/ rw, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//mounts r, /proc/meminfo r, /proc/net/dev r, /proc/partitions r, /proc/stat r, /sys/block//stat r, /sys/devices//net//statistics/* r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/beagle-search Px, /usr/bin/bug-buddy ixr, /usr/bin/evince-thumbnailer Px, /usr/bin/gnome-screensaver-command Px, /usr/bin/gsf-office-thumbnailer Px, /usr/bin/package-manager Px, /usr/bin/totem-video-thumbnailer Px, /usr/lib/gnome-main-menu/main-menu mr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/f-spot/icons/.png r, /usr/share/gdm/applications/ r, /usr/share/gnome-2.0/ui/.xml r, /usr/share/gnome-main-menu/ r, /usr/share/gnome-main-menu/.glade r, /usr/share/gnome-main-menu/.xbel r, /usr/share/gnome-main-menu/empty.ods r, /usr/share/mime/*.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	277	jmichael	Edit	History
ubuntu-gutsy	/usr/bin/avidemux	#include <tunables/global> /usr/bin/avidemux { #include <abstractions/base> /usr/bin/avidemux mr, }	over 4 years ago	gnome	250	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gnome-screensaver	#include <tunables/global> /usr/bin/gnome-screensaver { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home//.Xauthority r, /proc//mounts r, /usr/bin/gnome-screensaver mr, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper Px, }	over 4 years ago	gnome	218	hbpteam	Edit	History
opensuse10.3	/usr/bin/nautilus	#include <tunables/global> /usr/bin/nautilus flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> / r, /bin/mount Ux, /boot/ r, /dev/ r, /dev/ptmx rw, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/opt/kde3/share/icons/ r, /etc/opt/kde3/share/icons// r, /etc/sound/events/gtk-events-2.soundlist r, /home/ r, /home/ rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/** r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/evince-thumbnailer Px, /usr/bin/file-roller Px, /usr/bin/gnome-appearance-properties Px, /usr/bin/gnome-terminal Px, /usr/bin/mplayer Px, /usr/bin/nautilus mr, /usr/bin/net Px, /usr/bin/totem-video-thumbnailer Px, /usr/lib/nautilus-cd-burner/mapping-daemon Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/.svg r, /usr/share/gdm/applications/ r, /usr/share/ghostscript/fonts/ r, /usr/share/mime/*.xml r, /usr/share/nautilus/ui/.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, }	over 4 years ago	let nautilus start gnome-terminal	235	jmichael	Edit	History
opensuse10.3	/usr/bin/env	#include <tunables/global> /usr/bin/env flags=(complain) { #include <abstractions/base> /usr/bin/env mr, }	over 4 years ago	env_changelog	193	security	Edit	History
opensuse10.3	/usr/bin/phex.sh	#include <tunables/global> /usr/bin/phex.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/phex.sh mr, }	over 4 years ago	phexlog	156	danny	Edit	History
opensuse11.0	/bin/ping	#include <tunables/global> /bin/ping { #include <abstractions/base> capability net_raw, capability setuid, network inet raw, owner /bin/ping r, }	over 2 years ago	koko	69	pone13	Edit	History
opensuse11.0	/usr/sbin/lighttpd	#include <tunables/global> /usr/sbin/lighttpd flags=(complain) { #include <abstractions/base> }	over 2 years ago	telix	136	telix	Edit	History
opensuse11.0	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox { #include <abstractions/base> #include <abstractions/bash> /bin/bash rix, owner /etc/resolv.conf r, owner /root/.beagle/ToIndex/.firefox-beagle-web-246ee772548c0b40ee205f075fb7c9cc rw, owner /root/.beagle/ToIndex/.firefox-beagle-web-b595cb69449dc7f1e52e58c08f2fa692 a, owner /root/.beagle/ToIndex/.firefox-beagle-web-c9c38438ee5df3a9b3b08e70830b5579 rw, owner /root/.beagle/ToIndex/firefox-beagle-web-246ee772548c0b40ee205f075fb7c9cc w, owner /root/.beagle/ToIndex/firefox-beagle-web-b595cb69449dc7f1e52e58c08f2fa692 a, owner /root/.beagle/ToIndex/firefox-beagle-web-c9c38438ee5df3a9b3b08e70830b5579 w, owner /root/.mozilla/firefox/ljgw8qhc.default/ r, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/ rw, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/ rw, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/Cache/ rw, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/Cache/3D0C8963d01 w, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/Cache/3D0F8963d01 w, }	over 2 years ago	firefox	158	osmo	Edit	History
opensuse11.0	/usr/bin/konqueror	#include <tunables/global> /usr/bin/konqueror { #include <abstractions/base> deny /etc/fonts/conf.avail/20-fix-globaladvance.conf r, /etc/fonts/** r, /etc/kde4/share/config/oxygenrc r, /usr/lib/kde4/libexec/drkonqi cx, profile /usr/lib/kde4/libexec/drkonqi { } }	over 3 years ago	pruebaperf	150	prueba	Edit	History
opensuse11.0	/usr/bin/tcptraceroute	#include <tunables/global> /usr/bin/tcptraceroute { #include <abstractions/base> #include <abstractions/nameservice> capability net_raw, capability setuid, network inet raw, network packet raw, owner /usr/bin/tcptraceroute r, }	over 3 years ago		231	phocean	Edit	History
opensuse10.3	/usr/bin/tor	#include <tunables/global> /usr/bin/tor { #include <abstractions/base> /usr/bin/tor mr, }	over 3 years ago	tor1	151	vehuel	Edit	History
opensuse10.3	/usr/bin/qemu	#include <tunables/global> /usr/bin/qemu flags=(complain) { #include <abstractions/base> /usr/bin/qemu mr, }	over 4 years ago		234	caschi	Edit	History
opensuse10.3	/usr/sbin/mdnsd	# $Id: usr.sbin.mdnsd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/mdnsd { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_resource, /usr/sbin/mdnsd rmix, /var/run/mdnsd lw, /var/run/mdnsd.pid w, @{PROC}/net/ r, @{PROC}/net/unix r, }	over 4 years ago	none	199	cinimod	Edit	History
opensuse10.3	/usr/bin/mkfontdir	#include <tunables/global> /usr/bin/mkfontdir { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /home// r, /home//.fonts/ r, /home/*/.fonts/fonts.dir rw, /proc/meminfo r, /usr/bin/mkfontdir mr, /usr/bin/mkfontscale Pxmr, }	over 4 years ago	none	186	cinimod	Edit	History
opensuse10.3	/usr/bin/gnome-open	#include <tunables/global> /usr/bin/gnome-open { #include <abstractions/base> /usr/bin/gnome-open mr, }	over 4 years ago	Import of jmichaels profiles	342	dominic	Edit	History
opensuse10.3	/usr/bin/gnome-terminal	#include <tunables/global> /usr/bin/gnome-terminal { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> capability sys_ptrace, /bin/bash Ux, /dev/ptmx rw, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/gnome-terminal mr, /usr/lib/vte/gnome-pty-helper Px, /usr/share/terminfo/** r, /usr/share/vte/termcap/* r, /var/cache/libx11/compose/* r, }	over 4 years ago	none	214	cinimod	Edit	History
opensuse10.3	/usr/bin/gnome-screensaver-command	#include <tunables/global> /usr/bin/gnome-screensaver-command { #include <abstractions/base> /usr/bin/gnome-screensaver-command mr, }	over 4 years ago	Import of jmichaels profiles	245	dominic	Edit	History
opensuse10.3	/usr/bin/gnome	#include <tunables/global> /usr/bin/gnome flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/cp ixr, /bin/mkdir ixr, /bin/touch ixr, /home//.skel/ w, /home//.skel/* w, /home//Desktop/ w, /home//Desktop/GnomeOnlineHelp.desktop w, /home//Desktop/SuSE.desktop w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/gconftool-2 Px, /usr/bin/gnome mr, /usr/bin/gnome-session Px, /usr/share/dist/desktop-files/.desktop r, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	210	jmichael	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	about 1 year ago		102	mroose	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> audit network stream, /bin/basename rcx, /bin/bash rix, /bin/grep rix, /etc/gnome-vfs-2.0/modules/ r, /etc/gre.d/ r, /etc/gre.d/* r, /etc/mailcap r, /etc/mime.types r, /etc/opt/kde3/*/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.adobe/Flash_Player// r, owner /home//.config/Trolltech.conf r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.fontconfig/* r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/applications/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.macromedia/Flash_Player/* r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/* rwk, owner /home//.qt/qtrc r, owner /home//Documents/.etc/mozilla/extensions// r, owner /home//Documents/.etc/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//Documents/.etc/mozilla/firefox/ r, owner /home//Documents/.etc/mozilla/firefox// r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/ rwk, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default// rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash/Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache/ rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/adblockplus/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/chrome/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/extensions/* r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/gm_scripts/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/searchplugins/ rw, owner /home//downloads/ w, owner /home/draglor/Documents/Temp/ w, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/ark.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, owner /proc//cmdline r, owner /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /usr/bin/file rcx, /usr/lib/firefox/firefox mrpx, /usr/lib/firefox/firefox.sh rix, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/locale-bundle/de/LC_MESSAGES/ r, /usr/share/locale-bundle/ru/LC_MESSAGES/* r, /usr/share/mime/application/x-bzip.xml r, /usr/share/mozilla/extensions/*/ r, /var/cache/gio-2.0/defaults.list r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, profile /bin/basename { #include <abstractions/base> /bin/basename mr, } profile /usr/bin/file { #include <abstractions/base> /etc/magic r, /usr/bin/file mr, /usr/share/misc/magic.mgc r, } }	over 3 years ago	Firefox aktualisiertes Profil	248	amat17t	Edit	History
opensuse10.3	/usr/bin/tty	#include <tunables/global> /usr/bin/tty flags=(complain) { #include <abstractions/base> /usr/bin/tty mr, }	over 3 years ago		224	arturk	Edit	History
opensuse10.3	/usr/bin/gimp-remote-2.2	#include <tunables/global> /usr/bin/gimp-remote-2.2 { #include <abstractions/base> /usr/bin/gimp-remote-2.2 mr, }	over 4 years ago	Import of jmichaels profiles	235	dominic	Edit	History
opensuse10.3	/usr/bin/gnome-session	#include <tunables/global> /usr/bin/gnome-session { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gnome-2.soundlist r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xdg/autostart/ r, /etc/xdg/autostart/.desktop r, /home// w, /home//.ICEauthority rw, /home//.ICEauthority-c w, /home//.ICEauthority-l lw, /home//.Xauthority r, /home//.config/autostart/ r, /home//.esd_auth rw, /home//.fontconfig/ lrw, /home//.fonts/ r, /home//.gnome2/ w, /home//.gnome2/accels/ w, /home//.gnome2/session r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /usr/bin/beagled Px, /usr/bin/bug-buddy ixr, /usr/bin/compiz Px, /usr/bin/esd Px, /usr/bin/ggreeter Px, /usr/bin/gnome-at-visual Px, /usr/bin/gnome-cups-icon Px, /usr/bin/gnome-keyring-daemon Px, /usr/bin/gnome-panel Px, /usr/bin/gnome-power-manager Px, /usr/bin/gnome-session mr, /usr/bin/gnome-terminal Px, /usr/bin/gnome-volume-manager Px, /usr/bin/gnome-wm Px, /usr/bin/nautilus Px, /usr/bin/nm-applet Px, /usr/bin/opensuse-updater-gnome-applet Px, /usr/lib/GConf/2/gconf-sanity-check-2 Px, /usr/share/dist/splash/dist-splash.png r, /usr/share/gnome/autostart/ r, /usr/share/gnome/autostart/.desktop r, /usr/share/gnome/default.session r, }	over 4 years ago	Import of jmichaels profiles	203	dominic	Edit	History
opensuse11.0	/opt/google/chrome/google-chrome	#include <tunables/global> /opt/google/chrome/google-chrome flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /opt/google/chrome/google-chrome r, ^null-39 { /etc/ld.so.cache r, /lib/libc-2.10.1.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-3b { /etc/ld.so.cache r, /lib/libc-2.10.1.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-3d { deny capability chown, deny capability dac_override, deny capability fsetid, deny capability setgid, deny capability setuid, deny capability sys_admin, deny capability sys_chroot, deny owner /proc/ r, deny /proc/2186/fd/ r, deny /proc/2427/fd/ r, /dev/urandom r, /etc/fonts/** r, /etc/ld.so.cache mr, /etc/localtime r, owner /home/jussier/.fontconfig/c01270a3a4ffb1849c76eac544526ed1-x86.cache-2 r, owner /home/jussier/.fonts.conf r, /lib/libso mr, /opt/google/chrome/chrome.pak mr, /opt/google/chrome/libffmpegsumo.so mr, /opt/google/chrome/locales/pt-BR.pak mr, } ^null-45 { /etc/ld.so.cache r, /lib/libso mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-47 { /etc/ld.so.cache r, /lib/libc-2.10.1.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS r, /usr/lib/locale/pt_BR.utf8/LC_COLLATE r, /usr/lib/locale/pt_BR.utf8/LC_CTYPE r, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION r, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT r, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES r, /usr/lib/locale/pt_BR.utf8/LC_MONETARY r, /usr/lib/locale/pt_BR.utf8/LC_NAME r, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC r, /usr/lib/locale/pt_BR.utf8/LC_PAPER r, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE r, /usr/lib/locale/pt_BR.utf8/LC_TIME r, /usr/share/locale/locale.alias r, } ^null-49 { capability chown, capability dac_override, capability sys_admin, capability sys_ptrace, deny /proc/2427/fd/ r, deny /proc/2472/fd/ r, deny /proc/2473/fd/ r, deny /proc/2481/fd/ r, deny /proc/2487/fd/ r, deny /proc/2489/fd/ r, deny /proc/2538/fd/ r, deny /proc/2539/fd/ r, deny /proc/2541/fd/ r, deny /proc/2543/fd/ r, deny /proc/2547/fd/ r, deny /proc/2548/fd/ r, deny /proc/2631/fd/ r, deny /proc/2670/fd/ r, deny /proc/2677/fd/ r, deny /proc/2680/fd/ r, deny /proc/3583/fd/ r, deny /proc/3735/fd/ r, deny /proc/3747/fd/ r, deny /proc/3758/fd/ r, deny /proc/3760/fd/ r, deny /proc/3763/fd/ r, deny owner /proc/6001/fd/ r, deny /proc/6691/fd/ r, deny /proc/6696/fd/ r, deny /proc/6707/fd/ r, deny /proc/8339/fd/ r, deny /proc/8358/fd/ r, deny /proc/8368/fd/ r, deny /proc/8501/fd/ r, deny /proc/8506/fd/ r, deny /proc/8508/fd/ r, deny /proc/8520/fd/ r, deny /proc/8722/fd/ r, deny /proc/8725/fd/ r, deny owner /proc/8727/fd/ r, deny /proc/9527/fd/ r, deny /proc/9528/fd/ r, deny /proc/9529/fd/ r, deny /proc/9530/fd/ r, deny /proc/9565/fd/ r, deny /proc/9568/fd/ r, deny /proc/9572/fd/ r, deny /proc/9574/fd/ r, deny /proc/9582/fd/ r, deny /proc/9583/fd/ r, deny /proc/9770/fd/ r, deny /proc/9775/fd/ r, deny /proc/9789/fd/ r, deny /proc/9791/fd/ r, deny /proc/9800/fd/ r, deny owner /proc/9800/mounts r, deny owner /proc/9800/status r, deny /proc/9803/fd/ r, deny owner /proc/9804/fd/ r, deny owner /proc/9805/fd/ r, deny owner /proc/9805/mounts r, deny owner /proc/9805/status r, deny owner /proc/9807/fd/ r, deny /proc/sys/kernel/shmmax r, deny /usr/share/zoneinfo/Australia/ r, deny /usr/share/zoneinfo/Australia/ACT r, deny /usr/share/zoneinfo/Australia/Adelaide r, deny /usr/share/zoneinfo/Australia/Brisbane r, deny /usr/share/zoneinfo/Australia/Broken_Hill r, deny /usr/share/zoneinfo/Australia/Canberra r, deny /usr/share/zoneinfo/Australia/Currie r, deny /usr/share/zoneinfo/Australia/Darwin r, deny /usr/share/zoneinfo/Australia/Eucla r, deny /usr/share/zoneinfo/Australia/Hobart r, deny /usr/share/zoneinfo/Australia/LHI r, deny /usr/share/zoneinfo/Australia/Lindeman r, deny /usr/share/zoneinfo/Australia/Lord_Howe r, deny /usr/share/zoneinfo/Australia/Melbourne r, deny /usr/share/zoneinfo/Australia/NSW r, deny /usr/share/zoneinfo/Australia/North r, deny /usr/share/zoneinfo/Australia/Perth r, deny /usr/share/zoneinfo/Australia/Queensland r, deny /usr/share/zoneinfo/Australia/South r, deny /usr/share/zoneinfo/Australia/Sydney r, deny /usr/share/zoneinfo/Australia/Tasmania r, deny /usr/share/zoneinfo/Australia/Victoria r, deny /usr/share/zoneinfo/Australia/West r, deny /usr/share/zoneinfo/Australia/Yancowinna r, deny /usr/share/zoneinfo/Brazil/ r, /dev/urandom r, /etc/fonts/** r, /etc/ld.so.cache mr, /etc/localtime r, owner /home/jussier/.fontconfig/c01270a3a4ffb1849c76eac544526ed1-x86.cache-2 r, owner /home/jussier/.fonts.conf r, /lib/libbz2.so.* mr, /lib/libc-.so mr, /lib/libdbus-1.so. mr, /lib/libdl-.so mr, /lib/libexpat.so. mr, /lib/libgcc_s.so.* mr, /lib/libm-.so mr, /lib/libpcre.so. mr, /lib/libpthread-.so mr, /lib/libresolv-.so mr, /lib/librt-.so mr, /lib/libselinux.so. mr, /lib/libz.so.* mr, /opt/google/chrome/chrome.pak mr, /opt/google/chrome/libffmpegsumo.so mr, /opt/google/chrome/locales/pt-BR.pak mr, owner /proc/ r, /proc/2186/fd/ r, /usr/lib/gconv/gconv-modules.cache mr, /usr/lib/libso mr, /usr/lib/libORBit-2.so.* mr, /usr/lib/libX11.so.* mr, /usr/lib/libXau.so.* mr, /usr/lib/libXcomposite.so.* mr, /usr/lib/libXcursor.so.* mr, /usr/lib/libXdamage.so.* mr, /usr/lib/libXext.so.* mr, /usr/lib/libXfixes.so.* mr, /usr/lib/libXi.so.* mr, /usr/lib/locale/pt_BR.utf8/LC_ADDRESS mr, /usr/lib/locale/pt_BR.utf8/LC_COLLATE mr, /usr/lib/locale/pt_BR.utf8/LC_CTYPE mr, /usr/lib/locale/pt_BR.utf8/LC_IDENTIFICATION mr, /usr/lib/locale/pt_BR.utf8/LC_MEASUREMENT mr, /usr/lib/locale/pt_BR.utf8/LC_MESSAGES/SYS_LC_MESSAGES mr, /usr/lib/locale/pt_BR.utf8/LC_MONETARY mr, /usr/lib/locale/pt_BR.utf8/LC_NAME mr, /usr/lib/locale/pt_BR.utf8/LC_NUMERIC mr, /usr/lib/locale/pt_BR.utf8/LC_PAPER mr, /usr/lib/locale/pt_BR.utf8/LC_TELEPHONE mr, /usr/lib/locale/pt_BR.utf8/LC_TIME mr, /usr/share/locale/locale.alias r, /usr/share/zoneinfo/ r, /usr/share/zoneinfo/** r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 mr, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 mr, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 mr, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 mr, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, } }	over 2 years ago	djassar	117	jussierneto	Edit	History
opensuse10.3	/usr/bin/file-roller	#include <tunables/global> /usr/bin/file-roller { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /Archiv/** rw, /bin/basename ixr, /bin/bash ixr, /bin/cpio ixr, /bin/gzip ixr, /bin/rm ixr, /bin/tar ixr, /bin/uname ixr, /etc/SuSE-release r, /etc/cups/lpoptions r, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.beagle/socket w, /home//.cedegarc r, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.XZLO3T rw, /home//.dmrc r, /home//.dvipsrc r, /home//.emacs r, /home//.esd_auth r, /home//.exrc r, /home//.fontconfig/ r, /home//.fr-1OpKZg/ rw, /home//.fr-1OpKZg/iaf62clever/ rw, "/home//.fr-1OpKZg/iaf62clever/OOVokabeltrainer generic-sort-binary/" rw, "/home//.fr-1OpKZg/iaf62clever/OOVokabeltrainer generic-sort-binary/OOVokabeltrainer/" rw, "/home//.fr-1OpKZg/iaf62clever/OOVokabeltrainer generic-sort-binary/OOVokabeltrainer/bin/" rw, "/home//.fr-1OpKZg/iaf62clever/OOVokabeltrainer generic-sort-binary/OOVokabeltrainer/bin/Debug/" rw, "/home//.fr-1OpKZg/iaf62clever/OOVokabeltrainer generic-sort-binary/OOVokabeltrainer/bin/Debug/Vokabeln.csv" krw, /home//.fr-1YNBPT/ rw, /home//.gnome2/main rw, /home//.gnome2_private/ w, /home//.gpilotd.pid r, /home//.gtkrc-1.2-gnome2 r, /home//.icons/ r, /home//.inputrc r, /home//.kermrc r, /home//.local/share/applications/file-roller-usercustom.desktop r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/mime.cache r, /home//.local/share/mime/subclasses r, /home//.mailcap r, /home//.mozilla/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox/3749x1bh.default/ r, /home//.mozilla/firefox/3749x1bh.default/Cache/ r, /home//.mozilla/firefox/3749x1bh.default/bookmarkbackups/ r, /home//.mozilla/firefox/3749x1bh.default/chrome/ r, /home//.mozilla/firefox/3749x1bh.default/extensions/ r, /home//.muttrc r, /home//.ooo-2.0/.lock krw, /home//.ooo-2.0/user/config/imagecache/ r, /home//.ooo-2.0/user/config/javasettings_Linux_x86.xml r, /home//.ooo-2.0/user/psprint/ r, /home//.ooo-2.0/user/psprint/driver/ r, /home//.ooo-2.0/user/psprint/pspfontcache r, /home//.ooo-2.0/user/registry/ r, /home//.ooo-2.0/user/registry/cache/ r, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Calc.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Commands.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Common.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Events.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Jobs.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Linguistic.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Paths.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.ProtocolHandler.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Recovery.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Substitution.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.TabBrowse.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.TypeDetection.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.UI.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Office.Views.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.Setup.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.System.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.TypeDetection.Filter.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.TypeDetection.Misc.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.TypeDetection.Types.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.VCL.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.ucb.Configuration.dat kr, /home//.ooo-2.0/user/registry/cache/org.openoffice.ucb.Store.dat kr, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/Calc.xcu krw, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/Calc.xcu_tmp krw, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/Common.xcu krw, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/Common.xcu_tmp krw, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/Linguistic.xcu kr, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/Recovery.xcu kr, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/UI.xcu kr, /home//.ooo-2.0/user/registry/data/org/openoffice/Office/Views.xcu kr, /home//.ooo-2.0/user/registry/data/org/openoffice/Setup.xcu kr, /home//.ooo-2.0/user/registry/data/org/openoffice/ucb/Store.xcu kr, /home//.ooo-2.0/user/uno_packages/cache/registry/com.sun.star.comp.deployment.component.PackageRegistryBackend/Linux_x86.rdb kr, /home//.ooo-2.0/user/uno_packages/cache/registry/com.sun.star.comp.deployment.component.PackageRegistryBackend/Linux_x86rc kr, /home//.ooo-2.0/user/uno_packages/cache/registry/com.sun.star.comp.deployment.component.PackageRegistryBackend/common.rdb kr, /home//.ooo-2.0/user/uno_packages/cache/registry/com.sun.star.comp.deployment.component.PackageRegistryBackend/unorc kr, /home//.ooo-2.0/user/uno_packages/cache/registry/com.sun.star.comp.deployment.configuration.PackageRegistryBackend/registry/ r, /home//.opensuse-updater-gnome r, /home//.realplayerrc r, /home//.recently-used r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//.urlview r, /home//.viminfo r, /home//.windows-label r, /home//.xcoralrc r, /home//.xim.template r, /home//.xinitrc.template r, /home//.xsession-errors r, /home//.xtalkrc r, /home//.y2log r, /home//Desktop/ rw, /home//Desktop/* rw, /home//mycompiz r, /opt/kde3/share/applications/kde/kate.desktop r, /opt/kde3/share/applications/kde/kwrite.desktop r, /proc//maps r, /proc//status r, /proc//task/ r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /tmp/ rw, /tmp/** klrw, /usr/X11R6/lib/libso mr, /usr/bin/VBox ixr, /usr/bin/ar ixr, /usr/bin/baobab ixr, /usr/bin/bug-buddy ixr, /usr/bin/bzip2 ixr, /usr/bin/dirname ixr, /usr/bin/ekiga ixr, /usr/bin/eog ixr, /usr/bin/evince ixr, /usr/bin/evolution ixr, /usr/bin/f-spot ixr, /usr/bin/file-roller ixr, /usr/bin/find ixr, /usr/bin/gdb ixr, /usr/bin/gftp ixr, /usr/bin/gimp-2.2 ixr, /usr/bin/gnome-system-monitor ixr, /usr/bin/gnome-terminal ixr, /usr/bin/head ixr, /usr/bin/hydrogen ixr, /usr/bin/inkscape ixr, /usr/bin/isoinfo ixr, /usr/bin/lmms ixr, /usr/bin/monodevelop ixr, /usr/bin/mplayer ixr, /usr/bin/nautilus ixr, /usr/bin/nautilus-cd-burner ixr, /usr/bin/oobase ixr, /usr/bin/oocalc ixr, /usr/bin/oodraw ixr, /usr/bin/oofromtemplate ixr, /usr/bin/ooimpress ixr, /usr/bin/oomath ixr, /usr/bin/ooweb ixr, /usr/bin/oowriter ixr, /usr/bin/rpm2cpio ixr, /usr/bin/ufraw ixr, /usr/bin/uncompress ixr, /usr/bin/unrar ixr, /usr/bin/unzip ixr, /usr/bin/zip ixr, /usr/java/jre1.6.0_03/lib/fonts/ r, /usr/lib/ kmr, /usr/lib/firefox/firefox.sh ixr, /usr/lib/ooo-2.0/program/javaldx ixr, /usr/lib/ooo-2.0/program/ooqstart ixr, /usr/lib/ooo-2.0/program/pagein ixr, /usr/lib/ooo-2.0/program/soffice ixr, /usr/lib/ooo-2.0/program/soffice.bin ixr, /usr/share/applications/ r, /usr/share/applications/ r, /usr/share/bug-buddy/ r, /usr/share/bug-buddy/bug-buddy.gtkbuilder r, /usr/share/bug-buddy/bug-buddy.menu r, /usr/share/bug-buddy/bug-buddy.png r, /usr/share/file-roller/glade/batch-add-files.glade r, /usr/share/file-roller/icons/ r, /usr/share/file-roller/icons/ r, /usr/share/gnome-about/gnome-version.xml r, /usr/share/gnome/autostart/ r, /usr/share/gnome/autostart/ggreeter.desktop r, /usr/share/gnome/autostart/gnome-at-session.desktop r, /usr/share/gnome/autostart/gnome-power-manager.desktop r, /usr/share/gnome/autostart/gnome-volume-manager.desktop r, /usr/share/gnome/autostart/nm-applet.desktop r, /usr/share/gnome/autostart/opensuse-updater-applet.desktop r, /usr/share/locale-bundle/de/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/bug-buddy.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/evolution-data-server-1.12.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/file-roller.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gnome-vfs-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonoboui-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnomeui-2.0.mo r, /usr/share/mime/.xml r, /usr/share/ooo-2.0/program/resource/.res r, /usr/share/ooo-2.0/share/config/images_crystal.zip kr, /usr/share/ooo-2.0/share/config/images_tango.zip kr, /var/cache/libx11/compose/ r, /var/run/cups/cups.sock w, /var/run/nscd/services r, }	over 4 years ago		245	overwrite	Edit	History
opensuse10.3	/usr/bin/gnome-open	#include <tunables/global> /usr/bin/gnome-open { #include <abstractions/base> /usr/bin/gnome-open mr, }	over 4 years ago	none	341	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/wine	#include <tunables/global> /usr/bin/wine flags=(complain) { #include <abstractions/base> /usr/bin/wine mr, }	over 4 years ago	timo	220	timo	Edit	History
opensuse10.3	/usr/bin/gnome-screensaver-command	#include <tunables/global> /usr/bin/gnome-screensaver-command { #include <abstractions/base> /usr/bin/gnome-screensaver-command mr, }	over 4 years ago	none	240	cinimod	Edit	History
opensuse11.0	/sbin/rpcbind	#include <tunables/global> /sbin/rpcbind { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, owner /etc/hosts.allow r, owner /etc/hosts.deny r, owner /etc/netconfig r, owner /var/run/rpcbind.lock ak, owner /var/run/rpcbind.sock w, }	about 1 year ago		60	hach-que	Edit	History
opensuse11.0	/usr/bin/gtk-redshift	#include <tunables/global> /usr/bin/gtk-redshift flags=(complain) { #include <abstractions/base> /usr/bin/env ix, ^null-4 { } }	about 1 year ago	RedShift	69	diegobcuadro	Edit	History
opensuse11.0	/usr/bin/amule	#include <tunables/global> /usr/bin/amule { #include <abstractions/base> /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gtk-2.0/* r, /etc/host.conf r, /etc/hosts r, /etc/kde4rc r, /etc/pango/* r, /etc/passwd r, /etc/resolv.conf r, owner /home//.Xauthority r, owner /home//.aMule/* rw, /home//.aMule/amule.conf rw, /home//.aMule/emfriends.met rw, /home//.aMule/known.met rw, owner /home//.aMule/muleLock rwk, /home//.aMule/preferences.dat rw, /home//.aMule/shareddir.dat rw, owner /home//.fontconfig/.cache-2 r, owner /home//.fonts.conf r, owner /home//.fonts/ r, owner /home//.fonts// r, owner /home//.gtkrc-2.0-kde4 r, owner /home//.icons/ r, owner /home//.icons/SoftSteel/cursors/ r, owner /home//.icons/SoftSteel/index.theme r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/icons/ r, /home/alexei/.aMule/ rwix, /home/alexei/.aMule/ED2KLinks rw, /home/alexei/.config/qtcurve.gtk-colors rw, /home/alexei/.config/qtcurve.gtk-icons rw, /home/alexei/.kde/share/config/kdeglobals r, /home/alexei/.qt/qtrc r, /mnt/mule/Incoming/ rwix, /mnt/mule/Incoming/ rw, /mnt/mule/temp/ rwix, /mnt/mule/temp/* rw, /opt/kde3/share/icons r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/hicolor/128x128// r, /opt/kde3/share/icons/hicolor/16x16// r, /opt/kde3/share/icons/hicolor/22x22// r, /opt/kde3/share/icons/hicolor/32x32// r, /opt/kde3/share/icons/hicolor/48x48// r, /opt/kde3/share/icons/hicolor/64x64// r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, /opt/kde3/share/icons/hicolor/scalable/actions/ r, /opt/kde3/share/icons/hicolor/scalable/apps/ r, /opt/kde3/share/icons/hicolor/scalable/devices/ r, /opt/kde3/share/icons/hicolor/scalable/filesystems/ r, /opt/kde3/share/icons/hicolor/scalable/mimetypes/ r, owner /proc//cmdline r, owner /proc//fd/ r, owner /proc//mounts r, /proc/sys/kernel/ngroups_max r, /usr/lib/* mr, /usr/lib64/** mr, /usr/share/X11/XErrorDB r, /usr/share/X11/locale/* r, /usr/share/amule/skins/ r, /usr/share/amule/skins/kde4.zip r, /usr/share/amule/webserver/ r, /usr/share/fonts/** r, /usr/share/icons/ r, /usr/share/icons// r, /usr/share/icons/DMZ/cursors/watch r, /usr/share/icons/oxygen/16x16/actions/dialog-cancel.png r, /usr/share/icons/oxygen/16x16/actions/dialog-ok.png r, /usr/share/icons/oxygen/16x16/actions/edit-delete.png r, /usr/share/icons/oxygen/16x16/status/dialog-information.png r, /usr/share/icons/oxygen/32x32/status/dialog-information.png r, /usr/share/locale-bundle/ru/LC_MESSAGES/atk10.mo r, /usr/share/pixmaps r, /usr/share/pixmaps/ r, /usr/share/themes// r, /usr/share/themes/Clearlooks/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /usr/share/themes/Raleigh/gtk-2.0/gtkrc r, /var/cache/fontconfig/* r, /var/lib/GeoIP/GeoIP.dat r, /var/run/nscd/socket rw, ^null-d { /dev/tty rw, /etc/ld.so.cache r, /lib64/libc-.so mr, /lib64/libdl-.so mr, /lib64/libncurses.so.* mr, /lib64/libreadline.so.* mr, /proc/meminfo r, /usr/lib/locale/ r, /usr/lib64/gconv/gconv-modules.cache r, /usr/share/locale/ r, } }	about 1 year ago	amule	88	Alexei_Tilikin	Edit	History
opensuse10.3	/usr/bin/kino	#include <tunables/global> /usr/bin/kino flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/perl> /bin/ r, /bin/bash ixr, /bin/egrep ixr, /bin/grep ixr, /data/Ann/.beagle/socket w, /data/Ann/.fontconfig/f6d3a61d21ce116f68b74a1f88d7a364-x86-64.cache-2 r, /data/Ann/.gstreamer-0.10/registry.x86_64.xml r, /data/Ann/.icons/ r, /data/Ann/.kino-history/ r, /data/Ann/.kinorc rw, /data/Ann/.local/share/mime/mime.cache r, /data/Ann/.recently-used.xbel rw, /data/Ann/.recently-used.xbel.18K7FV rw, /data/Ann/.recently-used.xbel.E456FV rw, /data/Ann/bin/ r, /dev/raw1394 rw, /dev/tty rw, /etc/fonts/ r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/mapping-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gtk-2.0/gdk-pixbuf64.loaders r, /etc/gtk-2.0/gtk64.immodules r, /etc/gtk-2.0/gtkrc r, /etc/opt/kde3/share/icons/ r, /etc/opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /etc/pango/pango64.modules r, /opt/kde3/bin/ r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /opt/kde3/share/icons/crystalsvg/index.theme r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/.X11-unix/X0 w, /tmp/.gdmM5LEGV r, /usr/X11R6/bin/ r, /usr/bin/ r, /usr/bin/bug-buddy ixr, /usr/bin/dirname ixr, /usr/bin/ffmpeg ixr, /usr/bin/gst-inspect ixr, /usr/bin/gst-inspect-0.10 ixr, /usr/bin/kino mr, /usr/bin/perl ix, /usr/bin/wc ixr, /usr/bin/which ixr, /usr/bin/yuvdeinterlace ixr, /usr/games/ r, /usr/lib64/ mr, /usr/local/bin/ r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/fonts/** r, /usr/share/icons/ r, /usr/share/icons/Industrial/cursors/bottom_right_corner r, /usr/share/icons/Industrial/cursors/sb_h_double_arrow r, /usr/share/icons/Industrial/cursors/xterm r, /usr/share/icons/Industrial/icon-theme.cache r, /usr/share/icons/Industrial/index.theme r, /usr/share/icons/Tango/icon-theme.cache r, /usr/share/icons/Tango/index.theme r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/kino/about.jpeg r, /usr/share/kino/capture.png r, /usr/share/kino/dvtitler.glade r, /usr/share/kino/edit.png r, /usr/share/kino/export.png r, /usr/share/kino/fx.png r, /usr/share/kino/insert_after-16.png r, /usr/share/kino/insert_after.png r, /usr/share/kino/insert_before-16.png r, /usr/share/kino/insert_before.png r, /usr/share/kino/join.xpm r, /usr/share/kino/kino.glade r, /usr/share/kino/kino.png r, /usr/share/kino/kinoplus.glade r, /usr/share/kino/link_off.xpm r, /usr/share/kino/lumas/ r, /usr/share/kino/magick.glade r, /usr/share/kino/publish_project.png r, /usr/share/kino/publish_project_16.png r, /usr/share/kino/publish_still.png r, /usr/share/kino/publish_still_16.png r, /usr/share/kino/saveframe.png r, /usr/share/kino/saveframe_16.png r, /usr/share/kino/scripts/dvdauthor/ r, /usr/share/kino/scripts/dvdauthor/dvdauthor-k3b.sh ixr, /usr/share/kino/scripts/dvdauthor/dvdauthor.sh ixr, /usr/share/kino/scripts/dvdauthor/growisofs.sh ixr, /usr/share/kino/scripts/dvdauthor/none.sh ixr, /usr/share/kino/scripts/dvdauthor/qdvdauthor.sh ixr, /usr/share/kino/scripts/exports/ r, /usr/share/kino/scripts/exports/extract_chapters ixr, /usr/share/kino/scripts/exports/ffmpeg2theora.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_3gp.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_divx.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_divx_dual.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_dvd.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_dvd_dual.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_flv.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_h264.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_h264_dual.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_mov.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_mp3.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_mp4.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_mp4_dual.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_utils.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_vcd.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_xvid.sh ixr, /usr/share/kino/scripts/exports/ffmpeg_xvid_dual.sh ixr, /usr/share/kino/scripts/exports/gstreamer_theora.sh ixr, /usr/share/kino/scripts/exports/gstreamer_utils.sh ixr, /usr/share/kino/scripts/exports/mencoder.sh ixr, /usr/share/kino/scripts/exports/rawplay.sh ixr, /usr/share/kino/split.xpm r, /usr/share/kino/stock_media-begin-16.png r, /usr/share/kino/stock_media-end-16.png r, /usr/share/kino/stock_media-fwd-16.png r, /usr/share/kino/stock_media-next-16.png r, /usr/share/kino/stock_media-next-frame-16.png r, /usr/share/kino/stock_media-pause-16.png r, /usr/share/kino/stock_media-play-16.png r, /usr/share/kino/stock_media-prev-16.png r, /usr/share/kino/stock_media-prev-frame-16.png r, /usr/share/kino/stock_media-rec-16.png r, /usr/share/kino/stock_media-repeat-alt.png r, /usr/share/kino/stock_media-rew-16.png r, /usr/share/kino/stock_media-stop-16.png r, /usr/share/kino/timeline.png r, /usr/share/kino/timfx.glade r, /usr/share/kino/trim.png r, /usr/share/kino/trim_in.xpm r, /usr/share/kino/trim_out.xpm r, /usr/share/mime/image/png.xml r, /usr/share/mime/inode/directory.xml r, /usr/share/mime/mime.cache r, /usr/share/pixmaps/ r, /usr/share/themes/Default/gtk-2.0-key/gtkrc r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86-64.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86-64.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86-64.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86-64.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86-64.cache-2 r, /var/cache/fontconfig/486ecde364999f49c0e69ba39337df83-x86-64.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86-64.cache-2 r, /var/cache/fontconfig/5ccd5656ad614b6fa8ae208e27615a4c-x86-64.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86-64.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86-64.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86-64.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86-64.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86-64.cache-2 r, /var/cache/fontconfig/d458be102e54cf534d1eef0dcbb02d07-x86-64.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86-64.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86-64.cache-2 r, /var/cache/libx11/compose/l4_030_313cb605_00280cc0 r, /var/run/nscd/passwd r, /var/run/nscd/socket w, }	about 1 year ago	kino	106	cattoire	Edit	History
opensuse11.0	solimpibm	ibm	over 3 years ago	ibm	187	szozdad	Edit	History
opensuse10.3	/usr/share/amsn/amsn	#include <tunables/global> /usr/share/amsn/amsn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/share/amsn/amsn mr, }	over 4 years ago		227	caidoberco	Edit	History
opensuse10.3	/usr/bin/gimp-remote-2.2	#include <tunables/global> /usr/bin/gimp-remote-2.2 { #include <abstractions/base> /usr/bin/gimp-remote-2.2 mr, }	over 4 years ago	none	198	cinimod	Edit	History
opensuse10.3	/usr/bin/gnome-session	#include <tunables/global> /usr/bin/gnome-session { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gnome-2.soundlist r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xdg/autostart/ r, /etc/xdg/autostart/.desktop r, /home// w, /home//.ICEauthority rw, /home//.ICEauthority-c w, /home//.ICEauthority-l lw, /home//.Xauthority r, /home//.config/autostart/ r, /home//.esd_auth rw, /home//.fontconfig/ lrw, /home//.fonts/ r, /home//.gnome2/ w, /home//.gnome2/accels/ w, /home//.gnome2/session r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /usr/bin/beagled Px, /usr/bin/bug-buddy ixr, /usr/bin/compiz Px, /usr/bin/esd Px, /usr/bin/ggreeter Px, /usr/bin/gnome-at-visual Px, /usr/bin/gnome-cups-icon Px, /usr/bin/gnome-keyring-daemon Px, /usr/bin/gnome-panel Px, /usr/bin/gnome-power-manager Px, /usr/bin/gnome-session mr, /usr/bin/gnome-terminal Px, /usr/bin/gnome-volume-manager Px, /usr/bin/gnome-wm Px, /usr/bin/nautilus Px, /usr/bin/nm-applet Px, /usr/bin/opensuse-updater-gnome-applet Px, /usr/lib/GConf/2/gconf-sanity-check-2 Px, /usr/share/dist/splash/dist-splash.png r, /usr/share/gnome/autostart/ r, /usr/share/gnome/autostart/.desktop r, /usr/share/gnome/default.session r, }	over 4 years ago	none	214	cinimod	Edit	History
opensuse10.3	/usr/sbin/mdnsd	# $Id: usr.sbin.mdnsd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/mdnsd { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_resource, /usr/sbin/mdnsd rmix, /var/run/mdnsd lw, /var/run/mdnsd.pid w, @{PROC}/net/ r, @{PROC}/net/unix r, }	over 4 years ago	Initial Revision	425	novell	Edit	History
opensuse10.3	/usr/bin/tomboy-panel	#include <tunables/global> /usr/bin/tomboy-panel flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.tomboy.log w, /home//.tomboy/ rw, /home//.tomboy/** rw, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/mono ixr, /usr/bin/tomboy-panel mr, /usr/lib/aspell-0.60/.rws mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/lib/tomboy/.dll mr, /usr/lib/tomboy/Tomboy.exe mr, /usr/lib/tomboy/addins/.dll mr, /usr/share/fonts/* mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	232	jmichael	Edit	History
ubuntu-gutsy	/usr/bin/dbus-daemon	#include <tunables/global> /usr/bin/dbus-daemon { #include <abstractions/base> #include <abstractions/nameservice> /etc/dbus-1/session.conf r, /etc/dbus-1/session.d/ r, /proc//mounts r, /proc/filesystems r, /usr/bin/dbus-daemon mr, /usr/lib/gnome-control-center/gnome-settings-daemon Px, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon Px, /usr/lib/notification-daemon/notification-daemon Px, /usr/share/dbus-1/services/ r, /usr/share/dbus-1/services/.service r, /var/run/console/ r, }	over 4 years ago	gnome	238	hbpteam	Edit	History
opensuse10.3	/usr/bin/ooffice	#include <tunables/global> /usr/bin/ooffice flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/ooffice mr, }	over 4 years ago	open office	239	Falko_Gehde	Edit	History
opensuse10.3	/usr/bin/fvwm	#include <tunables/global> /usr/bin/fvwm flags=(complain) { #include <abstractions/base> /usr/bin/fvwm mr, }	over 4 years ago	argh, switch things back to complain for a while	262	jmichael	Edit	History
opensuse10.3	/home/dominic/bin/test2_lock.pl	#include <tunables/global> /home/dominic/bin/test2_lock.pl { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/bash ixr, /bin/ls ixmr, /home/dominic/bin/test2_lock.pl mr, /home/dominic/lock_test kw, /home/dominic/src/svn/ r, /home/dominic/src/svn/novell/ r, /home/dominic/src/svn/novell// r, /home/dominic/src/svn/novell/trunk.dev/ r, /tmp/ r, /usr/bin/flock ixr, /var/tmp/ r, }	over 4 years ago	none	228	cinimod	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/python> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, / r, /bin/bash ixr, /etc/apache2/*.conf r, /etc/apache2/conf.d/ r, /etc/apache2/vhosts.d/ r, /etc/mime.types r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/ r, /etc/php5/conf.d/.ini r, /proc//attr/current w, /repo/ r, /repo/gallery/ rw, /repo/gallery/* rw, /session_mm_apache2handler0.sem w, /srv/www/htdocs/** krw, /tmp/* rw, /usr/bin/unzip Px, /usr/bin/zip Px, /usr/lib/*.so mr, /usr/sbin/httpd2-prefork mr, /usr/share/apache2/error/HTTP_FORBIDDEN.html.var r, /usr/share/apache2/error/HTTP_NOT_FOUND.html.var r, /usr/share/apache2/error/contact.html.var r, /usr/share/apache2/error/include/bottom.html r, /usr/share/apache2/error/include/top.html r, /usr/share/mysql/charsets/Index.xml r, /usr/share/snmp/mibs/ r, /usr/share/snmp/mibs/.txt r, /usr/share/snmp/mibs/.index r, /var/lib/mysql/mysql.sock w, /var/lib/php5/ w, /var/lib/php5/* krw, /var/log/apache2/access_log w, /var/log/apache2/error_log w, /var/run/httpd2.pid w, /var/run/nscd/services r, } /usr/sbin/httpd2-prefork///manual { /proc//attr/current w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork///~dominic/thinking-rock.ics { /home//public_html/thinking-rock.ics r, /proc//attr/current w, /var/log/apache2/access_log w, } /usr/sbin/httpd2-prefork//DEFAULT_URI { #include <abstractions/nameservice> /dev/urandom r, /home//*.html r, /proc//attr/current w, /srv/www/htdocs/ r, /usr/lib/locale/ r, /usr/share/.var r, /usr/share/apache2/error/.html r, /usr/share/locale/** r, /var/log/apache2/access_log w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /proc/*/attr/current w, }	over 4 years ago		473	alsuki	Edit	History
opensuse11.0	/usr/bin/konqueror	#include <tunables/global> /usr/bin/konqueror { #include <abstractions/base> deny /etc/fonts/conf.avail/20-fix-globaladvance.conf r, /usr/lib/kde4/libexec/drkonqi cx, profile /usr/lib/kde4/libexec/drkonqi { } }	over 3 years ago	conquenave	115	gperez	Edit	History
ubuntu-gutsy	/usr/sbin/named	#include <tunables/global> /usr/sbin/named { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_resource, /etc/bind/ r, /proc/net/if_inet6 r, /usr/sbin/named mr, /var/cache/bind/ rw, /var/cache/bind/ rw, /var/lib/bind/ rw, /var/lib/bind/ rw, /var/lib/dnscvsutil/compiled/ rw, /var/log/named/** rw, /var/run/bind/named.options r, /var/run/bind/run/named.pid w, }	over 3 years ago		191	stive	Edit	History
opensuse11.0	/usr/sbin/sshd	# $Id: usr.sbin.sshd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # will need to revalidate this profile once we finish re-architecting # the change_hat patch. # #include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability audit_control, capability chown, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_ptrace, capability sys_tty_config, /bin/ash Ux, /bin/bash rUx, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/environment r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/modules.conf r, /etc/motd r, /etc/ssh/* r, /etc/ssh/moduli r, owner /etc/ssl/openssl.cnf r, /home// r, owner /proc/sys/crypto/fips_enabled r, /sbin/nologin Ux, /tmp/ssh-/agent.[0-9]* rwl, /tmp/ssh-[0-9]/ w, /usr/sbin/sshd mrix, /var/run w, /var/run/sshd{,.init}.pid wl, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]/fd/ r, @{PROC}/[0-9]/loginuid w, @{PROC}/[0-9]/mounts r, @{PROC}/filesystems r, ^AUTHENTICATED flags=(complain) { #include <abstractions/authentication> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability setgid, capability setuid, capability sys_tty_config, /dev/log w, /dev/ptmx rw, /etc/default/passwd r, /etc/localtime r, /etc/login.defs r, /etc/motd r, /tmp/ssh-/agent.[0-9]* rwl, /tmp/ssh-[0-9]/ w, } ^EXEC flags=(complain) { #include <abstractions/base> /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /sbin/nologin Ux, } ^PRIVSEP flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, } ^PRIVSEP_MONITOR flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability setgid, capability setuid, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ssh/moduli r, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]*/mounts r, } }	about 1 month ago		6	psonoda	Edit	History
opensuse11.0	/usr/lib/jvm/java-1.6.0-openjdk-1.6.0/jre/bin/java	#include <tunables/global> /usr/lib/jvm/java-1.6.0-openjdk-1.6.0/jre/bin/java { #include <abstractions/base> }	4 months ago	t	18	hoho	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	over 2 years ago	/prog/config/AppArmor	110	g0a	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, /home//.config/Trolltech.conf rk, /home//.fontconfig/ r, /home//.mozilla/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, /proc/interrupts r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/iconengines/ r, /usr/lib/qt4/plugins/imageformats/ r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/locale/* r, /usr/share/icons/** r, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, }	over 2 years ago		179	maleks	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/bz2.ini r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/curl.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_pgsql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/pgsql.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/zlib.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, owner /usr/lib/** mr, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 3 years ago	httpd-changelog	120	gregdavis	Edit	History
opensuse11.0	/opt/kde3/bin/amarokapp	#include <tunables/global> /opt/kde3/bin/amarokapp { #include <abstractions/base> /opt/kde3/lib/libso mr, /usr/X11R6/lib/libso mr, }	over 3 years ago		139	purrcy	Edit	History
opensuse11.0	/usr/bin/expr	#include <tunables/global> /usr/bin/expr { #include <abstractions/base> }	over 3 years ago	Neueinrichtung	192	kuschel	Edit	History
opensuse11.0	/sbin/SuSEfirewall2	#include <tunables/global> /sbin/SuSEfirewall2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/tty rix, other /usr/sbin/ip6tables-batch -> /usr/sbin/ip6tables-batch, /usr/sbin/ip6tables-batch Cx -> /usr/sbin/ip6tables-batch, other /usr/sbin/iptables-batch , /usr/sbin/iptables-batch Px, profile /usr/sbin/ip6tables-batch { } }	over 3 years ago		255	h_keiner	Edit	History
opensuse10.3	/usr/bin/opera	#include <tunables/global> /usr/bin/opera flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/opera mr, }	over 4 years ago		219	imru	Edit	History
opensuse11.0	/usr/lib64/opera/operapluginwrapper-ia32-linux	#include <tunables/global> /usr/lib64/opera/operapluginwrapper-ia32-linux flags=(complain) { #include <abstractions/base> }	8 months ago	flashplayer	50	michivbs	Edit	History
opensuse11.0	/usr/bin/konqueror	#include <tunables/global> /usr/bin/konqueror flags=(complain) { #include <abstractions/base> deny /etc/fonts/conf.avail/20-fix-globaladvance.conf r, /usr/lib/kde4/libexec/drkonqi cx, profile /usr/lib/kde4/libexec/drkonqi flags=(complain) { } }	over 3 years ago	niidea	140	DOLORES	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> deny capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /etc/magic r, /usr/bin/file rix, /usr/lib/firefox/firefox px, /usr/share/misc/magic.mgc r, }	over 3 years ago	bordon	185	vtold	Edit	History
opensuse11.0	/lib64/ld-2.8.so	#include <tunables/global> /lib64/ld-2.8.so { #include <abstractions/base> }	over 3 years ago	install	191	install	Edit	History
ubuntu-gutsy	/usr/bin/gksu	#include <tunables/global> /usr/bin/gksu { #include <abstractions/base> /usr/bin/gksu mr, }	over 4 years ago	gnome	308	hbpteam	Edit	History
opensuse10.3	/usr/bin/zypper	#include <tunables/global> /usr/bin/zypper { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability fsetid, capability ipc_lock, /bin/cp ixr, /bin/rpm Ux, /etc/rpm/ r, /etc/rpm/macros.* r, /etc/sysconfig/proxy r, /etc/sysconfig/storage r, /etc/zypp/repos.d/ r, /etc/zypp/repos.d/.repo r, /etc/zypp/zypp.conf r, /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /proc/stat r, /sys/bus/ r, /usr/bin/gpg2 ixr, /usr/bin/zypper mr, /usr/share/zypp/schema/ r, /var/adm/mount/ rw, /var/cache/zypp/ r, /var/cache/zypp/raw/** rw, /var/cache/zypp/zypp.db krw, /var/cache/zypp/zypp.db-journal w, /var/lib/rpm/ w, /var/lib/rpm/Basenames r, /var/lib/rpm/Name r, /var/lib/rpm/Packages kr, /var/lib/zypp/db/languages/ r, /var/lib/zypp/db/languages/* r, /var/lib/zypp/db/patches/ r, /var/lib/zypp/db/patches/* r, /var/lib/zypp/db/patterns/ r, /var/lib/zypp/db/patterns/* r, /var/lib/zypp/db/products/ r, /var/lib/zypp/db/products/* r, /var/lib/zypp/db/selections/ r, /var/log/zypper.log w, /var/run/zypp.pid krw, /var/tmp/ rw, }	over 4 years ago	testing package updates	208	dominic	Edit	History
opensuse10.3	/sbin/portmap	#include <tunables/global> /sbin/portmap flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, /sbin/portmap mr, /var/run/portmap_mapping rw, }	over 4 years ago	portmap_changelog	264	security	Edit	History
opensuse11.0	/usr/sbin/sshd	# $Id: usr.sbin.sshd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # will need to revalidate this profile once we finish re-architecting # the change_hat patch. # #include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability audit_control, capability chown, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_ptrace, capability sys_tty_config, /bin/ash Ux, /bin/bash rUx, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/environment r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/modules.conf r, /etc/motd r, /etc/ssh/* r, /etc/ssh/moduli r, /sbin/nologin Ux, /tmp/ssh-/agent.[0-9] rwl, /tmp/ssh-[0-9]/ w, /usr/sbin/sshd mrix, /var/run w, /var/run/sshd{,.init}.pid wl, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]/fd/ r, @{PROC}/[0-9]/loginuid w, @{PROC}/[0-9]/mounts r, @{PROC}/filesystems r, ^AUTHENTICATED flags=(complain) { #include <abstractions/authentication> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability setgid, capability setuid, capability sys_tty_config, /dev/log w, /dev/ptmx rw, /etc/default/passwd r, /etc/localtime r, /etc/login.defs r, /etc/motd r, /tmp/ssh-/agent.[0-9]* rwl, /tmp/ssh-[0-9]/ w, } ^EXEC flags=(complain) { #include <abstractions/base> /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /sbin/nologin Ux, } ^PRIVSEP flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, } ^PRIVSEP_MONITOR flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability setgid, capability setuid, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ssh/moduli r, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]*/mounts r, } }	about 1 year ago		53	jSherz	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/dhcpcd-hook-samba	#include <tunables/global> /etc/sysconfig/network/scripts/dhcpcd-hook-samba { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/gawk ixr, /etc/sysconfig/network/dhcp r, /etc/sysconfig/network/scripts/dhcpcd-hook-samba mr, /etc/sysconfig/network/scripts/dhcpcd-hook-samba-functions r, /proc/meminfo r, /var/lib/dhcp/dhclient-*.leases r, }	over 4 years ago	none	285	cinimod	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-resolver	#include <tunables/global> /usr/sbin/jabberd2-resolver flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-resolver mr, }	over 4 years ago		216	igoriii	Edit	History
opensuse11.0	/usr/bin/dropbox	#include <tunables/global> /usr/bin/dropbox flags=(complain) { #include <abstractions/base> /usr/bin/python2.6 ix, }	over 3 years ago	dropbox	128	Steve Holloway	Edit	History
opensuse11.0	/usr/share/tremulous/tremulous	#include <tunables/global> /usr/share/tremulous/tremulous { #include <abstractions/X> #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nvidia> #include <abstractions/user-tmp> /dev/shm/ r, owner /dev/shm/pulse-shm-* a, /etc/alsa-pulse.conf r, /etc/pulse/client.conf r, owner /home//.pulse-cookie rw, owner /home//.pulse/ w, owner /home//.tremulous/* rw, owner /proc/** r, /proc//net/unix r, /usr/X11R6/* mr, /usr/bin/pulseaudio Ux, /usr/lib/ r, /usr/share/tremulous/ r, /usr/share/tremulous/ r, /var/cache/ r, /var/lib/dbus/machine-id r, owner /var/run/gdm/ r, /var/run/pulse/native w, }	over 3 years ago		176	unconfined	Edit	History
opensuse10.3	/usr/bin/zypper	#include <tunables/global> /usr/bin/zypper { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability fsetid, capability ipc_lock, /bin/cp ixr, /bin/rpm Ux, /etc/rpm/ r, /etc/rpm/macros.* r, /etc/sysconfig/proxy r, /etc/sysconfig/storage r, /etc/zypp/repos.d/ r, /etc/zypp/repos.d/.repo r, /etc/zypp/zypp.conf r, /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /proc/stat r, /sys/bus/ r, /usr/bin/gpg2 ixr, /usr/bin/zypper mr, /usr/share/zypp/schema/ r, /var/adm/mount/ rw, /var/cache/zypp/ r, /var/cache/zypp/raw/** rw, /var/cache/zypp/zypp.db krw, /var/cache/zypp/zypp.db-journal w, /var/lib/rpm/ w, /var/lib/rpm/Basenames r, /var/lib/rpm/Name r, /var/lib/rpm/Packages kr, /var/lib/zypp/db/languages/ r, /var/lib/zypp/db/patches/ r, /var/lib/zypp/db/patterns/ r, /var/lib/zypp/db/patterns/* r, /var/lib/zypp/db/products/ r, /var/lib/zypp/db/products/* r, /var/lib/zypp/db/selections/ r, /var/log/zypper.log w, /var/run/zypp.pid krw, /var/tmp/ rw, }	over 4 years ago	none	205	cinimod	Edit	History
opensuse11.0	/u01/oracle/product/10gR2/db/bin/oracle	#include <tunables/global> /u01/oracle/product/10gR2/db/bin/oracle flags=(complain) { #include <abstractions/base> /u01/oracle/product/10gR2/db/lib/libso mr, }	about 1 year ago	added oracle stuff	79	hazenvs	Edit	History
opensuse10.3	/usr/bin/audacity	#include <tunables/global> /usr/bin/audacity flags=(complain) { #include <abstractions/base> /usr/bin/audacity mr, }	over 3 years ago	internet radio, u.a.	194	shivver-fox	Edit	History
opensuse10.3	/usr/bin/ekiga	#include <tunables/global> /usr/bin/ekiga { #include <abstractions/base> /usr/bin/ekiga mr, }	over 4 years ago	apparmor.log	209	danny	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/dhcpcd-hook-samba	#include <tunables/global> /etc/sysconfig/network/scripts/dhcpcd-hook-samba { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/gawk ixr, /etc/sysconfig/network/* r, /etc/sysconfig/network/scripts/dhcpcd-hook-samba mr, /etc/sysconfig/network/scripts/dhcpcd-hook-samba-functions r, /proc/meminfo r, /var/lib/dhcp/dhclient-*.leases r, }	over 4 years ago	more kde4 testing	256	dominic	Edit	History
opensuse10.3	/usr/lib/gnome-panel/mixer_applet2	#include <tunables/global> /usr/lib/gnome-panel/mixer_applet2 flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml r, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /tmp/orbit-*/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/lib/gnome-panel/mixer_applet2 mr, /usr/share/gnome-2.0/ui/GNOME_MixerApplet.xml r, }	over 4 years ago	some bug-buddy rules and other misc updates	381	jmichael	Edit	History
opensuse11.0	/usr/bin/Vuze.sh	#include <tunables/global> /usr/bin/Vuze.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	vuze	108	cityzen	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, /home//.config/Trolltech.conf rk, /home//.fontconfig/ r, /home//.mozilla/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, /proc/interrupts r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/iconengines/ r, /usr/lib/qt4/plugins/imageformats/ r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/lib/qt4/plugins/inputmethods/ r, /usr/share/X11/locale/* r, /usr/share/icons/** r, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, }	over 2 years ago		97	alice	Edit	History
ubuntu-gutsy	/usr/lib/postfix/cleanup	# $Id: usr.lib.postfix.cleanup 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/cleanup { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability net_bind_service, /etc/mailname r, /etc/postfix/* r, /etc/{m,fs}tab r, /usr/lib/postfix/cleanup rmix, /var/spool/postfix/etc/* r, /var/spool/postfix/incoming/* w, /{var/spool/postfix/,}hold/[0-9A-F]* w, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/[0-9].[0-9] rwl, /{var/spool/postfix/,}pid/unix.cleanup krw, /{var/spool/postfix/,}private/{rewrite,bounce} w, /{var/spool/postfix/,}public/qmgr w, }	over 3 years ago		190	stive	Edit	History
opensuse11.0	/usr/bin/opera	# $Id: usr.bin.opera 1101 2008-02-19 10:32:28Z jrjohansen $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/bin/opera { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-download> #include <abstractions/user-write> capability dac_override, /bin/bash mix, /bin/sed mrix, /bin/true mrix, /etc/SuSE-release r, /etc/X11/.qt_plugins_3.3rc.lock rw, /etc/X11/.qtrc.lock rw, /etc/cups/client.conf r, /etc/cups/lpoptions r, /etc/opera6rc rw, /etc/opera6rc.fixed rw, /opt/ r, /opt/kde3/lib/kde3/plugins/integration/.so mr, /usr/ r, /usr/bin/acroread rPx, /usr/bin/opera mr, /usr/lib r, /usr/lib/RealPlayer10/realplay rPx, /usr/lib/RealPlayer10/realplay.bin rPx, /usr/lib/browser-plugins r, /usr/lib/browser-plugins/ mr, /usr/lib/jvm/** mr, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update12/jre/lib/i386/.so mr, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update12/jre/lib/i386/client/.so mr, /usr/lib/opera/** mrix, /usr/lib/opera//opera ix, /usr/lib/opera//works rix, /usr/local r, /usr/share/ r, /usr/share/opera/ r, /var/run/.resmgr_socket w, /var/spool/cups/tmp/* rwl, @{HOME} r, @{HOME}/.fonts r, @{HOME}/.fonts.cache-* r, @{HOME}/.fonts/ r, @{HOME}/.kde/share/ r, @{HOME}/.opera r, @{HOME}/.opera/** rwl, @{HOME}/OperaDownloads/* rw, @{HOME}/tux/.fonts/ r, @{HOME}/tux/.opera/ w, @{HOME}/tux/.qt/.qtrx.lock k, @{PROC}/[0-9]*/stat r, @{PROC}/net/if_inet6 r, @{PROC}/sys/vm/heap-stack-gap r, }	over 3 years ago	opera	154	kovik-apparmor	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/kde> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/pcmC0D0c mrw, /dev/snd/pcmC0D0p mrw, /dev/snd/pcmC0D1c mrw, /dev/snd/pcmC0D1p mrw, /dev/snd/timer r, /dev/video0 rw, /etc/gai.conf r, /home// r, /home//* krw, /home//.Skype/ rw, /home//.Skype/** krw, /home//.config/Trolltech.conf krw, /home//.fontconfig/** r, /home//.kde/share/config/kioslaverc r, /proc/interrupts r, /proc/net/route r, /proc/sys/kernel/osrelease r, /proc/sys/kernel/ostype r, /usr//ooo-2.0/share/fonts/ mr, /usr/bin/gconftool-2 ux, /usr/bin/skype mr, /usr/bin/xdg-open Ux, /usr/lib/ mr, /usr/share/alsa/ r, /usr/share/fonts/ mr, /usr/share/ghostscript/fonts/ mr, /usr/share/locale/ mr, /usr/share/skype/ r, /usr/share/skype/** kmr, }	over 3 years ago		229	woro	Edit	History
opensuse11.0	/opt/firefox10/firefox	#include <tunables/global> /opt/firefox10/firefox { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/user-tmp> /dev/shm/ r, /dev/shm/pulse-shm-* rw, /etc/mime.types r, /etc/mtab r, /etc/pulse/client.conf r, owner /home//.ICEauthority r, owner /home//.fontconfig/8678088a9c25446e2b4f0b5c0e7de020-le32d4.cache-3 r, owner /home//.icons/ r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner "/home//.mozilla/firefox/Crash Reports/InstallTime20120215223356" r, owner /home//.mozilla/firefox/h4cc9wec.default/ r, owner /home//.mozilla/firefox/h4cc9wec.default/.parentlock wk, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/1/37/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/1/37/0AEDAd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/1/AD/F8A46d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/2/82/143DAd01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/3/56/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/3/56/53749d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/3/A2/E6FCBd01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/4/14/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/4/14/0511Dd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/4/17/070E6d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/4/80/05A4Dd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/1A/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/1A/22568d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/3B/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/3B/B9838d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/87/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/87/B19BAd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/CB/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/CB/3F602d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/CD/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/5/CD/0B668d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/6/7D/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/6/7D/322D2d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/6/DD/04606d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/7/8A/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/7/8A/85353d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/7/CF/1BB2Bd01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/7/F2/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/7/F2/F3884d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/8/12/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/8/12/F6EA6d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/9/04/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/9/04/75318d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/9/EF/0E0EBd01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/A/6A/5702Cd01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/A/B9/ACC74d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/A/D5/4E383d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/B/C0/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/B/C0/CB0A2d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/C/76/0334Bd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/C/80/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/C/80/09CE7d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/C/EE/F1936d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/D/0C/18655d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/D/57/047F3d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/D/9D/66262d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/4D/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/4D/944CFd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/6B/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/6B/F7E1Bd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/92/D25F3d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/9E/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/9E/56FD5d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/FD/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/E/FD/0F856d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/17/32CC4d01 r, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/5D/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/5D/8CD2Ad01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/87/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/87/E19A2d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/E2/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/E2/B6C62d01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/F9/ w, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/F/F9/0ADEDd01 rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/_CACHE_001_ rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/_CACHE_002_ rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/_CACHE_003_ rw, owner /home//.mozilla/firefox/h4cc9wec.default/Cache/_CACHE_MAP_ rw, owner /home//.mozilla/firefox/h4cc9wec.default/OfflineCache/index.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/addons.sqlite k, owner /home//.mozilla/firefox/h4cc9wec.default/bookmarkbackups/ r, owner /home//.mozilla/firefox/h4cc9wec.default/cert8.db rw, owner /home//.mozilla/firefox/h4cc9wec.default/chromeappsstore.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/compatibility.ini rw, owner /home//.mozilla/firefox/h4cc9wec.default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/cookies.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/cookies.sqlite-shm rwk, owner /home//.mozilla/firefox/h4cc9wec.default/cookies.sqlite-wal rw, owner /home//.mozilla/firefox/h4cc9wec.default/downloads.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/extensions-1.ini rw, owner /home//.mozilla/firefox/h4cc9wec.default/extensions.ini rw, owner /home//.mozilla/firefox/h4cc9wec.default/extensions.log w, owner /home//.mozilla/firefox/h4cc9wec.default/extensions.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/extensions.sqlite-journal rw, owner /home//.mozilla/firefox/h4cc9wec.default/extensions/ r, owner /home//.mozilla/firefox/h4cc9wec.default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/formhistory.sqlite-journal rw, owner /home//.mozilla/firefox/h4cc9wec.default/key3.db rw, owner /home//.mozilla/firefox/h4cc9wec.default/localstore-1.rdf rw, owner /home//.mozilla/firefox/h4cc9wec.default/localstore.rdf rw, owner /home//.mozilla/firefox/h4cc9wec.default/lock w, owner /home//.mozilla/firefox/h4cc9wec.default/mimeTypes.rdf r, owner /home//.mozilla/firefox/h4cc9wec.default/permissions.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/places.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/places.sqlite-shm rwk, owner /home//.mozilla/firefox/h4cc9wec.default/places.sqlite-wal rw, owner /home//.mozilla/firefox/h4cc9wec.default/pluginreg.dat r, owner /home//.mozilla/firefox/h4cc9wec.default/prefs-1.js rw, owner /home//.mozilla/firefox/h4cc9wec.default/prefs.js rw, owner /home//.mozilla/firefox/h4cc9wec.default/search.json r, owner /home//.mozilla/firefox/h4cc9wec.default/search.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/secmod.db r, owner /home//.mozilla/firefox/h4cc9wec.default/sessionstore-1.js rw, owner /home//.mozilla/firefox/h4cc9wec.default/sessionstore.bak w, owner /home//.mozilla/firefox/h4cc9wec.default/sessionstore.js rw, owner /home//.mozilla/firefox/h4cc9wec.default/startupCache/startupCache.4.little rw, owner /home//.mozilla/firefox/h4cc9wec.default/urlclassifier.pset rw, owner /home//.mozilla/firefox/h4cc9wec.default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/h4cc9wec.default/urlclassifier3.sqlite-journal rw, owner /home//.mozilla/firefox/h4cc9wec.default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/h4cc9wec.default/webappsstore.sqlite rwk, owner /home//.mozilla/firefox/profiles.ini r, owner /home//.pulse-cookie rwk, owner /home//Downloads/Yahoo!_files/030512nanny_sm.jpg r, owner /home//Downloads/Yahoo!_files/120x45lfq3f0b6d.gif r, owner /home//Downloads/Yahoo!_files/125x45lvap6pbzz.jpg r, owner /home//Downloads/Yahoo!_files/300x250lva91ei69.jpg r, owner /home//Downloads/Yahoo!_files/92x55l3bd2qfcz.jpg r, owner /home//Downloads/Yahoo!_files/aniston_ac.jpg r, owner /home//Downloads/Yahoo!_files/blueribbon-8.png r, owner /home//Downloads/Yahoo!_files/comedy2_sm.jpg r, owner /home//Downloads/Yahoo!_files/dishwasher_ac.jpg r, owner /home//Downloads/Yahoo!_files/europe_ac.jpg r, owner /home//Downloads/Yahoo!_files/face_20100602.gif r, owner /home//Downloads/Yahoo!_files/firefighters_bl.jpg r, owner /home//Downloads/Yahoo!_files/firefighters_uni.jpg r, owner /home//Downloads/Yahoo!_files/flickr_20100602.gif r, owner /home//Downloads/Yahoo!_files/frankenweenie110.jpg r, owner /home//Downloads/Yahoo!_files/janitor340.jpg r, owner /home//Downloads/Yahoo!_files/kiss_pdsm.jpg r, owner /home//Downloads/Yahoo!_files/lohan_snl_ac.jpg r, owner /home//Downloads/Yahoo!_files/mens_90x90.jpg r, owner /home//Downloads/Yahoo!_files/minblack_ac.jpg r, owner /home//Downloads/Yahoo!_files/mitt.jpg r, owner /home//Downloads/Yahoo!_files/monster_20110207.gif r, owner /home//Downloads/Yahoo!_files/myyahoo_20100602.gif r, owner /home//Downloads/Yahoo!_files/news_20100602.gif r, owner /home//Downloads/Yahoo!_files/obama.jpg r, owner /home//Downloads/Yahoo!_files/p.gif r, owner /home//Downloads/Yahoo!_files/porsche_959_ac.jpg r, owner /home//Downloads/Yahoo!_files/primetimeinnotime-8.png r, owner /home//Downloads/Yahoo!_files/realestate_20100602.gif r, owner /home//Downloads/Yahoo!_files/rush1.jpg r, owner /home//Downloads/Yahoo!_files/screen_20100602.gif r, owner /home//Downloads/Yahoo!_files/seaturtle_ac.jpg r, owner /home//Downloads/Yahoo!_files/shine_20100602.gif r, owner /home//Downloads/Yahoo!_files/singlemom_ac.jpg r, owner /home//Downloads/Yahoo!_files/sportsminute-8.png r, owner /home//Downloads/Yahoo!_files/spr_apps_us.png r, owner /home//Downloads/Yahoo!_files/sprite_videoicon_20100201_ltr.png r, owner /home//Downloads/Yahoo!_files/tp_puppy110.jpg r, owner /home//Downloads/Yahoo!_files/tv_20100602.gif r, owner /home//Downloads/Yahoo!_files/twitter_new_20101222.gif r, owner /home//Downloads/Yahoo!_files/vs_brh.jpg r, owner /home//Downloads/Yahoo!_files/vs_comedy.jpg r, owner /home//Downloads/Yahoo!_files/vs_pint.jpg r, owner /home//Downloads/Yahoo!_files/vs_tfin.jpg r, owner /home//Downloads/Yahoo!_files/vs_yrm3.jpg r, owner /home//Downloads/Yahoo!_files/wea_01_s26.png r, owner /home//Downloads/Yahoo!_files/whale_highfives110.jpg r, owner /home//Downloads/Yahoo!_files/yahoo-logo-sm-png8.png r, owner /opt/firefox10/application.ini r, owner /opt/firefox10/blocklist.xml r, owner /opt/firefox10/chrome.manifest r, owner /opt/firefox10/chrome/icons/default/default16.png r, owner /opt/firefox10/chrome/icons/default/default32.png r, owner /opt/firefox10/chrome/icons/default/default48.png r, owner /opt/firefox10/components/binary.manifest r, owner /opt/firefox10/components/libbrowsercomps.so mr, owner /opt/firefox10/components/libdbusservice.so mr, owner /opt/firefox10/components/libmozgnome.so mr, owner /opt/firefox10/components/libnkgnomevfs.so mr, owner /opt/firefox10/defaults/pref/ r, owner /opt/firefox10/defaults/pref/channel-prefs.js r, owner /opt/firefox10/dependentlibs.list r, owner /opt/firefox10/dictionaries/ r, owner /opt/firefox10/extensions/ r, /opt/firefox10/extensions/** r, owner /opt/firefox10/libfreebl.so mr, owner /opt/firefox10/libmozalloc.so mr, owner /opt/firefox10/libmozsqlite.so mr, owner /opt/firefox10/libnspr.so mr, owner /opt/firefox10/libnss.so mr, owner /opt/firefox10/libplc.so mr, owner /opt/firefox10/libplds.so mr, owner /opt/firefox10/libsmime.so mr, owner /opt/firefox10/libsoftokn.so mr, owner /opt/firefox10/libssl.so mr, owner /opt/firefox10/libxpcom.so mr, owner /opt/firefox10/libxul.so mr, owner /opt/firefox10/omni.ja r, owner /opt/firefox10/searchplugins/ r, owner /proc//maps r, owner /proc//mounts r, /proc/filesystems r, /sys/devices/system/cpu/present r, /tmp/ rw, /usr/share/applications/* r, /usr/share/mime/application/x-bzip.xml r, /usr/share/mime/application/x-rpm.xml r, /usr/share/mime/image/jpeg.xml r, /usr/share/mime/text/html.xml r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/chrome/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/ r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/ r, /var/cache/gio-2.0/defaults.list r, /var/lib/dbus/machine-id r, /var/run/gdm/*/database r, }	2 months ago	sktd-firefox10	12	sktd	Edit	History
opensuse11.0	/usr/bin/mysql	#include <tunables/global> /usr/bin/mysql flags=(complain) { #include <abstractions/base> capability dac_override, /etc/my.cnf r, owner /usr/bin/mysql r, owner /usr/share/mysql/charsets/Index.xml r, /var/lib/mysql/.protected/mysql.sock w, owner /var/run/nscd/services r, owner /var/run/nscd/socket w, }	12 months ago		58	jacob	Edit	History
opensuse11.0	/usr/bin/test	#include <tunables/global> /usr/bin/test flags=(complain) { #include <abstractions/base> }	about 1 year ago	test	91	andstu1	Edit	History
ubuntu-gutsy	/etc/cron.daily/sysklogd	#include <tunables/global> /etc/cron.daily/sysklogd { #include <abstractions/base> #include <abstractions/perl> capability chown, capability dac_override, capability fowner, capability fsetid, capability kill, /bin/cat ixr, /bin/chgrp ixr, /bin/chmod ixr, /bin/chown ixr, /bin/dash ixr, /bin/date ixr, /bin/grep ixr, /bin/gzip ixr, /bin/ln ixr, /bin/mv ixr, /bin/ps ixr, /bin/readlink ixr, /bin/rm ixr, /bin/touch ixr, /bin/which ixr, /dev/tty r, /etc/cron.daily/sysklogd mr, /etc/default/syslogd r, /etc/group r, /etc/init.d/sysklogd ixr, /etc/lsb-base-logging.sh r, /etc/nsswitch.conf r, /etc/passwd r, /etc/syslog.conf r, /lib/lsb/init-functions r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc//status r, /proc/filesystems r, /proc/uptime r, /proc/version r, /sbin/start-stop-daemon ixr, /usr/bin/basename ixr, /usr/bin/dirname ixr, /usr/bin/head ixr, /usr/bin/perl ix, /usr/bin/savelog ixr, /usr/bin/tput ixr, /usr/bin/tr ixr, /usr/sbin/syslogd-listfiles ixr, /var/log/* lrw, /var/run/syslogd.pid r, }	over 3 years ago		130	stive	Edit	History
opensuse10.3	/usr/lib/ooo-2.0/program/oosplash.bin	#include <tunables/global> /usr/lib/ooo-2.0/program/oosplash.bin flags=(complain) { #include <abstractions/base> /usr/lib/ooo-2.0/program/oosplash.bin mr, }	over 3 years ago	openoffice splash	154	helsil	Edit	History
opensuse10.3	/bin/netstat	#include <tunables/global> /bin/netstat flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability sys_ptrace, /bin/netstat mr, /proc/ r, /proc//cmdline r, /proc//fd/ r, /proc/net/ r, /proc/net/* r, }	over 4 years ago		269	overwrite	Edit	History
opensuse10.3	/usr/bin/xdpyinfo	#include <tunables/global> /usr/bin/xdpyinfo { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/xdpyinfo mr, }	over 4 years ago	none	201	cinimod	Edit	History
ubuntu-gutsy	/usr/sbin/proftpd	#include <tunables/global> /usr/sbin/proftpd { #include <abstractions/base> /usr/sbin/proftpd mr, }	over 4 years ago		233	guyome	Edit	History
opensuse11.0	/usr/lib64/opera/operaplugincleaner	#include <tunables/global> /usr/lib64/opera/operaplugincleaner { #include <abstractions/base> }	8 months ago	flashplayer	43	michivbs	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> capability sys_nice, /bin/basename rix, owner /bin/bash r, /bin/bash ix, /bin/grep rix, owner /dev/tty rw, owner /etc/gre.d/ r, owner /etc/gre.d/1.9.0.6.system.conf r, owner /etc/magic r, owner /proc//mounts r, owner /proc/meminfo r, owner /root/.ICEauthority r, owner /root/.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /root/.mozilla/firefox/csakkoc7.default/ r, owner /root/.mozilla/firefox/csakkoc7.default/.parentlock wk, owner /root/.mozilla/firefox/csakkoc7.default/Cache/0C7C62D8d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/14AD9A9Fd01 a, owner /root/.mozilla/firefox/csakkoc7.default/Cache/1FA5993Dd01 a, owner /root/.mozilla/firefox/csakkoc7.default/Cache/2769E828d01 a, owner /root/.mozilla/firefox/csakkoc7.default/Cache/3AE24160d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/44E5AC52d01 a, owner /root/.mozilla/firefox/csakkoc7.default/Cache/46C12EF3d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/5E44DA51d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/6EC5D7E5d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/8EC38512d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/8FAC8659d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/9520129Dd01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/A20DC0A1d01 a, owner /root/.mozilla/firefox/csakkoc7.default/Cache/B80EAED0d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/C6B7E8B4d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/E5298C00d01 rw, owner /root/.mozilla/firefox/csakkoc7.default/Cache/E7E740E6d01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/F8D5F2ADd01 r, owner /root/.mozilla/firefox/csakkoc7.default/Cache/_CACHE_001_ rw, owner /root/.mozilla/firefox/csakkoc7.default/Cache/_CACHE_002_ rw, owner /root/.mozilla/firefox/csakkoc7.default/Cache/_CACHE_003_ rw, owner /root/.mozilla/firefox/csakkoc7.default/Cache/_CACHE_MAP_ rw, owner /root/.mozilla/firefox/csakkoc7.default/XPC.mfasl r, owner /root/.mozilla/firefox/csakkoc7.default/XUL.mfasl r, owner /root/.mozilla/firefox/csakkoc7.default/bookmarkbackups/ r, owner /root/.mozilla/firefox/csakkoc7.default/cert8.db rw, owner /root/.mozilla/firefox/csakkoc7.default/compatibility.ini r, owner /root/.mozilla/firefox/csakkoc7.default/compreg.dat r, owner /root/.mozilla/firefox/csakkoc7.default/content-prefs.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/cookies.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/cookies.sqlite-journal w, owner /root/.mozilla/firefox/csakkoc7.default/downloads.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/downloads.sqlite-journal w, owner /root/.mozilla/firefox/csakkoc7.default/extensions.cache r, owner /root/.mozilla/firefox/csakkoc7.default/extensions.ini r, owner /root/.mozilla/firefox/csakkoc7.default/extensions/ r, owner /root/.mozilla/firefox/csakkoc7.default/formhistory.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/formhistory.sqlite-journal w, owner /root/.mozilla/firefox/csakkoc7.default/key3.db rw, owner /root/.mozilla/firefox/csakkoc7.default/localstore-1.rdf rw, owner /root/.mozilla/firefox/csakkoc7.default/localstore.rdf rw, owner /root/.mozilla/firefox/csakkoc7.default/lock w, owner /root/.mozilla/firefox/csakkoc7.default/permissions.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/places.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/places.sqlite-journal w, owner /root/.mozilla/firefox/csakkoc7.default/pluginreg.dat r, owner /root/.mozilla/firefox/csakkoc7.default/prefs-1.js rw, owner /root/.mozilla/firefox/csakkoc7.default/prefs.js rw, owner /root/.mozilla/firefox/csakkoc7.default/search.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/secmod.db r, owner /root/.mozilla/firefox/csakkoc7.default/sessionstore-1.js rw, owner /root/.mozilla/firefox/csakkoc7.default/sessionstore.js w, owner /root/.mozilla/firefox/csakkoc7.default/signons3.txt r, owner /root/.mozilla/firefox/csakkoc7.default/urlclassifier3.sqlite rwk, owner /root/.mozilla/firefox/csakkoc7.default/urlclassifier3.sqlite-journal w, owner /root/.mozilla/firefox/csakkoc7.default/urlclassifierkey3.txt rw, owner /root/.mozilla/firefox/csakkoc7.default/xpti.dat r, owner /root/.mozilla/firefox/profiles.ini r, /usr/bin/file rix, owner /usr/lib/* mw, /usr/lib/** r, /usr/lib/firefox/firefox rix, /usr/lib/firefox/firefox.sh rix, owner /usr/share/gvfs/remote-volume-monitors/ r, owner /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, owner /usr/share/gvfs/remote-volume-monitors/hal.monitor r, owner /usr/share/misc/magic.mgc r, owner /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /var/run/dbus/system_bus_socket w, owner /var/run/gdm/auth-for-root-zmzCqU/database r, }	about 1 year ago		119	dguttierrez	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> audit network inet6 stream, audit network stream, /bin/basename rcx, /bin/bash rix, /bin/grep rix, /etc/gnome-vfs-2.0/modules/ r, /etc/gre.d/ r, /etc/gre.d/* r, /etc/mailcap r, /etc/mime.types r, /etc/opt/kde3/*/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.adobe/Flash_Player// r, owner /home//.config/Trolltech.conf r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.fontconfig/* r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/applications/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.macromedia/Flash_Player/* r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/* rwk, owner /home//.qt/qtrc r, owner /home//Documents/.etc/mozilla/extensions// r, owner /home//Documents/.etc/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//Documents/.etc/mozilla/firefox/ r, owner /home//Documents/.etc/mozilla/firefox// r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/ rwk, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default// rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash/Trash// w, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache/ rw, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/adblockplus/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/chrome/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/extensions/* r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/gm_scripts/ r, owner /home//Documents/.etc/mozilla/firefox/uz6cq9af.default/searchplugins/ rw, owner /home//downloads/ w, owner /home/draglor/Documents/Temp/ w, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/ark.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, owner /proc//cmdline r, owner /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /usr/bin/file rcx, /usr/lib/firefox/firefox mrpx, /usr/lib/firefox/firefox.sh rix, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/locale-bundle/de/LC_MESSAGES/ r, /usr/share/locale-bundle/ru/LC_MESSAGES/* r, /usr/share/mime/application/x-bzip.xml r, /usr/share/mozilla/extensions/*/ r, /var/cache/gio-2.0/defaults.list r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, profile /bin/basename flags=(complain) { #include <abstractions/base> /bin/basename mr, } profile /usr/bin/file flags=(complain) { #include <abstractions/base> /etc/magic r, /usr/bin/file mr, /usr/share/misc/magic.mgc r, } }	over 2 years ago		142	Ivan Susanin	Edit	History
opensuse11.0	/usr/bin/ktorrent	#include <tunables/global> /usr/bin/ktorrent { #include <abstractions/base> }	over 3 years ago		261	kingsv30	Edit	History
opensuse10.3	/usr/bin/dbus-launch	#include <tunables/global> /usr/bin/dbus-launch flags=(complain) { #include <abstractions/X> #include <abstractions/base> /bin/dbus-daemon Px, /home/*/.Xauthority r, /usr/bin/dbus-launch mr, /usr/bin/gnome Px, }	over 4 years ago	argh, switch things back to complain for a while	200	jmichael	Edit	History
opensuse10.3	/usr/lib/cyrus/bin/notifyd	#include <tunables/global> /usr/lib/cyrus/bin/notifyd { #include <abstractions/base> /etc/imapd.* r, /mnt/mail/config/ krw, /usr/lib/cyrus/bin/notifyd mr, /var/lib/imap/ krw, }	over 4 years ago		284	arclyde	Edit	History
opensuse10.3	/usr/games/solarwolf	#include <tunables/global> /usr/games/solarwolf flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ixr, /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0p rw, /dev/snd/timer r, /dev/sr0 r, /dev/tty rw, /etc/fstab r, /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/desktop/ r, /etc/gconf/gconf.xml.schemas/desktop/gnome/ r, /etc/gconf/gconf.xml.schemas/desktop/gnome/url-handlers/ r, /etc/gconf/gconf.xml.schemas/desktop/gnome/url-handlers/http/%gconf.xml r, /etc/gconf/gconf.xml.schemas/schemas/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/url-handlers/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/url-handlers/http/%gconf.xml r, /home//.Xauthority r, /home//.gconf/ r, /home//.gconf/.testing.writeability w, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /home//.solarwolf/ w, /home//.solarwolf/players w, /home//.solarwolf/prefs w, /proc/cpuinfo r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/ r, /tmp/.X11-unix/X0 w, /tmp/gconfd-ray/ r, /tmp/gconfd-ray/lock/ w, /tmp/gconfd-ray/lock/0t1195847471ut618134u1000p5362r595700514k3216195768 kw, /tmp/gconfd-ray/lock/1t1195847502ut683120u1000p5362r2108321441k3216195944 lw, /tmp/gconfd-ray/lock/ior lrw, /tmp/orbit-ray/ w, /tmp/orbit-ray/linc-14f0-0-588262cf98472 w, /tmp/orbit-ray/linc-14f2-0-2d97071496d8b w, /usr/bin/gconftool-2 ixr, /usr/bin/python2.5 ixr, /usr/games/solarwolf mr, /usr/lib/* mr, /usr/lib/GConf/2/gconfd-2 ixr, /usr/share/X11/locale/C/XLC_LOCALE r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/ICH-MODEM.conf r, /usr/share/alsa/cards/ICH4.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/modem.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/fonts/ r, /usr/share/fonts/** r, /usr/share/games/solarwolf/code/allmodules.py r, /usr/share/games/solarwolf/code/allmodules.pyc r, /usr/share/games/solarwolf/code/game.py r, /usr/share/games/solarwolf/code/game.pyc r, /usr/share/games/solarwolf/code/gamecreds.py r, /usr/share/games/solarwolf/code/gamecreds.pyc r, /usr/share/games/solarwolf/code/gamefinish.py r, /usr/share/games/solarwolf/code/gamefinish.pyc r, /usr/share/games/solarwolf/code/gamehelp.py r, /usr/share/games/solarwolf/code/gamehelp.pyc r, /usr/share/games/solarwolf/code/gameinit.py r, /usr/share/games/solarwolf/code/gameinit.pyc r, /usr/share/games/solarwolf/code/gamemenu.py r, /usr/share/games/solarwolf/code/gamemenu.pyc r, /usr/share/games/solarwolf/code/gamename.py r, /usr/share/games/solarwolf/code/gamename.pyc r, /usr/share/games/solarwolf/code/gamenews.py r, /usr/share/games/solarwolf/code/gamenews.pyc r, /usr/share/games/solarwolf/code/gamepause.py r, /usr/share/games/solarwolf/code/gamepause.pyc r, /usr/share/games/solarwolf/code/gameplay.py r, /usr/share/games/solarwolf/code/gameplay.pyc r, /usr/share/games/solarwolf/code/gamepref.py r, /usr/share/games/solarwolf/code/gamepref.pyc r, /usr/share/games/solarwolf/code/gamesetup.py r, /usr/share/games/solarwolf/code/gamesetup.pyc r, /usr/share/games/solarwolf/code/gamestart.py r, /usr/share/games/solarwolf/code/gamestart.pyc r, /usr/share/games/solarwolf/code/gamewin.py r, /usr/share/games/solarwolf/code/gamewin.pyc r, /usr/share/games/solarwolf/code/gfx.py r, /usr/share/games/solarwolf/code/gfx.pyc r, /usr/share/games/solarwolf/code/hud.py r, /usr/share/games/solarwolf/code/hud.pyc r, /usr/share/games/solarwolf/code/input.py r, /usr/share/games/solarwolf/code/input.pyc r, /usr/share/games/solarwolf/code/levels.py r, /usr/share/games/solarwolf/code/levels.pyc r, /usr/share/games/solarwolf/code/main.py r, /usr/share/games/solarwolf/code/main.pyc r, /usr/share/games/solarwolf/code/objasteroid.py r, /usr/share/games/solarwolf/code/objasteroid.pyc r, /usr/share/games/solarwolf/code/objbox.py r, /usr/share/games/solarwolf/code/objbox.pyc r, /usr/share/games/solarwolf/code/objexplode.py r, /usr/share/games/solarwolf/code/objexplode.pyc r, /usr/share/games/solarwolf/code/objguard.py r, /usr/share/games/solarwolf/code/objguard.pyc r, /usr/share/games/solarwolf/code/objpopshot.py r, /usr/share/games/solarwolf/code/objpopshot.pyc r, /usr/share/games/solarwolf/code/objpowerup.py r, /usr/share/games/solarwolf/code/objship.py r, /usr/share/games/solarwolf/code/objship.pyc r, /usr/share/games/solarwolf/code/objshot.py r, /usr/share/games/solarwolf/code/objshot.pyc r, /usr/share/games/solarwolf/code/objsmoke.py r, /usr/share/games/solarwolf/code/objsmoke.pyc r, /usr/share/games/solarwolf/code/objtele.py r, /usr/share/games/solarwolf/code/objtele.pyc r, /usr/share/games/solarwolf/code/objtext.py r, /usr/share/games/solarwolf/code/objtext.pyc r, /usr/share/games/solarwolf/code/objwarp.py r, /usr/share/games/solarwolf/code/objwarp.pyc r, /usr/share/games/solarwolf/code/players.py r, /usr/share/games/solarwolf/code/players.pyc r, /usr/share/games/solarwolf/code/score.py r, /usr/share/games/solarwolf/code/score.pyc r, /usr/share/games/solarwolf/code/snd.py r, /usr/share/games/solarwolf/code/snd.pyc r, /usr/share/games/solarwolf/code/stars.py r, /usr/share/games/solarwolf/code/stars.pyc r, /usr/share/games/solarwolf/code/txt.py r, /usr/share/games/solarwolf/code/txt.pyc r, /usr/share/games/solarwolf/data/asteroid.png r, /usr/share/games/solarwolf/data/audio/boxhit.wav r, /usr/share/games/solarwolf/data/audio/chimein.wav r, /usr/share/games/solarwolf/data/audio/chimeout.wav r, /usr/share/games/solarwolf/data/audio/delete.wav r, /usr/share/games/solarwolf/data/audio/explode.wav r, /usr/share/games/solarwolf/data/audio/flop.wav r, /usr/share/games/solarwolf/data/audio/gameover.wav r, /usr/share/games/solarwolf/data/audio/incorrect.wav r, /usr/share/games/solarwolf/data/audio/klank2.wav r, /usr/share/games/solarwolf/data/audio/levelfinish.wav r, /usr/share/games/solarwolf/data/audio/levelskip.wav r, /usr/share/games/solarwolf/data/audio/select_choose.wav r, /usr/share/games/solarwolf/data/audio/select_move.wav r, /usr/share/games/solarwolf/data/audio/shoot.wav r, /usr/share/games/solarwolf/data/audio/spring.wav r, /usr/share/games/solarwolf/data/audio/startlife.wav r, /usr/share/games/solarwolf/data/audio/startup.wav r, /usr/share/games/solarwolf/data/audio/whip.wav r, /usr/share/games/solarwolf/data/audio/yboxhit.wav r, /usr/share/games/solarwolf/data/baddie-teleport.png r, /usr/share/games/solarwolf/data/baddie.png r, /usr/share/games/solarwolf/data/bigboxes.png r, /usr/share/games/solarwolf/data/bonus-bullet.png r, /usr/share/games/solarwolf/data/bonus-shield.png r, /usr/share/games/solarwolf/data/boxes.png r, /usr/share/games/solarwolf/data/btn-add.gif r, /usr/share/games/solarwolf/data/btn-delete.gif r, /usr/share/games/solarwolf/data/debris-base.png r, /usr/share/games/solarwolf/data/debris-bubble.png r, /usr/share/games/solarwolf/data/debris-motor.png r, /usr/share/games/solarwolf/data/debris1.png r, /usr/share/games/solarwolf/data/debris2.png r, /usr/share/games/solarwolf/data/debris3.png r, /usr/share/games/solarwolf/data/debris4.png r, /usr/share/games/solarwolf/data/downerror.gif r, /usr/share/games/solarwolf/data/download.png r, /usr/share/games/solarwolf/data/downok.gif r, /usr/share/games/solarwolf/data/end.gif r, /usr/share/games/solarwolf/data/explosion.png r, /usr/share/games/solarwolf/data/fame.png r, /usr/share/games/solarwolf/data/fire.png r, /usr/share/games/solarwolf/data/hud.gif r, /usr/share/games/solarwolf/data/hud2.gif r, /usr/share/games/solarwolf/data/levels.txt r, /usr/share/games/solarwolf/data/logo.png r, /usr/share/games/solarwolf/data/menu_creds_off.png r, /usr/share/games/solarwolf/data/menu_creds_on.png r, /usr/share/games/solarwolf/data/menu_news_off.png r, /usr/share/games/solarwolf/data/menu_news_on.png r, /usr/share/games/solarwolf/data/menu_on_bgd.png r, /usr/share/games/solarwolf/data/menu_quit_off.png r, /usr/share/games/solarwolf/data/menu_quit_on.png r, /usr/share/games/solarwolf/data/menu_setup_off.png r, /usr/share/games/solarwolf/data/menu_setup_on.png r, /usr/share/games/solarwolf/data/menu_start_off.png r, /usr/share/games/solarwolf/data/menu_start_on.png r, /usr/share/games/solarwolf/data/music/arg.xm r, /usr/share/games/solarwolf/data/music/aster2_sw.xm r, /usr/share/games/solarwolf/data/music/h2.ogg r, /usr/share/games/solarwolf/data/newversion.gif r, /usr/share/games/solarwolf/data/oldsolarfox.png r, /usr/share/games/solarwolf/data/popbox.png r, /usr/share/games/solarwolf/data/popshot.png r, /usr/share/games/solarwolf/data/powereffects.png r, /usr/share/games/solarwolf/data/powerup.png r, /usr/share/games/solarwolf/data/pygame_powered.gif r, /usr/share/games/solarwolf/data/pythonpowered.gif r, /usr/share/games/solarwolf/data/rub.gif r, /usr/share/games/solarwolf/data/score_1.png r, /usr/share/games/solarwolf/data/score_10.png r, /usr/share/games/solarwolf/data/score_5.png r, /usr/share/games/solarwolf/data/score_50.png r, /usr/share/games/solarwolf/data/sdlpowered.png r, /usr/share/games/solarwolf/data/ship-big.png r, /usr/share/games/solarwolf/data/ship-mini-boost2.png r, /usr/share/games/solarwolf/data/ship-teleport.png r, /usr/share/games/solarwolf/data/ship-up-boost1.png r, /usr/share/games/solarwolf/data/ship-up-boost2.png r, /usr/share/games/solarwolf/data/ship-up.png r, /usr/share/games/solarwolf/data/ship-warp.png r, /usr/share/games/solarwolf/data/smoke.png r, /usr/share/games/solarwolf/data/spikeball.png r, /usr/share/games/solarwolf/data/star.gif r, /usr/share/games/solarwolf/solarwolf.py r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/nscd/group r, /var/run/nscd/passwd r, /var/run/nscd/socket w, }	over 4 years ago	solarwolf	202	ravyarmor	Edit	History
opensuse11.0	/etc/apparmor.d/etc.apparmor.d.usr.lib.firefox.firefox-bin	#include <tunables/global> /etc/apparmor.d/etc.apparmor.d.usr.lib.firefox.firefox-bin { #include <abstractions/base> }	over 2 years ago	firefox-bin child of firefox.sh	148	knotwurk	Edit	History
ubuntu-gutsy	/etc/cron.daily/aptitude	#include <tunables/global> /etc/cron.daily/aptitude { #include <abstractions/base> /bin/cp ixr, /bin/dash ixr, /bin/date ixr, /bin/gzip ixr, /bin/mv ixr, /bin/rm ixr, /bin/which ixr, /etc/cron.daily/aptitude mr, /proc//mounts r, /proc/filesystems r, /usr/bin/basename ixr, /usr/bin/cmp ixr, /usr/bin/dirname ixr, /usr/bin/savelog ixr, /var/backups/ rw, /var/lib/aptitude/pkgstates r, }	over 3 years ago		256	stive	Edit	History
opensuse10.3	/usr/bin/xdpyinfo	#include <tunables/global> /usr/bin/xdpyinfo { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/xdpyinfo mr, }	over 4 years ago	Import of jmichaels profiles	210	dominic	Edit	History
opensuse10.3	/bin/dbus-daemon	#include <tunables/global> /bin/dbus-daemon flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/nameservice> capability dac_override, capability setgid, capability setuid, /bin/dbus-daemon mr, /etc/dbus-1/session.conf r, /etc/dbus-1/system.conf r, /etc/dbus-1/system.d/ r, /etc/dbus-1/system.d/.conf r, /usr/bin/helix-dbus-server Px, /usr/lib/control-center-2.0/gnome-settings-daemon Px, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon Px, /usr/lib/notification-daemon-1.0/notification-daemon Px, /usr/share/dbus-1/services/ r, /usr/share/dbus-1/services/.service r, /var/run/dbus/pid w, }	over 4 years ago	argh, switch things back to complain for a while	271	jmichael	Edit	History
opensuse10.3	/sbin/portmap	#include <tunables/global> /sbin/portmap flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, /sbin/portmap mr, /var/run/portmap_mapping rw, }	over 4 years ago	argh, switch things back to complain for a while	238	jmichael	Edit	History
opensuse11.0	/usr/bin/konqueror	#include <tunables/global> /usr/bin/konqueror { #include <abstractions/base> audit capability dac_override, deny /etc/fonts/conf.avail/20-fix-globaladvance.conf r, owner / r, owner /boot/System.map-2.6.31.5-0.1-default r, owner /boot/backup_mbr r, owner /boot/boot.readme r, owner /boot/config-2.6.31.5-0.1-default r, owner /boot/initrd-2.6.31.5-0.1-default r, owner /boot/message r, owner /boot/vmlinuz-2.6.31.5-0.1-default r, owner /etc/exports r, owner /etc/fonts/** r, owner /etc/fstab r, owner /etc/kde4/share/apps/konqueror/profiles/ r, owner /etc/kde4/share/config/dolphinrc r, owner /etc/kde4/share/config/filetypesrc r, owner /etc/kde4/share/config/kioslaverc r, owner /etc/kde4/share/config/oxygenrc r, owner /etc/kde4rc r, owner /etc/nsswitch.conf r, owner /etc/rpc r, owner /etc/samba/smb.conf r, owner /media/ r, owner /opt/tinycobol-0.64/ANNOUNCE r, owner /opt/tinycobol-0.64/BUGS r, owner /opt/tinycobol-0.64/CHANGES r, owner /opt/tinycobol-0.64/COPYING.LIB r, owner /opt/tinycobol-0.64/COPYRIGHT r, owner /opt/tinycobol-0.64/HISTORY r, owner /opt/tinycobol-0.64/Makefile.in r, owner /opt/tinycobol-0.64/Makefile.mingw.in r, owner /opt/tinycobol-0.64/STATUS r, owner /opt/tinycobol-0.64/TODO r, owner /opt/tinycobol-0.64/cobrun/Makefile.in r, owner /opt/tinycobol-0.64/cobrun/Makefile.mingw.in r, owner /opt/tinycobol-0.64/cobrun/tcrunversion.h.in r, owner /opt/tinycobol-0.64/config.guess r, owner /opt/tinycobol-0.64/config.sub r, owner /opt/tinycobol-0.64/configure r, owner /opt/tinycobol-0.64/configure.in r, owner /opt/tinycobol-0.64/htconfig.h.in r, owner /opt/tinycobol-0.64/htconfig.mingw.h.in r, owner /opt/tinycobol-0.64/install-sh r, owner /opt/tinycobol-0.64/tcbuild.mingw.bat r, owner /opt/tinycobol-0.64/tinycobol.lsm r, owner /proc//statm r, owner /root/.Xauthority r, owner /root/.config/Trolltech.conf rwk, owner /root/.kde4/share/apps/kfileplaces/bookmarks.xml r, owner /root/.kde4/share/apps/konqueror/autosave/ r, owner /root/.kde4/share/apps/konqueror/autosave/_1.42 r, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.By6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.DY6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.Io6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.LE6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.Le6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.RH6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.RV6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.Rb6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.Wr6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.YA6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.Yv6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.ZV6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.dO6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.dW6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.eB6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.et6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.iJ6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.kC6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.kE6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.kV6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.ox6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.oy6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.pp6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.qW6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.qy6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.uh6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.xU6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.yO6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42.lock.zJ6489 w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42BS6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42HZ6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42Io6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42Kh6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42Kw6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42LG6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42Lr6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42Ly6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42MJ6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42OQ6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42SB6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42SU6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42VR6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42XZ6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42Yl6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42bE6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42dR6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42dU6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42gx6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42hH6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42jg6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42op6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42pd6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42rc6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42sM6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42vn6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42wH6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42xZ6489.new w, owner /root/.kde4/share/apps/konqueror/autosave/_1.42yg6489.new w, owner /root/.kde4/share/apps/konqueror/bookmarks.xml r, owner /root/.kde4/share/apps/konqueror/closeditems_saved r, owner /root/.kde4/share/apps/konqueror/closeditems_saved.lock.Lh6489 w, owner /root/.kde4/share/apps/konqueror/closeditems_saved.lock.Tj6489 w, owner /root/.kde4/share/apps/konqueror/closeditems_saved.lock.vl6489 w, owner /root/.kde4/share/apps/konqueror/closeditems_savedHn6489.new w, owner /root/.kde4/share/apps/konqueror/closeditems_savednQ6489.new w, owner /root/.kde4/share/apps/konqueror/closeditems_savednS6489.new w, owner /root/.kde4/share/apps/konqueror/konq_history r, owner /root/.kde4/share/apps/konqueror/konq_historyBV6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyCP6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyLY6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyLh6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyNZ6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyOt6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyQP6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyUu6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyUw6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyWE6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyYg6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyZu6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyZz6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyaW6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyeu6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historygm6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyqN6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyrW6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyuX6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historywv6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyxS6489.new w, owner /root/.kde4/share/apps/konqueror/konq_historyzP6489.new w, owner /root/.kde4/share/apps/konqueror/profiles/ r, owner /root/.kde4/share/apps/konqueror/profiles/webbrowsing r, owner /root/.kde4/share/apps/konqueror/profiles/webbrowsing.lock.Bz6489 w, owner /root/.kde4/share/apps/konqueror/profiles/webbrowsing.lock.jN6489 w, owner /root/.kde4/share/apps/konqueror/profiles/webbrowsingwD6489.new w, owner /root/.kde4/share/apps/konqueror/profiles/webbrowsingzU6489.new w, owner /root/.kde4/share/apps/konqueror/sessions/ r, owner /root/.kde4/share/config/dirfilterrc.lock.TJ6489 w, owner /root/.kde4/share/config/dirfilterrcXM6489.new w, owner /root/.kde4/share/config/dolphinrc r, owner /root/.kde4/share/config/filetypesrc r, owner /root/.kde4/share/config/kdeglobals rk, owner /root/.kde4/share/config/kio_httprc r, owner /root/.kde4/share/config/kioslaverc r, owner /root/.kde4/share/config/knfsshare r, owner /root/.kde4/share/config/konq_history r, owner /root/.kde4/share/config/konq_history.lock.IY6489 w, owner /root/.kde4/share/config/konq_history.lock.Th6489 w, owner /root/.kde4/share/config/konq_history.lock.wR6489 w, owner /root/.kde4/share/config/konq_history.lock.ys6489 w, owner /root/.kde4/share/config/konq_historyNa6489.new w, owner /root/.kde4/share/config/konq_historyWa6489.new w, owner /root/.kde4/share/config/konq_historycJ6489.new w, owner /root/.kde4/share/config/konq_historyjh6489.new w, owner /root/.kde4/share/config/konquerorrc r, owner /root/.kde4/share/config/konquerorrc.lock.Ar6489 w, owner /root/.kde4/share/config/konquerorrc.lock.wZ6489 w, owner /root/.kde4/share/config/konquerorrcMp6489.new w, owner /root/.kde4/share/config/konquerorrcTT6489.new w, owner /root/.kde4/share/config/kuriikwsfilterrc r, owner /root/.local/share/mime/magic r, owner /tmp/kde-root/closeditems/ r, owner /tmp/kde-root/closeditems/_1.42 r, owner /tmp/kde-root/closeditems/_1.42.lock.Mf6489 w, owner /tmp/kde-root/closeditems/_1.42.lock.Rz6489 w, owner /tmp/kde-root/closeditems/_1.42.lock.kn6489 w, owner /tmp/kde-root/closeditems/_1.42Ll6489.new w, owner /tmp/kde-root/closeditems/_1.42lZ6489.new w, owner /tmp/kde-root/khtmlcacheBa6489.tmp w, owner /tmp/kde-root/khtmlcacheBm6489.tmp w, owner /tmp/kde-root/khtmlcacheEx6489.tmp w, owner /tmp/kde-root/khtmlcacheIa6489.tmp w, owner /tmp/kde-root/khtmlcacheNr6489.tmp w, owner /tmp/kde-root/khtmlcachePH6489.tmp w, owner /tmp/kde-root/khtmlcacheRx6489.tmp w, owner /tmp/kde-root/khtmlcacheSG6489.tmp w, owner /tmp/kde-root/khtmlcacheTR6489.tmp w, owner /tmp/kde-root/khtmlcacheXs6489.tmp w, owner /tmp/kde-root/khtmlcacheYE6489.tmp w, owner /tmp/kde-root/khtmlcacheab6489.tmp w, owner /tmp/kde-root/khtmlcachebm6489.tmp w, owner /tmp/kde-root/khtmlcachedC6489.tmp w, owner /tmp/kde-root/khtmlcachegg6489.tmp w, owner /tmp/kde-root/khtmlcacheiV6489.tmp w, owner /tmp/kde-root/khtmlcachekk6489.tmp w, owner /tmp/kde-root/khtmlcachels6489.tmp w, owner /tmp/kde-root/khtmlcachenI6489.tmp w, owner /tmp/kde-root/khtmlcachenv6489.tmp w, owner /tmp/kde-root/khtmlcachepV6489.tmp w, owner /tmp/kde-root/khtmlcachepX6489.tmp w, owner /tmp/kde-root/khtmlcacheuJ6489.tmp w, owner /tmp/kde-root/khtmlcacheup6489.tmp w, owner /tmp/kde-root/khtmlcachexA6489.tmp w, owner /tmp/kde-root/konqueror-crash-Wy6489.log w, owner /usr/lib/* m, /usr/lib/ r, /usr/lib/kde4/libexec/drkonqi cx, owner /usr/share/fonts/ r, /usr/share/icons/DMZ/index.theme r, owner /usr/share/icons/Oxygen_White/cursors/00000000000000020006000e7e9ffc3f r, owner /usr/share/icons/Oxygen_White/cursors/9d800788f1b08800ae810202380a0822 r, owner /usr/share/icons/Oxygen_White/cursors/all-scroll r, owner /usr/share/icons/Oxygen_White/cursors/ibeam r, owner /usr/share/icons/Oxygen_White/cursors/left_ptr r, owner /usr/share/icons/Oxygen_White/index.theme r, owner /usr/share/icons/hicolor/16x16/apps/gwenview.png r, owner /usr/share/icons/hicolor/22x22/apps/kget.png r, owner /usr/share/icons/hicolor/index.theme r, owner /usr/share/icons/oxygen/128x128/apps/konqueror.png r, owner /usr/share/icons/oxygen/16x16/actions/application-exit.png r, owner /usr/share/icons/oxygen/16x16/actions/bookmark-new-list.png r, owner /usr/share/icons/oxygen/16x16/actions/bookmark-new.png r, owner /usr/share/icons/oxygen/16x16/actions/bookmarks-organize.png r, owner /usr/share/icons/oxygen/16x16/actions/character-set.png r, owner /usr/share/icons/oxygen/16x16/actions/configure-shortcuts.png r, owner /usr/share/icons/oxygen/16x16/actions/configure-toolbars.png r, owner /usr/share/icons/oxygen/16x16/actions/dialog-cancel.png r, owner /usr/share/icons/oxygen/16x16/actions/dialog-ok.png r, owner /usr/share/icons/oxygen/16x16/actions/document-open-remote.png r, owner /usr/share/icons/oxygen/16x16/actions/document-open.png r, owner /usr/share/icons/oxygen/16x16/actions/document-print-frame.png r, owner /usr/share/icons/oxygen/16x16/actions/document-print.png r, owner /usr/share/icons/oxygen/16x16/actions/document-save-as.png r, owner /usr/share/icons/oxygen/16x16/actions/document-save.png r, owner /usr/share/icons/oxygen/16x16/actions/edit-copy.png r, owner /usr/share/icons/oxygen/16x16/actions/edit-cut.png r, owner /usr/share/icons/oxygen/16x16/actions/edit-find.png r, owner /usr/share/icons/oxygen/16x16/actions/edit-paste.png r, owner /usr/share/icons/oxygen/16x16/actions/edit-select-all.png r, owner /usr/share/icons/oxygen/16x16/actions/edit-undo.png r, owner /usr/share/icons/oxygen/16x16/actions/folder-new.png r, owner /usr/share/icons/oxygen/16x16/actions/format-font-size-less.png r, owner /usr/share/icons/oxygen/16x16/actions/format-font-size-more.png r, owner /usr/share/icons/oxygen/16x16/actions/go-down-search.png r, owner /usr/share/icons/oxygen/16x16/actions/go-home.png r, owner /usr/share/icons/oxygen/16x16/actions/go-jump.png r, owner /usr/share/icons/oxygen/16x16/actions/go-next.png r, owner /usr/share/icons/oxygen/16x16/actions/go-previous.png r, owner /usr/share/icons/oxygen/16x16/actions/go-up-search.png r, owner /usr/share/icons/oxygen/16x16/actions/go-up.png r, owner /usr/share/icons/oxygen/16x16/actions/help-contents.png r, owner /usr/share/icons/oxygen/16x16/actions/help-contextual.png r, owner /usr/share/icons/oxygen/16x16/actions/list-add.png r, owner /usr/share/icons/oxygen/16x16/actions/list-remove.png r, owner /usr/share/icons/oxygen/16x16/actions/mail-message-new.png r, owner /usr/share/icons/oxygen/16x16/actions/process-stop.png r, owner /usr/share/icons/oxygen/16x16/actions/show-menu.png r, owner /usr/share/icons/oxygen/16x16/actions/tab-close.png r, owner /usr/share/icons/oxygen/16x16/actions/tab-detach.png r, owner /usr/share/icons/oxygen/16x16/actions/tab-duplicate.png r, owner /usr/share/icons/oxygen/16x16/actions/tab-new.png r, owner /usr/share/icons/oxygen/16x16/actions/tools-check-spelling.png r, owner /usr/share/icons/oxygen/16x16/actions/tools-report-bug.png r, owner /usr/share/icons/oxygen/16x16/actions/view-choose.png r, owner /usr/share/icons/oxygen/16x16/actions/view-close.png r, owner /usr/share/icons/oxygen/16x16/actions/view-fullscreen.png r, owner /usr/share/icons/oxygen/16x16/actions/view-history.png r, owner /usr/share/icons/oxygen/16x16/actions/view-refresh.png r, owner /usr/share/icons/oxygen/16x16/actions/view-sidetree.png r, owner /usr/share/icons/oxygen/16x16/actions/view-split-left-right.png r, owner /usr/share/icons/oxygen/16x16/actions/view-split-top-bottom.png r, owner /usr/share/icons/oxygen/16x16/actions/window-close.png r, owner /usr/share/icons/oxygen/16x16/actions/window-duplicate.png r, owner /usr/share/icons/oxygen/16x16/actions/window-new.png r, owner /usr/share/icons/oxygen/16x16/animations/process-working-kde.png r, owner /usr/share/icons/oxygen/16x16/apps/hwinfo.png r, owner /usr/share/icons/oxygen/16x16/apps/kde.png r, owner /usr/share/icons/oxygen/16x16/apps/konqueror.png r, owner /usr/share/icons/oxygen/16x16/apps/preferences-web-browser-adblock.png r, owner /usr/share/icons/oxygen/16x16/apps/system-file-manager.png r, owner /usr/share/icons/oxygen/16x16/emblems/emblem-symbolic-link.png r, owner /usr/share/icons/oxygen/16x16/mimetypes/application-zip.png r, owner /usr/share/icons/oxygen/16x16/mimetypes/inode-directory.png r, owner /usr/share/icons/oxygen/16x16/mimetypes/text-html.png r, owner /usr/share/icons/oxygen/16x16/mimetypes/unknown.png r, owner /usr/share/icons/oxygen/16x16/places/folder.png r, owner /usr/share/icons/oxygen/16x16/status/image-missing.png r, owner /usr/share/icons/oxygen/22x22/actions/go-home.png r, owner /usr/share/icons/oxygen/22x22/actions/go-jump-locationbar.png r, owner /usr/share/icons/oxygen/22x22/actions/go-next.png r, owner /usr/share/icons/oxygen/22x22/actions/go-previous.png r, owner /usr/share/icons/oxygen/22x22/actions/go-up.png r, owner /usr/share/icons/oxygen/22x22/actions/process-stop.png r, owner /usr/share/icons/oxygen/22x22/actions/view-file-columns.png r, owner /usr/share/icons/oxygen/22x22/actions/view-list-details.png r, owner /usr/share/icons/oxygen/22x22/actions/view-list-icons.png r, owner /usr/share/icons/oxygen/22x22/actions/view-refresh.png r, owner /usr/share/icons/oxygen/22x22/places/user-home.png r, owner /usr/share/icons/oxygen/32x32/apps/hwinfo.png r, owner /usr/share/icons/oxygen/32x32/apps/konqueror.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/application-octet-stream.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/application-x-bzip.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/application-x-cpio.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/application-x-gzip.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/application-x-shellscript.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/application-x-zerosize.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/inode-directory.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-plain.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-x-authors.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-x-chdr.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-x-copying.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-x-csrc.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-x-generic.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-x-install.png r, owner /usr/share/icons/oxygen/32x32/mimetypes/text-x-readme.png r, owner /usr/share/icons/oxygen/64x64/apps/konqueror.png r, owner /usr/share/icons/oxygen/64x64/status/dialog-warning.png r, owner /usr/share/icons/oxygen/index.theme r, owner /usr/share/kde4/apps/dolphinpart/dolphinpart.rc r, owner /usr/share/kde4/apps/dolphinpart/kpartplugins/ r, owner /usr/share/kde4/apps/dolphinpart/kpartplugins/dirfilterplugin.desktop r, owner /usr/share/kde4/apps/dolphinpart/kpartplugins/dirfilterplugin.rc r, owner /usr/share/kde4/apps/dolphinpart/kpartplugins/kimgalleryplugin.desktop r, owner /usr/share/kde4/apps/dolphinpart/kpartplugins/kimgalleryplugin.rc r, owner /usr/share/kde4/apps/dolphinpart/kpartplugins/kshellcmdplugin.desktop r, owner /usr/share/kde4/apps/dolphinpart/kpartplugins/kshellcmdplugin.rc r, owner /usr/share/kde4/apps/khtml/css/html4.css r, owner /usr/share/kde4/apps/khtml/css/presentational.css r, owner /usr/share/kde4/apps/khtml/css/quirks.css r, owner /usr/share/kde4/apps/khtml/khtml.rc r, owner /usr/share/kde4/apps/khtml/khtml_browser.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/ r, owner /usr/share/kde4/apps/khtml/kpartplugins/akregator_konqfeedicon.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/akregator_konqfeedicon.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/autorefresh.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/autorefresh.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/crashesplugin.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/crashesplugin.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/kget_plug_in.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/khtmlkttsd.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/khtmlkttsd.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/khtmlsettingsplugin.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/khtmlsettingsplugin.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/minitoolsplugin.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/minitoolsplugin.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_adblock.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_adblock.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_babelfish.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_babelfish.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_domtreeviewer.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_domtreeviewer.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_rellinks.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_rellinks.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_validators.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_validators.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_webarchiver.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/plugin_webarchiver.rc r, owner /usr/share/kde4/apps/khtml/kpartplugins/uachangerplugin.desktop r, owner /usr/share/kde4/apps/khtml/kpartplugins/uachangerplugin.rc r, owner /usr/share/kde4/apps/konqueror/about/launch.html r, owner /usr/share/kde4/apps/konqueror/konqueror.rc r, owner /usr/share/kde4/apps/konqueror/kpartplugins/ r, owner /usr/share/kde4/apps/konqueror/kpartplugins/searchbar.desktop r, owner /usr/share/kde4/apps/konqueror/kpartplugins/searchbar.rc r, owner /usr/share/kde4/apps/konqueror/pics/indicator_connect.png r, owner /usr/share/kde4/apps/konqueror/pics/indicator_empty.png r, owner /usr/share/kde4/apps/konqueror/pics/indicator_noconnect.png r, owner /usr/share/kde4/apps/konqueror/pics/indicator_viewactive.png r, owner /usr/share/kde4/apps/konqueror/profiles/ r, owner /usr/share/kde4/apps/konqueror/profiles/filemanagement r, owner /usr/share/kde4/apps/konqueror/profiles/kde_devel r, owner /usr/share/kde4/apps/konqueror/profiles/midnightcommander r, owner /usr/share/kde4/apps/konqueror/profiles/tabbedbrowsing r, owner /usr/share/kde4/config/kdebug.areas r, owner /usr/share/kde4/config/kdebugrc r, owner /usr/share/kde4/config/kshorturifilterrc r, owner /usr/share/kde4/config/ui/ui_standards.rc r, owner /usr/share/kde4/services/searchproviders/google.desktop r, owner /usr/share/mime/generic-icons r, owner /usr/share/mime/magic r, owner /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, owner /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, owner /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, owner /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, owner /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, owner /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, owner /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, owner /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, owner /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, owner /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, owner /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, owner /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.data rw, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.index rw, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.AD6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.AK6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.AL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.AO6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.AX6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ae6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.BE6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.BL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.BN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.BQ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Be6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Bh6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Bs6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Bw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Bz6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.CI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.CT6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Cf6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Cj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Cs6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.DF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.DK6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.DL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.DQ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Df6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Dj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.EB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ET6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.EU6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.EV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ea6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ec6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ef6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ej6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Et6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.FB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.FJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Fg6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Fk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Fn6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.GI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.GK6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.GS6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ga6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Gg6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Gk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Gx6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Gz6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.HJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.HS6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.HV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Hc6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Hm6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Hq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Hs6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Hw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Hz6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.IK6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.If6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ix6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.JA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.JE6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.JH6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.JJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.JM6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.JX6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ji6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Js6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.KP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.KS6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Kd6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Kz6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.LG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.LH6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.LJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.LW6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Le6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ly6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.MA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ME6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.MK6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.MT6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.MU6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Mf6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Mj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Mk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.NA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.NB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.NI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.NZ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Na6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Nh6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ni6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Nl6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Nu6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.OD6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.OF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.OG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.OR6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.OV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Oj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Oo6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.PP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Pb6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Pq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ps6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Pw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Py6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.QB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.QE6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.QF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.QV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Qb6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Qm6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Qq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Qv6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.RH6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.RI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.RJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.RL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.RS6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.RV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Rh6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Rm6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.SF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.SN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.SP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.SQ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Sf6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Sn6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ss6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.TD6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.TJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.TP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Tw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.UA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.UT6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.UV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.UZ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Ur6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.VO6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.VU6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.VY6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Vf6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Vg6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Vk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Vp6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.WG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.We6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Wr6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.XA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.XB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.XF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.XN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Xj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Xk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Xq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.YG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.YM6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.YO6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.YW6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.YZ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Yb6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Yp6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Yq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Yx6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ZH6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ZT6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Za6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Zf6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Zm6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.Zz6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.aC6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.aI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.aU6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.aW6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ad6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ae6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ap6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.aq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.as6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.au6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ay6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.bF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.bZ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.bc6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.bk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.bo6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.bw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cC6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cS6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cd6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ch6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cm6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cn6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cp6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.cs6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dH6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dT6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dp6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.du6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dx6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.dz6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.eB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.eG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.eL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.eX6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ei6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.eo6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fa6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fh6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.fv6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.gA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.gB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.gO6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.gR6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.gV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.gs6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.gy6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.hO6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.hP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.hV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.hZ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.hq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ht6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.hw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.iF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.iG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.iL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.iP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.iR6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ic6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ie6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.if6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ik6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.im6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.jA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.jI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.jj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.jk6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.jw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kK6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kR6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kc6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kg6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kh6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.kr6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ky6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.la6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lc6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lf6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ll6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lu6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.lx6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mQ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mR6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mY6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ma6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.md6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.me6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mh6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mn6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mr6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.mu6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.nL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.nV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.na6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.nd6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.no6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.nt6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.oB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.oD6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.oN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.oe6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ol6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.oq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.pN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.pQ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.pg6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.pj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.qI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.qV6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.qb6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.qr6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.rD6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.rP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ra6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.rc6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ro6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.rx6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ry6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.sC6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.sH6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.sM6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.sY6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.sd6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.se6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.sj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.su6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.tL6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.tN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.tY6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.tZ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.tc6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.tj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.tw6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.uD6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.uP6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.uQ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.uX6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.uZ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.uo6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.uy6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vC6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vF6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vG6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vI6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.va6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vc6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vh6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vn6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vp6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vq6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.vr6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.wA6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.wE6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.wN6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.wY6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.wn6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.wx6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.wy6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.xJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.xS6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.xt6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.xx6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.yB6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.yJ6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.ym6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.yp6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.yu6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.zS6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.zj6489 w, owner /var/tmp/kdecache-root/kpc/kde-icon-cache.lock.zp6489 w, owner /var/tmp/kdecache-root/ksycoca4 r, profile /usr/lib/kde4/libexec/drkonqi { } }	over 2 years ago	tape	119	Autobahn	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> capability sys_ptrace, /bin/bash rix, }	over 2 years ago		113	cjgiraldes	Edit	History
opensuse11.0	/media/WIFIWAY/WIFIWAY.tar.gz	#include <tunables/global> /media/WIFIWAY/WIFIWAY.tar.gz { #include <abstractions/base> }	over 2 years ago	wifi	151	dementieva	Edit	History
opensuse11.0	/usr/sbin/privoxy	#include <tunables/global> /usr/sbin/privoxy flags=(complain) { #include <abstractions/base> }	over 3 years ago		177	johnson	Edit	History
opensuse11.0	/usr/bin/xpdf	#include <tunables/global> /usr/bin/xpdf { #include <abstractions/base> }	over 3 years ago	change123	195	mschmidkunz	Edit	History
opensuse11.0	/usr/bin/gconftool-2	#include <tunables/global> /usr/bin/gconftool-2 { #include <abstractions/base> }	over 3 years ago		221	delder	Edit	History
ubuntu-gutsy	/usr/lib/eject/dmcrypt-get-device	#include <tunables/global> /usr/lib/eject/dmcrypt-get-device { #include <abstractions/base> /usr/lib/eject/dmcrypt-get-device mr, }	over 4 years ago	gnome	301	hbpteam	Edit	History
opensuse10.3	/usr/bin/numlockx	#include <tunables/global> /usr/bin/numlockx { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/numlockx mr, }	over 4 years ago	Import of jmichaels profiles	282	dominic	Edit	History
opensuse10.3	/usr/lib/cups/backend/socket	#include <tunables/global> /usr/lib/cups/backend/socket { #include <abstractions/base> #include <abstractions/nameservice> /usr/lib/cups/backend/socket mr, }	over 4 years ago	ssh needed the ability to create /root/.ssh, and assorted CUPS fixes	272	crispin	Edit	History
opensuse10.3	/usr/bin/ggreeter	#include <tunables/global> /usr/bin/ggreeter flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/bash ixr, /etc/mono/config r, /home//.Xauthority r, /home//.wapi/shared_data-* mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/bug-buddy ixr, /usr/bin/ggreeter mr, /usr/bin/mono ixr, /usr/lib/ggreeter/ggreeter.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/*.dll mr, }	over 4 years ago	add a couple bug-buddy executions	239	jmichael	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> audit /dev/snd/controlC0 rw, }	over 3 years ago	skype	204	buba	Edit	History
opensuse10.3	/home/dominic/bin/test2_lock.pl	#include <tunables/global> /home/dominic/bin/test2_lock.pl flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/bash ixr, /bin/ls ixmr, /home/dominic/bin/test2_lock.pl mr, /home/dominic/lock_test kw, /home/dominic/src/svn/ r, /home/dominic/src/svn/novell/ r, /home/dominic/src/svn/novell// r, /home/dominic/src/svn/novell/trunk.dev/ r, /tmp/ r, /usr/bin/flock ixr, /var/tmp/ r, }	over 4 years ago	new stuff	300	dominic_2	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename flags=(complain) { #include <abstractions/base> /bin/basename mr, }	over 4 years ago	argh, switch things back to complain for a while	309	jmichael	Edit	History
opensuse11.0	/usr/bin/python2.6	#include <tunables/global> /usr/bin/python2.6 { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability sys_ptrace, owner /DATA_SONY/ies4linux-2.99.0.1/ui/pygtk/ies4linux-gtk.py r, /bin/ r, /bin/bash rix, /bin/cat rix, /bin/grep rix, /bin/sleep rix, /bin/uname rix, /dev/bus/usb/ r, /dev/bus/usb/ rw, /dev/nvidia0 rw, /dev/nvidiactl rw, /dev/tty rw, /etc/X11/qtrc r, /etc/compizconfig/config rk, /etc/cups/ r, /etc/cups/client.conf r, /etc/cups/mime.convs r, /etc/cups/pstoraster.convs r, /etc/fonts/ r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtkrc r, /etc/hp/hplip.conf r, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/mime.types r, /etc/pango/pango.modules r, /etc/rpm/ r, /etc/rpm/macros.gconf2 r, /etc/rpm/macros.jpackage r, /etc/rpm/macros.kde4 r, /etc/rpm/macros.mkinitrd r, /etc/rpm/macros.python r, /etc/rpm/macros.ruby r, /etc/rpm/macros.tcl r, /etc/zypp/repos.d/ r, /etc/zypp/repos.d/* r, /home/ r, owner /home// rw, /home//* rw, owner /home/// rw, owner /home//.PlayOnLinux/* rw, owner /home//.config/Trolltech.conf rk, owner /home//.config/compiz/compizconfig/ r, owner /home//.config/compiz/compizconfig/Advanced.ini rak, owner /home//.config/compiz/compizconfig/config rak, owner /home//.config/compiz/fusion-icon r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.cups/lpoptions r, owner /home//.emerald/settings.ini r, owner /home//.emerald/theme/buttons.above.png r, owner /home//.emerald/theme/buttons.close.png r, owner /home//.emerald/theme/buttons.max.png r, owner /home//.emerald/theme/buttons.menu.png r, owner /home//.emerald/theme/buttons.min.png r, owner /home//.emerald/theme/buttons.restore.png r, owner /home//.emerald/theme/buttons.shade.png r, owner /home//.emerald/theme/buttons.sticky.png r, owner /home//.emerald/theme/buttons.unabove.png r, owner /home//.emerald/theme/buttons.unshade.png r, owner /home//.emerald/theme/buttons.unsticky.png r, owner /home//.emerald/theme/theme.ini r, owner /home//.fontconfig/* r, owner /home//.gstreamer-0.10/ rw, owner /home//.hplip/hp-systray.lock wk, owner /home//.hplip/hp-toolbox.lock wk, owner /home//.hplip/hplip.conf rw, owner /home//.kde/share/config/kdeglobals r, owner /home//.kde4/share/config/ w, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.kde4/share/config/kdeglobals rk, owner /home//.local/share/icons/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.moovida/moovida.conf ra, owner /home//.moovida/moovida.db rwk, owner /home//.qt/.qt_plugins_3.3rc.lock rwk, owner /home//.qt/.qtrc.lock rwk, owner /home//.qt/qt_plugins_3.3rc r, owner /home//.qt/qtrc r, /home//avtorizator/authcliw.conf r, /home//avtorizator/cxauth r, owner /home//ies4linux-2.99.0.1/ui/pygtk/ies4linux-gtk.py r, /home/aleksandr/.xinitrc.template rix, /opt/gnome/bin/ r, /opt/gnome/share/icons/ r, /opt/gnome/share/icons/** r, /opt/gnome/share/mime/* r, /opt/gnome/share/pixmaps/ r, /opt/kde3/bin/ r, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib/kde3/plugins/styles/plastik.so mr, /opt/kde3/lib/libso mr, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/** r, /opt/kde3/share/pixmaps/ r, /proc/ r, /proc//cmdline r, owner /proc//mounts r, /proc//stat r, /proc//status r, /proc/cpuinfo r, /proc/interrupts r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, owner /root/.hplip/hplip.conf rw, /sbin/ r, /sbin/ldconfig rix, /usr/X11R6/bin/ r, /usr/X11R6/lib/libso mr, /usr/bin/ r, /usr/bin/ccsm rix, /usr/bin/command-not-found r, /usr/bin/compiz rix, /usr/bin/elisa r, /usr/bin/emerald rix, /usr/bin/env rix, /usr/bin/fusion-icon r, /usr/bin/glxinfo rix, /usr/bin/killall rix, /usr/bin/lpr rix, /usr/bin/objdump rix, /usr/bin/pgrep rix, /usr/bin/python2.6 rix, /usr/bin/which rix, /usr/bin/xvinfo rix, /usr/games/ r, /usr/lib/ mr, /usr/local/bin/ r, /usr/local/sbin/ r, /usr/sbin/ r, /usr/share/ r, /usr/share/hplip/print.py rix, /usr/share/hplip/systray.py rix, /usr/share/hplip/toolbox.py rix, /var/cache/** r, owner /var/log/cxauth.log a, /var/run/cups/cups.sock w, /var/run/dbus/system_bus_socket w, /var/run/nscd/services r, }	over 2 years ago		138	Aleksandr	Edit	History
opensuse10.3	/usr/bin/gnome-power-manager	#include <tunables/global> /usr/bin/gnome-power-manager flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/gnome-power-manager/ w, /home//.gnome2/gnome-power-manager/* rw, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml rw, /home//.gstreamer-0.10/registry.i686.xml.tmp rw, /home//.icons/ r, /home//.local/share/icons/ r, /proc/stat r, /usr/bin/bug-buddy ixr, /usr/bin/gnome-power-manager mr, /usr/lib/nautilus-cd-burner/mapping-daemon Px, /usr/share/gnome-power-manager/.glade r, /usr/share/gnome-power-manager/icons/ r, /usr/share/gnome-power-manager/icons/* r, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	171	jmichael	Edit	History
opensuse10.3	/usr/bin/numlockx	#include <tunables/global> /usr/bin/numlockx { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/numlockx mr, }	over 4 years ago	none	255	cinimod	Edit	History
opensuse10.3	/sbin/portmap	#include <tunables/global> /sbin/portmap flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, /sbin/portmap mr, /var/run/portmap_mapping rw, }	over 4 years ago		320	sebastian	Edit	History
opensuse10.3	/usr/bin/hal-find-by-property	#include <tunables/global> /usr/bin/hal-find-by-property { #include <abstractions/base> #include <abstractions/dbus> /usr/bin/hal-find-by-property mr, }	over 4 years ago	none	243	cinimod	Edit	History
ubuntu-gutsy	/bin/pwd	#include <tunables/global> /bin/pwd flags=(complain) { #include <abstractions/base> / r, /bin/pwd mr, /home/ r, }	over 4 years ago	gnome	303	hbpteam	Edit	History
opensuse11.0	/sbin/yast2	#include <tunables/global> /sbin/yast2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	19 days ago		3	psydefects22	Edit	History
opensuse11.0	/home/marauder/wineplasma/WNCommander.exe	#include <tunables/global> /home/marauder/wineplasma/WNCommander.exe flags=(complain) { #include <abstractions/base> }	over 2 years ago	WNC	49	Marauder	Edit	History
opensuse11.0	/bin/date	#include <tunables/global> /bin/date { #include <abstractions/base> owner /bin/date mr, }	over 3 years ago	install	247	install	Edit	History
opensuse11.0	/usr/bin/amule	#include <tunables/global> /usr/bin/amule { #include <abstractions/base> #include <abstractions/bash> network dgram, network stream, deny owner "/home/nosferatu/.aMule/Incoming/---- Anna Ohura -Japanese - Uncensored - Big Boobs Club 2 - 23 Year Old Office Lady H-Cup, F-Cup.avi" r, /bin/bash rix, /bin/uname rix, /dev/tty rw, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/obex-module.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/host.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/opt/kde3/share/icons/ r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.Xauthority r, owner /home//.aMule/ rw, owner /home//.aMule/Incoming/ rw, owner /home//.aMule/Incoming/* r, owner /home//.aMule/Temp/ rw, owner /home//.aMule/amule.conf r, owner /home//.aMule/clients.met r, owner /home//.aMule/clients.met.BAK rw, owner /home//.aMule/cryptkey.dat r, owner /home//.aMule/emfriends.met r, owner /home//.aMule/ipfilter.dat r, owner /home//.aMule/ipfilter_static.dat r, owner /home//.aMule/key_index.dat r, owner /home//.aMule/known.met r, owner /home//.aMule/known2_64.met rw, owner /home//.aMule/last_version_check rw, owner /home//.aMule/lastversion rw, owner /home//.aMule/lastversion7nckGj rw, owner /home//.aMule/load_index.dat r, owner /home//.aMule/logfile rw, owner /home//.aMule/logfile.bak rw, owner /home//.aMule/muleLock wk, owner /home//.aMule/nodes.dat r, owner /home//.aMule/preferences.dat r, owner /home//.aMule/preferencesKad.dat r, owner /home//.aMule/server.met r, owner /home//.aMule/shareddir.dat r, owner /home//.aMule/src_index.dat r, owner /home//.fontconfig/2c06a42904f01c0353eb6890b1b94581-x86.cache-2 r, owner /home//.icons/ r, owner /home/nosferatu/.aMule/** rw, owner /home/nosferatu/.config/qtcurve.gtk-colors rw, owner /home/nosferatu/.config/qtcurve.gtk-icons rw, owner /home/nosferatu/.config/qtcurvestylerc r, owner /home/nosferatu/.fontconfig/97cfba5b71fc14ac61480926ea68fa9c-x86.cache-2 r, owner /home/nosferatu/.kde/share/config/.0 r, owner /home/nosferatu/.kde/share/config/kdeglobals r, owner /home/nosferatu/.qt/qtrc r, /opt/kde3/share/icons/crystalsvg/22x22/actions/button_cancel.png r, owner /proc//cmdline r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/.X11-unix/X0 w, /usr/bin/amule r, /usr/bin/bug-buddy rix, /usr/lib/ mr, /usr/share/GeoIP/GeoIP.dat r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/fonts/ r, /usr/share/icons/ r, /usr/share/icons/Crux/icon-theme.cache r, /usr/share/icons/Crux/index.theme r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/sb_v_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/pixmaps/ r, /usr/share/themes/Crux/gtk-2.0/gtkrc r, /usr/share/themes/Default/gtk-2.0-key/gtkrc r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/bfe73965bf93afc945a2f2460d12ed28-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/nscd/socket w, }	over 3 years ago	amule	183	rmvlad	Edit	History
opensuse10.3	/usr/bin/gpgsm	#include <tunables/global> /usr/bin/gpgsm flags=(complain) { #include <abstractions/base> /home//.gnupg/ lrw, /usr/bin/gpgsm mr, }	over 3 years ago	internet radio, u.a.	271	shivver-fox	Edit	History
opensuse11.0	/usr/lib/postfix/qmgr	# $Id: usr.lib.postfix.qmgr 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/qmgr { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> network stream, owner /proc/sys/kernel/ngroups_max r, /usr/lib/postfix/qmgr mrix, owner /var/spool/postfix/active/* rwk, owner /var/spool/postfix/defer/** w, owner /var/spool/postfix/incoming/* rw, owner /var/spool/postfix/private/retry w, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]* rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/local w, /{var/spool/postfix/,}private/relay w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/smtp w, /{var/spool/postfix/,}private/trace w, /{var/spool/postfix/,}private/uucp w, /{var/spool/postfix/,}public/flush w, /{var/spool/postfix/,}public/qmgr r, }	over 3 years ago	several small additions	136	cboltz-server	Edit	History
opensuse10.3	Marcel	I`am a Linux Newbie	over 4 years ago		248	doggy29	Edit	History
opensuse10.3	/etc/gdm/Init/Default	#include <tunables/global> /etc/gdm/Init/Default flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/uname Px, /etc/gdm/Init/Default mr, /proc/meminfo r, /usr/bin/setxkbmap Px, /usr/bin/xmodmap Px, /usr/bin/xrdb Px, }	over 4 years ago	argh, switch things back to complain for a while	230	jmichael	Edit	History
opensuse10.3	/opt/kde3/bin/kopete	#include <tunables/global> /opt/kde3/bin/kopete { #include <abstractions/base> /opt/kde3/bin/kopete mr, /opt/kde3/lib/libso mr, /usr/lib/qt3/lib/libso mr, }	over 4 years ago	1	328	robsn81	Edit	History
opensuse10.3	/usr/bin/gnome-panel	#include <tunables/global> /usr/bin/gnome-panel { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/banshee Px, /usr/bin/bug-buddy ixr, /usr/bin/ekiga Px, /usr/bin/f-spot Px, /usr/bin/gnome-panel mr, /usr/bin/gnome-screensaver-command Px, /usr/bin/gnome-screensaver-preferences Px, /usr/bin/gnome-terminal Px, /usr/bin/gnomesu Px, /usr/bin/pidgin Px, /usr/lib/bonobo/bonobo-activation-server Px, /usr/lib/firefox/firefox.sh Px, /usr/share/applications/.desktop r, /usr/share/f-spot/icons/.png r, /usr/share/gnome-2.0/ui/.xml r, /usr/share/gnome-panelrc r, /var/cache/libx11/compose/* r, /var/run/gdm_socket w, }	over 4 years ago	Import of jmichaels profiles	201	dominic	Edit	History
opensuse11.0	/usr/local/twonky/twonkymediaserver	#include <tunables/global> /usr/local/twonky/twonkymediaserver { #include <abstractions/base> }	6 months ago		44	EricLoman	Edit	History
opensuse11.0	/usr/bin/3dinfo	#include <tunables/global> /usr/bin/3dinfo flags=(complain) { #include <abstractions/base> }	8 months ago		48	dboyle127	Edit	History
opensuse10.3	/etc/init.d/privoxy	#include <tunables/global> /etc/init.d/privoxy flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability kill, capability sys_ptrace, capability sys_tty_config, /bin/basename Px, /bin/bash ixr, /bin/cp ixr, /bin/rm ixr, /bin/stty ixr, /dev/blog w, /etc/init.d/privoxy ixr, /etc/rc.status r, /proc//stat r, /proc//statm r, /proc/meminfo r, /sbin/checkproc ixr, /sbin/killproc ixr, /usr/sbin/privoxy Pxr, /var/lib/privoxy/ r, /var/lib/privoxy/etc/* w, /var/lib/privoxy/lib/ r, /var/lib/privoxy/lib/libso w, /var/run/privoxy.pid rw, }	over 4 years ago	argh, switch things back to complain for a while	234	jmichael	Edit	History
opensuse10.3	/usr/bin/hal-find-by-property	#include <tunables/global> /usr/bin/hal-find-by-property { #include <abstractions/base> #include <abstractions/dbus> /usr/bin/hal-find-by-property mr, }	over 4 years ago	Import of jmichaels profiles	252	dominic	Edit	History
ubuntu-gutsy	/usr/bin/php5	#include <tunables/global> /usr/bin/php5 { #include <abstractions/base> /usr/bin/php5 mr, }	over 3 years ago		123	stive	Edit	History
opensuse10.3	/usr/lib/control-center-2.0/gnome-settings-daemon	#include <tunables/global> /usr/lib/control-center-2.0/gnome-settings-daemon flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/ r, /etc/sound/events/gnome-2.soundlist r, /etc/sound/events/gtk-events-2.soundlist r, /etc/sysconfig/ r, /home// r, /home//.Xauthority r, /home//.Xdefaults r, /home//.esd_auth r, /home//.gnome2/share/ rw, /home//.gnome2/share/cursor-fonts/ rw, /home//.gnome2/share/cursor-fonts/ rw, /home//.gnome2/share/fonts/ rw, /home//.gnome2/share/fonts/fonts.dir rw, /home//.gnome2_private/ w, /home//.gstreamer-0.10/ w, /home//.gstreamer-0.10/registry.i686.xml rw, /home//.gstreamer-0.10/registry.i686.xml.tmp* rw, /home//.gtkrc-1.2-gnome2 rw, /home//.gtkrc-1.2-gnome2.new rw, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/subclasses r, /home/jesse/.gnome2/share/fonts/* rw, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc/meminfo r, /usr/bin/gnome-screensaver Px, /usr/bin/mkfontdir ixr, /usr/bin/mkfontscale ixr, /usr/bin/xrdb Px, /usr/bin/xscreensaver Px, /usr/lib/control-center-2.0/gnome-settings-daemon mr, /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper Px, /usr/lib/nautilus-cd-burner/mapping-daemon Pxmr, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/gdm/applications/ r, /usr/share/gnome-control-center/** r, /var/cache/gnome-vfs/defaults.list r, }	over 4 years ago		158	CarlosAlbertoRibeiro	Edit	History
opensuse10.3	/usr/bin/gnome-panel	#include <tunables/global> /usr/bin/gnome-panel { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/banshee Px, /usr/bin/bug-buddy ixr, /usr/bin/ekiga Px, /usr/bin/f-spot Px, /usr/bin/gnome-panel mr, /usr/bin/gnome-screensaver-command Px, /usr/bin/gnome-screensaver-preferences Px, /usr/bin/gnome-terminal Px, /usr/bin/gnomesu Px, /usr/bin/pidgin Px, /usr/lib/bonobo/bonobo-activation-server Px, /usr/lib/firefox/firefox.sh Px, /usr/share/applications/.desktop r, /usr/share/f-spot/icons/.png r, /usr/share/gnome-2.0/ui/.xml r, /usr/share/gnome-panelrc r, /var/cache/libx11/compose/* r, /var/run/gdm_socket w, }	over 4 years ago	none	197	cinimod	Edit	History
opensuse10.3	/usr/bin/banshee	#include <tunables/global> /usr/bin/banshee { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.config/banshee/* r, /home//.config/banshee/banshee.db krw, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml mrw, /home//.gstreamer-0.10/registry.i686.xml.tmp rw, /home//.icons/ r, /home//.local/share/icons/ r, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /usr/bin/banshee mr, /usr/bin/mono ixr, /usr/lib/banshee/.dll mr, /usr/lib/banshee/banshee.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/share/banshee/.xml r, /usr/share/banshee/audio-profiles/ r, /usr/share/fonts/* mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	Testing	202	dominic	Edit	History
opensuse10.3	/usr/lib/Acrobat7/Reader/intellinux/bin/acroread	#include <tunables/global> /usr/lib/Acrobat7/Reader/intellinux/bin/acroread { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /home// r, /home//.Xauthority r, /home//.adobe/* krw, /home//.beagle/socket w, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini. rw, /home//.fontconfig/ mr, /home//.fonts/ r, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel r, /home//Desktop/ r, /home//Desktop/*.pdf w, /home//Desktop/.desktop r, /proc/meminfo r, /usr/lib/Acrobat7/Reader/intellinux/bin/acroread mr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Accessibility.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/AcroForm.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Annots.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/DigSig.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/EFS.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/EScript.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/LegalPDF.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/MakeAccessible.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/PDDom.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/PPKLite.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SOAP.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SaveAsRTF.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SearchFind.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SendMail.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Spelling.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/checkers.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/ewh.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/wwwlink.api ixr, /usr/lib/Acrobat7/Resource/* mr, /usr/share/dist/icons/suse-help.svg r, /usr/share/fonts/ r, /usr/share/fonts/ mr, /usr/share/mime/.xml r, /var/cache/libx11/compose/* mr, }	over 4 years ago	none	197	cinimod	Edit	History
opensuse11.0	/usr/bin/scponly	#include <tunables/global> /usr/bin/scponly { #include <abstractions/base> /etc/localtime r, /etc/scponly/debuglevel r, /prostor/ak/** rwl, /usr/bin/getopt px, /usr/bin/scp px, /usr/bin/scponly rpx, }	11 months ago		30	steki	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		116	gdeluca	Edit	History
opensuse11.0	/usr/bin/telnet	#include <tunables/global> /usr/bin/telnet flags=(complain) { #include <abstractions/base> network dgram, network stream, /etc/gai.conf r, /etc/host.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/resolv.conf r, /etc/services r, /usr/bin/telnet r, /var/run/nscd/socket w, }	over 3 years ago		199	gdb	Edit	History
ubuntu-gutsy	/usr/sbin/dovecot	#include <tunables/global> /usr/sbin/dovecot { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability chown, capability dac_override, capability dac_read_search, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, /etc/dovecot/dovecot-sql.conf r, /etc/dovecot/dovecot.conf r, /etc/mtab r, /etc/ssl/certs/* r, /etc/ssl/openssl.cnf r, /etc/ssl/private/* r, /home//.Maildir/ mklrw, /home//.Maildir// w, /home//.maildir/ r, /home//.maildir/** klrw, /proc/sys/kernel/ngroups_max r, /usr/lib/dovecot/dovecot-auth ixr, /usr/lib/dovecot/imap ixr, /usr/lib/dovecot/imap-login ixr, /usr/lib/dovecot/pop3 ixr, /usr/lib/dovecot/pop3-login ixr, /usr/lib/dovecot/ssl-build-param ixr, /usr/sbin/dovecot mr, /var/lib/dovecot/* krw, /var/run/dovecot/ rw, /var/run/dovecot/* rw, /var/run/dovecot/login/ rw, /var/run/dovecot/login/* rw, /var/spool/postfix/private/auth-client w, }	over 2 years ago		168	stive	Edit	History
opensuse10.3	/usr/bin/mod-mono-server	#include <tunables/global> /usr/bin/mod-mono-server { #include <abstractions/base> #include <abstractions/bash> /bin/bash ixr, /dev/tty rw, /etc/mono/1.0/machine.config r, /etc/mono/config r, /proc//maps r, /proc/meminfo r, /proc/stat r, /tmp/.wapi/shared_data-linux-kent-Linux-x86_64-328-11-0 rw, /tmp/.wapi/shared_fileshare-linux-kent-Linux-x86_64-40-11-0 rw, /tmp/mod_mono_server_global w, /tmp/mod_mono_server_global_1651471482 w, /usr/bin/mod-mono-server mr, /usr/bin/mono ixr, /usr/lib/* mr, /var/run/nscd/passwd r, /var/run/nscd/socket w, }	over 4 years ago	egroupware	234	kent	Edit	History
opensuse10.3	/opt/kde3/bin/ktorrent	#include <tunables/global> /opt/kde3/bin/ktorrent { #include <abstractions/base> network all, /home//.DCOPserver_linux__0 r, /home//.ICEauthority r, /opt/kde3/bin/ktorrent mr, /opt/kde3/lib/libso mr, /tmp/.ICE-unix/dcop2923-1200365524 w, }	over 4 years ago		212	Jena	Edit	History
opensuse10.3	/usr/bin/banshee	#include <tunables/global> /usr/bin/banshee { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.config/banshee/* r, /home//.config/banshee/banshee.db krw, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml mrw, /home//.gstreamer-0.10/registry.i686.xml.tmp rw, /home//.icons/ r, /home//.local/share/icons/ r, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /usr/bin/banshee mr, /usr/bin/mono ixr, /usr/lib/banshee/.dll mr, /usr/lib/banshee/banshee.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/.dll mr, /usr/share/banshee/.xml r, /usr/share/banshee/audio-profiles/ r, /usr/share/fonts/* mr, /var/cache/libx11/compose/* mr, }	over 4 years ago	none	168	cinimod	Edit	History
opensuse10.3	/usr/lib/Acrobat7/Reader/intellinux/bin/acroread	#include <tunables/global> /usr/lib/Acrobat7/Reader/intellinux/bin/acroread { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /home// r, /home//.Xauthority r, /home//.adobe/* krw, /home//.beagle/socket w, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini. rw, /home//.fontconfig/ mr, /home//.fonts/ r, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel r, /home//Desktop/ r, /home//Desktop/*.pdf w, /home//Desktop/.desktop r, /proc/meminfo r, /usr/lib/Acrobat7/Reader/intellinux/bin/acroread mr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Accessibility.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/AcroForm.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Annots.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/DigSig.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/EFS.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/EScript.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/LegalPDF.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/MakeAccessible.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/PDDom.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/PPKLite.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SOAP.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SaveAsRTF.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SearchFind.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SendMail.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Spelling.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/checkers.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/ewh.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/wwwlink.api ixr, /usr/lib/Acrobat7/Resource/* mr, /usr/share/dist/icons/suse-help.svg r, /usr/share/fonts/ r, /usr/share/fonts/ mr, /usr/share/mime/.xml r, /var/cache/libx11/compose/* mr, }	over 4 years ago	Import of jmichaels profiles	194	dominic	Edit	History
opensuse10.3	/usr/lib/cups/backend/scsi	#include <tunables/global> /usr/lib/cups/backend/scsi flags=(complain) { #include <abstractions/base> /usr/lib/cups/backend/scsi mr, }	over 4 years ago	cups testing	350	dominic	Edit	History
opensuse10.3	/usr/lib/vmware/lib/wrapper-gtk24.sh	#include <tunables/global> /usr/lib/vmware/lib/wrapper-gtk24.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> /bin/bash ixr, /bin/grep ixr, /dev/ r, /dev/dsp r, /dev/sg1 r, /dev/tty rw, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtkrc r, /etc/vmware/ r, /etc/vmware/config r, /home//.Xauthority r, /home//.config/qtcurvestylerc r, /home//.kde/share/config/kdeglobals r, /home//.qt/qtrc r, /home//.vmware/ rw, /home//.vmware/license.ws.6.0.200610 r, /home//.vmware/preferences r, /proc//cmdline r, /proc/cpuinfo r, /proc/meminfo r, /proc/net/dev r, /proc/sys/dev/parport r, /proc/uptime r, /tmp/ r, /tmp/.X11-unix/X0 w, /tmp/gconfd-admincs1/lock/ior r, /tmp/orbit-admincs1/ w, /tmp/orbit-admincs1/linc-1cf0-0-225dfec52121a w, /tmp/orbit-admincs1/linc-e42-0-7a2c25cc88df2 w, /tmp/vmware-admincs1.0 rw, /tmp/vmware-admincs1/ r, "/tmp/vmware-admincs1/VMware Workstation-:0.0-sp" rw, /tmp/vmware-admincs1/ui-3253.log w, /tmp/vmware-admincs1/ui-3253.log.lck/ rw, /tmp/vmware-admincs1/ui-3253.log.lck/D23516.lck/ w, /tmp/vmware-admincs1/ui-3253.log.lck/E23516.lck rw, /tmp/vmware-admincs1/ui-3253.log.lck/M23516.lck rw, /tmp/vmware-admincs1/ui-3649.log w, /usr/bin/gconftool-2 ixr, /usr/bin/ldd Ux, /usr/lib/vmware/bin/vmware ixr, /usr/lib/vmware/bin/vmware-tray ixr, /usr/lib/vmware/lib/wrapper-gtk24.sh mr, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/icons/gnome/icon-theme.cache mr, /usr/share/icons/gnome/index.theme r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc-kde3 r, /var/run/dbus/system_bus_socket w, }	over 4 years ago	vmware	393	knoble	Edit	History
ubuntu-gutsy	/sbin/dhclient3	#include <tunables/global> /sbin/dhclient3 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability fsetid, capability kill, capability net_admin, capability net_raw, capability setgid, capability setuid, capability sys_chroot, capability sys_module, capability sys_tty_config, network inet dgram, network inet raw, network inet stream, network inet6 dgram, network inet6 stream, network packet packet, / r, /bin/bash ixr, /bin/chmod ixr, /bin/chown ixr, /bin/dash ixr, /bin/echo ixr, /bin/egrep ixr, /bin/grep ixr, /bin/hostname ixr, /bin/ip ixr, /bin/ls ixr, /bin/mv ixr, /bin/ping ixr, /bin/readlink ixr, /bin/rm ixr, /bin/run-parts ixr, /bin/sed ixr, /bin/sleep ixr, /dev/tty rw, /etc/ rw, /etc/avahi/avahi* kixr, /etc/default/samba r, /etc/dhcp3/ rw, /etc/dhcp3/* r, /etc/dhcp3// r, /etc/dhcp3/dhclient-enter-hooks.d/ r, /etc/dhcp3/dhclient-enter-hooks.d/* r, /etc/dhcp3/dhclient-enter-hooks.d/avahi-autoipd ixr, /etc/dhcp3/dhclient-enter-hooks.d/samba ixr, /etc/dhcp3/dhclient-exit-hooks.d/ r, /etc/dhcp3/dhclient-exit-hooks.d/* r, /etc/dhcp3/dhclient-exit-hooks.d/zzz_avahi-autoipd ixr, /etc/dhcp3/dhclient.conf r, /etc/fstab r, /etc/init.d/samba ixr, /etc/iproute2/rt_scopes r, /etc/lsb-base-logging.sh r, /etc/rc.d/ r, /etc/rc.d/** r, /etc/resolv.conf krw, /etc/resolv.conf.dhclient-new krw, /etc/samba/ rw, /etc/samba/dhcp.conf* krw, /lib/dhcp3-client/call-dhclient-script ixr, /lib/lsb/init-functions r, /proc//fd/ r, /proc/meminfo r, /proc/net/ r, /proc/net/dev r, /proc/net/if_inet6 r, /proc/net/unix r, /sbin/dhclient-script ixr, /sbin/dhclient3 mr, /sbin/ifconfig ixr, /sbin/route ixr, /sbin/runlevel ixr, /sbin/start-stop-daemon ixr, /sbin/usplash_write ixr, /usr/bin/dbus-send ixr, /usr/bin/env ixr, /usr/bin/tput ixr, /usr/bin/xargs ixr, /usr/sbin/avahi-autoipd ixr, /usr/sbin/invoke-rc.d ixr, /var/lib/avahi-autoipd/ krw, /var/lib/avahi-autoipd/ krw, /var/lib/dhcp3/* rw, /var/run/ rw, /var/run/* krw, /var/run/dbus/* rw, }	over 4 years ago	more learning	302	widefox	Edit	History
opensuse11.0	/usr/sbin/apache2ctl	#include <tunables/global> /usr/sbin/apache2ctl { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		69	shaado	Edit	History
opensuse10.3	/home/max/hej	#include <tunables/global> /home/max/hej flags=(complain) { #include <abstractions/base> /home/max/hej mr, }	over 3 years ago		134	max	Edit	History
opensuse11.0	/usr/lib64/cups/daemon/cups-deviced	#include <tunables/global> /usr/lib64/cups/daemon/cups-deviced flags=(complain) { #include <abstractions/base> }	over 3 years ago	CUPS-Grundkonfiguration	142	estellnb	Edit	History
ubuntu-gutsy	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld flags=(complain) { #include <abstractions/base> /usr/sbin/mysqld mr, }	over 4 years ago		268	igoriii	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	nowy	136	maku	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^null-14 { /dev/urandom r, /etc/fonts/** r, /etc/gai.conf r, /etc/kde4/share/config/kioslaverc r, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/ld.so.cache r, /etc/localtime r, /etc/passwd r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf rk, owner /home//.esd_auth r, owner /home//.fontconfig/610f8f1b496ec00a8bbfc0b04d8fc09e-x86-64.cache-2 r, owner /home//.fonts.conf r, owner /home//.kde4/share/config/kdeglobals rk, owner /home//.kde4/share/config/kioslaverc r, owner /home//.kde4/share/config/kmozillahelperrc r, owner /home//.kde4/share/config/oxygenrc r, owner /home//.macromedia/ r, owner /home//.macromedia/Flash_Player/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/CJDM9BZG/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/CJDM9BZG/s.ytimg.com/ r, owner /home//.macromedia/Flash_Player/macromedia.com/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/#s.ytimg.com/ r, owner /home//.mozilla/firefox/* rwk, /lib64/libfreebl.so mr, /proc/meminfo r, /proc/stat r, /tmp/ r, /usr/lib64/* mr, /usr/share/X11/ r, /usr/share/fonts/ r, /usr/share/icons/ r, /usr/share/locale/ r, /var/cache/fontconfig/* r, /var/tmp/ r, owner /var/tmp/kdecache-zylo/** rw, } ^null-25 { owner /home//.mozilla/firefox/* rwk, /proc/stat r, } ^null-5fd flags=(complain) { owner /dev/snd/timer r, owner /etc/hosts r, owner /etc/ld.so.cache r, owner /etc/resolv.conf r, owner /proc/cpuinfo r, owner /proc/stat r, owner /root/.Xauthority r, owner /root/.adobe/Flash_Player/AssetCache/ r, owner /root/.macromedia/Flash_Player/#SharedObjects/ r, owner /root/.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol r, owner /root/.mozilla/firefox/** rwk, owner /tmp/plugtmp/ r, owner /tmp/plugtmp/* w, owner /usr/lib64/xulrunner-1.9.1.6/chrome/classic.jar r, owner /usr/share/** r, } }	over 2 years ago	change 2 2010-01-12-1825R	107	zylo	Edit	History
opensuse11.0	/usr/share/amsn/amsn	#include <tunables/global> /usr/share/amsn/amsn { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		255	josemanuel	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> ^DEFAULT_URI flags=(complain) { } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { } }	about 1 year ago	add community profile	44	charlyg	Edit	History
opensuse11.0	/usr/sbin/nagios	#include <tunables/global> /usr/sbin/nagios flags=(complain) { #include <abstractions/base> }	over 2 years ago	user23	99	user-nagios	Edit	History
opensuse11.0	/usr/sbin/xinetd	#include <tunables/global> /usr/sbin/xinetd { #include <abstractions/base> }	over 2 years ago	quit	96	bill	Edit	History
opensuse11.0	/usr/bin/kopete	#include <tunables/global> /usr/bin/kopete flags=(complain) { #include <abstractions/base> }	over 3 years ago	kopete	187	estellnb	Edit	History
opensuse10.3	/usr/bin/totem-video-indexer	#include <tunables/global> /usr/bin/totem-video-indexer flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home/*/.gstreamer-0.10/registry.i686.xml mr, /usr/bin/totem-video-indexer mr, /var/cache/beagle/.gstreamer-0.10/registry.i686.xml mr, }	over 4 years ago	couple minor changes	268	jmichael	Edit	History
opensuse10.3	/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon	#include <tunables/global> /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/ r, /etc/fstab r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /proc/*/mounts r, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon mr, }	over 4 years ago	none	213	cinimod	Edit	History
opensuse10.3	/etc/init.d/ntp	#include <tunables/global> /etc/init.d/ntp { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/wutmp> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_ptrace, capability sys_time, capability sys_tty_config, /bin/bash ixr, /bin/cp ixr, /bin/rm ixr, /bin/stty ixr, /dev/blog w, /etc/gai.conf r, /etc/init.d/ntp ixr, /etc/ntp.conf r, /etc/rc.status r, /etc/sysconfig/ntp r, /proc/ r, /proc//stat r, /proc//statm r, /proc/meminfo r, /proc/net/if_inet6 r, /sbin/checkproc ixr, /sbin/killproc ixr, /sbin/startproc ixr, /usr/sbin/ntpd Pxmr, /usr/sbin/ntpdate Px, /var/lib/ntp/drift/ntp.drift r, /var/lib/ntp/etc/localtime w, /var/lib/ntp/var/run/ntp/ntpd.pid rw, /var/log/ntp a, /var/run/nscd/services r, }	over 4 years ago	Import of jmichaels profiles	243	dominic	Edit	History
opensuse11.0	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh { #include <abstractions/base> }	over 3 years ago	test	112	ole	Edit	History
opensuse11.0	/usr/lib/postfix/pickup	# $Id: usr.lib.postfix.pickup 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/pickup { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> network inet stream, network inet6 dgram, network inet6 stream, owner /etc/gai.conf r, owner /proc/sys/kernel/ngroups_max r, /usr/lib/postfix/pickup mrix, /{var/spool/postfix/,}maildrop/ r, /{var/spool/postfix/,}maildrop/* rwl, /{var/spool/postfix/,}public/cleanup w, /{var/spool/postfix/,}public/pickup r, }	over 3 years ago		239	delder	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> /usr/bin/amule mr, }	over 4 years ago		185	Jena	Edit	History
opensuse10.3	/usr/sbin/iwconfig	#include <tunables/global> /usr/sbin/iwconfig flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, /proc/net/dev r, /usr/sbin/iwconfig mr, }	over 4 years ago	argh, switch things back to complain for a while	285	jmichael	Edit	History
ubuntu-gutsy	/home/aevaughn/bin/namd/namd2	#include <tunables/global> /home/aevaughn/bin/namd/namd2 flags=(complain) { #include <abstractions/base> /home/aevaughn/bin/namd/namd2 mr, }	over 4 years ago	aevaughn	269	aevaughn	Edit	History
opensuse11.0	/usr/bin/x11vnc	#include <tunables/global> /usr/bin/x11vnc flags=(complain) { #include <abstractions/base> }	about 1 year ago		82	bdashrad	Edit	History
opensuse11.0	/lib64/ld-2.9.so	#include <tunables/global> /lib64/ld-2.9.so flags=(complain) { #include <abstractions/base> }	over 2 years ago		184	olaf	Edit	History
opensuse11.0	/usr/bin/opera	#include <tunables/global> /usr/bin/opera { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		143	Voice09	Edit	History
ubuntu-gutsy	/usr/bin/pyzor	#include <tunables/global> /usr/bin/pyzor { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> #include <abstractions/user-tmp> /root/.pyzor/servers r, /usr/bin/python2.5 ixr, /usr/bin/pyzor mr, }	over 2 years ago		115	stive	Edit	History
opensuse10.3	/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon	#include <tunables/global> /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/ r, /etc/fstab r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /proc/*/mounts r, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon mr, }	over 4 years ago	Import of jmichaels profiles	237	dominic	Edit	History
opensuse10.3	/etc/init.d/ntp	#include <tunables/global> /etc/init.d/ntp { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/wutmp> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_ptrace, capability sys_time, capability sys_tty_config, /bin/bash ixr, /bin/cp ixr, /bin/rm ixr, /bin/stty ixr, /dev/blog w, /etc/gai.conf r, /etc/init.d/ntp ixr, /etc/ntp.conf r, /etc/rc.status r, /etc/sysconfig/ntp r, /proc/ r, /proc//stat r, /proc//statm r, /proc/meminfo r, /proc/net/if_inet6 r, /sbin/checkproc ixr, /sbin/killproc ixr, /sbin/startproc ixr, /usr/sbin/ntpd Pxmr, /usr/sbin/ntpdate Px, /var/lib/ntp/drift/ntp.drift r, /var/lib/ntp/etc/localtime w, /var/lib/ntp/var/run/ntp/ntpd.pid rw, /var/log/ntp a, /var/run/nscd/services r, }	over 4 years ago	none	225	cinimod	Edit	History
opensuse10.3	/usr/Powerware/LanSafe/Bin/PowerMonitor	#include <tunables/global> /usr/Powerware/LanSafe/Bin/PowerMonitor { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability dac_override, capability dac_read_search, /usr/Powerware/LanSafe/Bin/PowerMonitor mr, /usr/Powerware/LanSafe/Config/* rw, }	over 4 years ago		319	arclyde	Edit	History
opensuse10.3	/sbin/checkproc	#include <tunables/global> /sbin/checkproc { #include <abstractions/base> capability dac_override, capability sys_ptrace, /dev/blog w, /home//.gnupg/agent.pid r, /opt/kde3/bin/kdm r, /proc/ r, /proc//stat r, /proc//statm r, /sbin/checkproc mr, /sbin/udevd r, /usr/bin/gpg-agent r, /usr/sbin/ r, /var/run/.pid r, /var/spool/*.pid r, }	over 4 years ago	changes-3	235	security	Edit	History
opensuse10.3	/opt/kde3/bin/gwenview	#include <tunables/global> /opt/kde3/bin/gwenview flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/exports r, /etc/rpc r, /home// r, /home//.DCOPserver_* r, /home//.ICEauthority r, /home//.Xauthority r, /home//.fontconfig/ r, /home//.kde/share/config/ w, /home//.kde/share/config/gwenviewrc* rw, /home//.kde/share/config/gwenviewrc.lock lw, /home//.kde/share/config/kdeglobals* rw, /home//.kde/share/config/kdeglobals.lock lw, /home//.kde/share/config/kioslaverc r, /home//.kde/share/config/knfsshare rw, /home//.qt/.qt_plugins_3.3rc.lock krw, /home//.qt/qt_plugins_3.3rc r, /home//Desktop/ r, /home//Desktop/* r, /opt/kde3/bin/gwenview mr, /opt/kde3/share/apps/gwenview/ r, /opt/kde3/share/config/ui/ui_standards.rc r, /opt/kde3/share/locale-bundle/.mo r, /opt/kde3/share/mimelnk/magic r, /proc/meminfo r, /usr/share/desktop-data/qtrc r, /var/cache/libx11/compose/* r, }	over 4 years ago	argh, switch things back to complain for a while	220	jmichael	Edit	History
opensuse10.3	/usr/bin/beagled	#include <tunables/global> /usr/bin/beagled { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /bin/ps Px, /bin/sleep Px, /etc/fstab r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /home/** rw, /home//.beagle/Indexes/.db krw, /home//.beagle/TextCache/TextCache.db krw, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc//status r, /proc/acpi/ac_adapter/AC/state r, /proc/loadavg r, /proc/meminfo r, /proc/stat r, /proc/sys/fs/inotify/max_queued_events r, /proc/sys/fs/inotify/max_user_instances r, /proc/sys/fs/inotify/max_user_watches r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/beagled mr, /usr/bin/mono ixr, /usr/bin/totem-video-indexer Px, /usr/lib/beagle/.dll mr, /usr/lib/beagle/Backends/.dll mr, /usr/lib/beagle/BeagleDaemon.exe mr, /usr/lib/beagle/Filters/.dll mr, /usr/lib/beagle/beagled-index-helper Px, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/**.dll mr, /var/cache/beagle/indexes/ r, /var/cache/beagle/indexes/applications/Locks/ r, /var/cache/beagle/indexes/applications/fingerprint r, /var/cache/beagle/indexes/applications/version r, /var/cache/beagle/indexes/documentation/Locks/ r, /var/cache/beagle/indexes/documentation/fingerprint r, /var/cache/beagle/indexes/documentation/version r, /var/tmp/ rw, }	over 4 years ago	none	211	cinimod	Edit	History
opensuse11.0	/usr/sbin/popper	# $Id: usr.sbin.popper 683 2007-05-16 19:51:46Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/popper { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-mail> capability setgid, capability setuid, /log/qpopper.log rw, /usr/sbin/popper mr, /var/spool/mail/* rw, }	over 2 years ago		193	axanka	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/basename rix, /bin/bash rix, /bin/grep rix, /usr/bin/file rix, /usr/lib/firefox/firefox px, }	over 4 years ago	test	152	test11	Edit	History
ubuntu-gutsy	/usr/bin/djview4	#include <tunables/global> /usr/bin/djview4 { #include <abstractions/base> /usr/bin/djview4 mr, }	over 4 years ago	gnome	217	hbpteam	Edit	History
opensuse10.3	/sbin/klogd	# $Id: sbin.klogd 888 2007-08-07 13:26:21Z DominicReynolds_ $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/klogd { #include <abstractions/base> capability sys_admin, /boot/System.map* r, /sbin/klogd rmix, /var/log/boot.msg rwl, /var/run/klogd.pid krwl, /var/run/klogd/klogd.pid krwl, /var/run/klogd/kmsg r, @{PROC}/kmsg r, }	over 4 years ago	none	159	cinimod	Edit	History
opensuse10.3	/usr/lib/cups/backend/novell	#include <tunables/global> /usr/lib/cups/backend/novell flags=(complain) { #include <abstractions/base> #include <abstractions/perl> /usr/bin/perl ix, /usr/lib/cups/backend/novell mr, }	over 4 years ago	cups testing	251	dominic	Edit	History
opensuse10.3	/etc/gdm/PostSession/Default	#include <tunables/global> /etc/gdm/PostSession/Default { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> capability setgid, capability setuid, /bin/bash ixr, /etc/gdm/PostSession/Default mr, /proc/meminfo r, }	over 4 years ago	none	239	cinimod	Edit	History
opensuse10.3	/usr/lib/evolution-data-server/evolution-data-server-1.12	#include <tunables/global> /usr/lib/evolution-data-server/evolution-data-server-1.12 flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home//.evolution/.db rw, /home//.evolution/*.ics rw, /home//.evolution/*.ics~ rw, /home//.evolution/addressbook/local/system/addressbook.db.summary r, /home//.gnome2_private/ w, /proc/stat r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/lib/evolution-data-server/evolution-data-server-1.12 mr, }	over 4 years ago	argh, switch things back to complain for a while	197	jmichael	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> deny owner /home/vampird/.mozilla/ r, deny owner /home/vampird/.mozilla/eclipse/ r, deny owner /home/vampird/.mozilla/extensions/ r, deny owner /home/vampird/.mozilla/extensions/\{3550f703-e582-4d05-9a08-453d09bdfdc6\}/ r, deny owner /home/vampird/.mozilla/extensions/\{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a\}/ r, deny owner /home/vampird/.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, deny owner /home/vampird/.mozilla/firefox/ r, deny owner "/home/vampird/.mozilla/firefox/Crash Reports/" r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/CT2496572/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/CT2496572/MyStuffComponents/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/CT2496572/chat/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/CT2496572/emailnotifier/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/CT2496572/feed/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/CT2496572/weather/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/bookmarkbackups/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/chrome/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/conduit/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/conduit/facebook/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{56ad905d-0e2d-469f-a492-c751ed7192fc\}/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{56ad905d-0e2d-469f-a492-c751ed7192fc\}/chrome/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{56ad905d-0e2d-469f-a492-c751ed7192fc\}/components/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{56ad905d-0e2d-469f-a492-c751ed7192fc\}/defaults/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{56ad905d-0e2d-469f-a492-c751ed7192fc\}/lib/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{56ad905d-0e2d-469f-a492-c751ed7192fc\}/searchplugin/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{bee6eb20-01e0-ebd1-da83-080329fb9a3a\}/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/extensions/\{bee6eb20-01e0-ebd1-da83-080329fb9a3a\}/chrome/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/icons/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/icons/default/ r, deny owner /home/vampird/.mozilla/firefox/ju1f3cc9.default/minidumps/ r, deny owner /home/vampird/.mozilla/plugins/ r, deny owner /home/vampird/.mozilla/seamonkey/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/News/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/News/forums.kde.org/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/News/forums.opensuse.org/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/News/news.fing.edu.uy/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/News/news.mozilla.org/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/News/qt-espanol.foroactivo.net/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/anticontainer_plugins/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/bookmarkbackups/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/cert8.dir/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/chatzilla/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/chatzilla/ceip/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/chatzilla/downloads/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/chatzilla/logs/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/chatzilla/scripts/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/chrome/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/chrome/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/defaults/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/defaults/pref/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/defaults/preferences/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/modules/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Darwin_x86-gcc3/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Darwin_x86-gcc3/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Darwin_x86_64-gcc3/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Darwin_x86_64-gcc3/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Linux_x86-gcc3/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Linux_x86-gcc3/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Linux_x86_64-gcc3/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/Linux_x86_64-gcc3/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/WINNT_x86-msvc/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/platform/WINNT_x86-msvc/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{847b3a00-7ab1-11d4-8f02-006008948af5\}/wrappers/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{F8147CF4-B9E3-445B-AA87-081ED66548F8\}/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{F8147CF4-B9E3-445B-AA87-081ED66548F8\}/chrome/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{F8147CF4-B9E3-445B-AA87-081ED66548F8\}/defaults/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/\{F8147CF4-B9E3-445B-AA87-081ED66548F8\}/defaults/preferences/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/content/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/content/images/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/content/pattern-subscriptions/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/icons/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/icons/default/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/ar/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/cs/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/da/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/de/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/el/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/en-US/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/es-AR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/es-ES/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/fa-IR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/fi-FI/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/fr/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/gl-ES/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/hr-HR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/hu-HU/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/it-IT/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/ja-JP/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/lv-LV/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/nl/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/pl/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/pt-BR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/pt-PT/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/ro/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/ru-RU/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/sk/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/sr/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/sv-SE/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/th/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/tr-TR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/uk-UA/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/vi/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/zh-CN/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/locale/zh-TW/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/chrome/skin/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/defaults/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/defaults/preferences/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy-basic@eric.h.jung/modules/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/content/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/content/images/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/content/pattern-subscriptions/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/icons/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/icons/default/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/ar/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/cs/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/da/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/de/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/el/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/en-US/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/es-AR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/es-ES/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/fa-IR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/fi-FI/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/fr/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/gl-ES/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/hr-HR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/hu-HU/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/it-IT/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/ja-JP/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/lv-LV/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/nl/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/pl/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/pt-BR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/pt-PT/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/ro/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/ru-RU/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/sk/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/sr/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/sv-SE/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/th/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/tr-TR/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/uk-UA/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/vi/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/zh-CN/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/locale/zh-TW/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/chrome/skin/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/defaults/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/defaults/preferences/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/foxyproxy@eric.h.jung/modules/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/tito@idm/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/tito@idm/chrome/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/tito@idm/components/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/tito@idm/defaults/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/extensions/tito@idm/defaults/preferences/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/icons/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/icons/default/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/prefs.js r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/weave/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/weave/toFetch/ r, deny owner /home/vampird/.mozilla/seamonkey/jyizu7k1.default/whereIsTheEmail/ r, deny owner /home/vampird/.mozilla/sunbird/ r, deny owner /home/vampird/.mozilla/sunbird/c4ln4r5x.default/ r, deny owner /home/vampird/.mozilla/sunbird/c4ln4r5x.default/extensions/ r, deny owner /home/vampird/.mozilla/vmp/ r, /dev/ r, /dev/snd/controlC0 rw, /dev/snd/pcmC0D0c mrw, /dev/snd/pcmC0D0p mrw, /dev/snd/timer r, /dev/video0 mrw, /etc/fonts/** r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Skype/ r, owner /home//.Skype/arcana.dk/config.lck wk, owner /home//.Skype/arcana.dk/config.tmp rwk, owner /home//.Skype/arcana.dk/config.xml rwk, owner /home//.Skype/arcana.dk/contactgroup256.dbb rwk, owner /home//.Skype/arcana.dk/dc.db rwk, owner /home//.Skype/arcana.dk/dc.db-journal rwk, owner /home//.Skype/arcana.dk/dc.lock rwk, owner /home//.Skype/arcana.dk/httpfe/cookies.dat rwk, owner /home//.Skype/arcana.dk/index2.dat rwk, owner /home//.Skype/arcana.dk/keyval.db rwk, owner /home//.Skype/arcana.dk/keyval.lock rwk, owner /home//.Skype/arcana.dk/main.lock rwk, owner /home//.Skype/arcana.dk/profile256.dbb rwk, owner /home//.Skype/arcana.dk/voicemail256.dbb rwk, owner /home//.Skype/shared.lck wk, owner /home//.Skype/shared.tmp rwk, owner /home//.Skype/shared.xml rwk, owner /home//.Skype/shared_dynco/dc.db rwk, owner /home//.Skype/shared_dynco/dc.db-journal rwk, owner /home//.Skype/shared_dynco/dc.lock rwk, owner /home//.Skype/shared_httpfe/queue.db rwk, owner /home//.Skype/shared_httpfe/queue.lock rwk, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf rk, owner /home//.fontconfig/275ff1f11a33ebac96b987d115108064-le32d4.cache-3 r, owner /home//.fontconfig/35c41da908bf1e837c2c0a1a17a81878-le32d4.cache-3 mr, owner /home//.fonts.conf r, owner /home//.kde/share/config/kioslaverc r, owner /home//.kde4/share/config/kdeglobals rk, /proc//net/arp r, /proc//net/route r, owner /proc//task/ r, owner /proc//task/8428/stat r, owner /proc//task/8429/stat r, owner /proc//task/8430/stat r, owner /proc//task/8431/stat r, owner /proc//task/8432/stat r, owner /proc//task/8433/stat r, owner /proc//task/8434/stat r, owner /proc//task/8435/stat r, owner /proc//task/8438/stat r, owner /proc//task/8439/stat r, owner /proc//task/8440/stat r, owner /proc//task/8441/stat r, owner /proc//task/8443/stat r, owner /proc//task/8444/stat r, owner /proc//task/8481/stat r, owner /proc//task/8482/stat r, owner /proc//task/8483/stat r, owner /proc//task/8484/stat r, owner /proc//task/8485/stat r, owner /proc//task/8486/stat r, owner /proc//task/8493/stat r, owner /proc//task/8494/stat r, /proc/sys/kernel/osrelease r, /proc/sys/kernel/ostype r, /sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A08:00/device:02/ACPI0003:00/power_supply/AC/online r, /sys/devices/system/cpu/ r, /sys/devices/system/cpu/cpu0/cpufreq/scaling_cur_freq r, /sys/devices/system/cpu/cpu0/cpufreq/scaling_max_freq r, /usr/share/X11/XKeysymDB r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/HDA-Intel.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/hdmi.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/modem.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/alsa/pcm/surround71.conf r, /usr/share/fonts/ mr, /usr/share/ghostscript/fonts/ mr, /usr/share/icons/Oxygen_Black/cursors/9d800788f1b08800ae810202380a0822 r, /usr/share/icons/Oxygen_Black/cursors/left_ptr r, /usr/share/skype/lang/skype_en.qm mr, /usr/share/skype/sounds/SkypeLogin.wav rk, /usr/share/texmf/fonts/** mr, /var/cache/fontconfig/02f7482a3ccf4e0fecbeda21d9950555-le32d4.cache-3 mr, /var/cache/fontconfig/0918c6fc686fdd9602d24ef8106b8885-le32d4.cache-3 mr, /var/cache/fontconfig/0adb47949072cc2c42ab6315eac108fb-le32d4.cache-3 mr, /var/cache/fontconfig/0cde06d47243eb5cbd0636677c8e6e7a-le32d4.cache-3 mr, /var/cache/fontconfig/0e34e50254571c97131392a388940b84-le32d4.cache-3 mr, /var/cache/fontconfig/10d1ae44cd2ed33cc6bfb5cfd20ea1ef-le32d4.cache-3 mr, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-le32d4.cache-3 mr, /var/cache/fontconfig/1710608526cf91d28a17160720a89129-le32d4.cache-3 mr, /var/cache/fontconfig/18651cef118db95c6d3f49dec1953e88-le32d4.cache-3 mr, /var/cache/fontconfig/1962d432aff2b364ee233561694770fe-le32d4.cache-3 r, /var/cache/fontconfig/1fc6330e4563720df036f62042dd071c-le32d4.cache-3 mr, /var/cache/fontconfig/233192682edf6a93712eeeaf5dbebc82-le32d4.cache-3 mr, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-le32d4.cache-3 r, /var/cache/fontconfig/2dc34d67fd4c22488dd96f1c3a120652-le32d4.cache-3 r, /var/cache/fontconfig/2deb4bbeb20966677f0d3626a5d48249-le32d4.cache-3 mr, /var/cache/fontconfig/2df0e5d5df539d28a5943e1b2bd34b32-le32d4.cache-3 r, /var/cache/fontconfig/2e2bc19a22005bd6cbd08f197098d064-le32d4.cache-3 mr, /var/cache/fontconfig/2fa0f8583a77f5cfb817d397cc051e59-le32d4.cache-3 mr, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-le32d4.cache-3 r, /var/cache/fontconfig/318987366667abd4dfe684cc4c41b332-le32d4.cache-3 mr, /var/cache/fontconfig/3301406d6a3d932e51a72d7796713daa-le32d4.cache-3 mr, /var/cache/fontconfig/3361ce7ef91d8649e12e735c3b9f8490-le32d4.cache-3 r, /var/cache/fontconfig/340538751003b31e823addb385a78158-le32d4.cache-3 mr, /var/cache/fontconfig/36779a984f5b6ecbb513119daf1aaeaf-le32d4.cache-3 mr, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-le32d4.cache-3 r, /var/cache/fontconfig/3ce0b00e8c60e8af49b52781d45b8d88-le32d4.cache-3 mr, /var/cache/fontconfig/3d950db533f4d42626c39c5c01a7f913-le32d4.cache-3 mr, /var/cache/fontconfig/3e8e2cd8ec9054e4761f23e74bc6d8cd-le32d4.cache-3 mr, /var/cache/fontconfig/3f4d0ff9ef53edd6659d46e03e7f1477-le32d4.cache-3 r, /var/cache/fontconfig/3f52a8f3cb1e8b440552e8354c8f1c90-le32d4.cache-3 r, /var/cache/fontconfig/40a5413a52f0aade942a6f40d332b0da-le32d4.cache-3 r, /var/cache/fontconfig/467c019e582ee353435ea5c21d137ef6-le32d4.cache-3 mr, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-le32d4.cache-3 r, /var/cache/fontconfig/4ccfd7dfa79e28de5707e7cb95de1341-le32d4.cache-3 r, /var/cache/fontconfig/57aa823e41f9a2e31e2cb9ac31635b94-le32d4.cache-3 r, /var/cache/fontconfig/5a8b990ea588db7ae6c172031a595349-le32d4.cache-3 mr, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-le32d4.cache-3 r, /var/cache/fontconfig/5cc0185e3e9b9df8c6b30e86a96f0d44-le32d4.cache-3 r, /var/cache/fontconfig/61569e1a4fe6d0597e15508f2d60d0d9-le32d4.cache-3 mr, /var/cache/fontconfig/63ef1f1e9c5a1e73cabd9c74547ae042-le32d4.cache-3 r, /var/cache/fontconfig/6651e4e8b4447f7addd566da328ef16e-le32d4.cache-3 mr, /var/cache/fontconfig/697f5857bce675cfe8b38fb79091bea4-le32d4.cache-3 mr, /var/cache/fontconfig/6a449517cee721a7de995a693ee59e16-le32d4.cache-3 r, /var/cache/fontconfig/6dcccbed3b5bff72380959e0ccbc0832-le32d4.cache-3 r, /var/cache/fontconfig/6ea59cce4e802f2782d7d6c783506ef8-le32d4.cache-3 mr, /var/cache/fontconfig/701b6d58d5b641081893f9bf7836b39c-le32d4.cache-3 mr, /var/cache/fontconfig/715ee54e5416bae2b5abd2fd857c7155-le32d4.cache-3 mr, /var/cache/fontconfig/734f448d4d560a279c3282c93018a3b3-le32d4.cache-3 mr, /var/cache/fontconfig/77892aee8d1542a17bdf9baacc88a307-le32d4.cache-3 mr, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-le32d4.cache-3 mr, /var/cache/fontconfig/78b285a4b06c5d0ad55de5d89175155b-le32d4.cache-3 r, /var/cache/fontconfig/78eefc686c63353186dd416767715326-le32d4.cache-3 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-le32d4.cache-3 mr, /var/cache/fontconfig/80357cac1144ec24c91b71cbe7fb06eb-le32d4.cache-3 mr, /var/cache/fontconfig/817819233e544dbb8f9be09bb49b51cc-le32d4.cache-3 r, /var/cache/fontconfig/865f88548240fee46819705c6468c165-le32d4.cache-3 mr, /var/cache/fontconfig/86ae909ac0c3805fd08cd9bc67f89368-le32d4.cache-3 mr, /var/cache/fontconfig/87d2957455ec0507634fe525706a802c-le32d4.cache-3 mr, /var/cache/fontconfig/8cb4ed1bb8bf5538f99e4a6641fad075-le32d4.cache-3 mr, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-le32d4.cache-3 mr, /var/cache/fontconfig/8dc91baf3fc4bf3095df0fd67475f898-le32d4.cache-3 mr, /var/cache/fontconfig/8dca95aa8058d3607fdd339c21a293e6-le32d4.cache-3 mr, /var/cache/fontconfig/8f02d4cb045bd6ce15663e43f347c9f8-le32d4.cache-3 mr, /var/cache/fontconfig/8fdd5c748525fb6f6a19519c461ac135-le32d4.cache-3 r, /var/cache/fontconfig/9046c764dc2991228e881adf8c1b7f46-le32d4.cache-3 mr, /var/cache/fontconfig/9ab3f04f1a27471c47832fc828308a51-le32d4.cache-3 r, /var/cache/fontconfig/9c8454330df40fdef954cabee531a9fc-le32d4.cache-3 mr, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-le32d4.cache-3 r, /var/cache/fontconfig/a2c20e9d4d61ebb956139bcd9bd1e405-le32d4.cache-3 r, /var/cache/fontconfig/a3a13dea37cd84c4476b7b936a063f8a-le32d4.cache-3 mr, /var/cache/fontconfig/a60be1520482f0e5c3ba820c34aa9a06-le32d4.cache-3 r, /var/cache/fontconfig/a867bf60a662f3b45804af2c29959b67-le32d4.cache-3 r, /var/cache/fontconfig/ac4e7e7646cd67fae7302b18b0927e4f-le32d4.cache-3 mr, /var/cache/fontconfig/acc9eba8e488c21f2697e015023483e5-le32d4.cache-3 r, /var/cache/fontconfig/af1697ee94d40163fca997748e9d2267-le32d4.cache-3 r, /var/cache/fontconfig/b1985477ab3dc17828852c97d495ea48-le32d4.cache-3 mr, /var/cache/fontconfig/b72d1675522676ebd153cd7432277c2c-le32d4.cache-3 mr, /var/cache/fontconfig/b83386915dae36184c7e3985fd26e4b1-le32d4.cache-3 mr, /var/cache/fontconfig/bc27d9e13c5e05cd87d0421b75d76fde-le32d4.cache-3 r, /var/cache/fontconfig/bd4304a5c64c5c3d27a52c5b1ee50f1f-le32d4.cache-3 mr, /var/cache/fontconfig/bdc0d5aee443ae16477eeb93d5d52a0e-le32d4.cache-3 mr, /var/cache/fontconfig/be1963acb468c9fe8a7ea99a7067f6db-le32d4.cache-3 mr, /var/cache/fontconfig/c127d8335cef640278ca26da400a37c7-le32d4.cache-3 mr, /var/cache/fontconfig/c3db173f8c3d1c2e736baa4071ec8c07-le32d4.cache-3 mr, /var/cache/fontconfig/c3f0d743f2eeed7ccc18e0bb099b839f-le32d4.cache-3 mr, /var/cache/fontconfig/c5448fed37d521c1180ed44504e5029b-le32d4.cache-3 mr, /var/cache/fontconfig/c73d625070ad65f1fa91c03875dc0f32-le32d4.cache-3 r, /var/cache/fontconfig/c76430eaa90b987260065d8bea2a1576-le32d4.cache-3 mr, /var/cache/fontconfig/c794414d6cecd53e40e56f88844d6cbb-le32d4.cache-3 mr, /var/cache/fontconfig/cc925ee3b74b59ac324fb724a094123d-le32d4.cache-3 mr, /var/cache/fontconfig/cea4084f336e07c12e401012b17e7e2d-le32d4.cache-3 mr, /var/cache/fontconfig/d2ad38d567438ce2ccd7cd45c35e69a8-le32d4.cache-3 r, /var/cache/fontconfig/d4478ec686f31c04cd54f9e06add9282-le32d4.cache-3 mr, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-le32d4.cache-3 mr, /var/cache/fontconfig/d67d994e4dcee275fa25c790dae57008-le32d4.cache-3 mr, /var/cache/fontconfig/d84d904e7951827c6697f8990ac91921-le32d4.cache-3 mr, /var/cache/fontconfig/d996baef2b9476e42a0a41d5004c7f17-le32d4.cache-3 mr, /var/cache/fontconfig/d9e56474551c1b59df31ff59e2f7fddc-le32d4.cache-3 mr, /var/cache/fontconfig/dd7ebf4a1ab889b4cce80491088780fd-le32d4.cache-3 mr, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-le32d4.cache-3 mr, /var/cache/fontconfig/e3f8215dd4ecc34134dc33327df3130d-le32d4.cache-3 mr, /var/cache/fontconfig/e66a0d025e5b2f456006d05fa69d9104-le32d4.cache-3 mr, /var/cache/fontconfig/e8db11159b32cbd8dbba3d0735d45619-le32d4.cache-3 r, /var/cache/fontconfig/edaa982a4f61075aba3f9385192ac696-le32d4.cache-3 mr, /var/cache/fontconfig/f42925d38d87ab4e72afedf255bd31ff-le32d4.cache-3 mr, /var/cache/fontconfig/f5a6f048318f484808553bafc49a9bfd-le32d4.cache-3 mr, /var/cache/fontconfig/fd4d6a4eeeec6198d3470155a1d7f308-le32d4.cache-3 mr, /var/cache/fontconfig/feeadfd47ae01801e7b8e6527d3a9e9c-le32d4.cache-3 mr, /var/cache/fontconfig/ffcadc0256af908edf6baa714349e4d8-le32d4.cache-3 mr, }	9 months ago		61	VampirD	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> deny owner /home/apasquier/gribouiller r, deny owner /home/apasquier/orange r, deny owner /home/apasquier/poire r, deny owner /home/apasquier/pomme r, deny owner /home/apasquier/sles11_VM r, /bin/basename rix, /bin/bash rix, /bin/grep rix, /dev/tty rw, /etc/ r, /etc/gre.d/ r, /etc/gre.d/1.9.0.6-64bit.system.conf r, /etc/magic r, /etc/mime.types r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, owner /home//.mozilla/firefox/7t3jeiws.default/Cache/ rw, owner /home//.recently-used.xbel r, owner /home/apasquier/ r, owner /home/apasquier/.ICEauthority r, owner /home/apasquier/.config/gtk-2.0/gtkfilechooser.ini rw, owner /home/apasquier/.config/gtk-2.0/gtkfilechooser.ini.9I845U rw, owner /home/apasquier/.config/gtk-2.0/gtkfilechooser.ini.VTU05U rw, owner /home/apasquier/.config/gtk-2.0/gtkfilechooser.ini.ZKA25U rw, owner /home/apasquier/.dmrc r, owner /home/apasquier/.emacs r, owner /home/apasquier/.esd_auth r, owner /home/apasquier/.fontconfig/02dee1fd37f8af90653bd8abfa185530-x86-64.cache-2 r, owner /home/apasquier/.icons/ r, owner /home/apasquier/.inputrc r, owner /home/apasquier/.mozilla/extensions// r, owner /home/apasquier/.mozilla/firefox/7t3jeiws.default/ r, owner /home/apasquier/.mozilla/firefox/7t3jeiws.default/* rwk, owner /home/apasquier/.mozilla/firefox/7t3jeiws.default// r, owner /home/apasquier/.mozilla/firefox/profiles.ini r, owner /home/apasquier/.muttrc r, owner /home/apasquier/.pulse-cookie r, owner /home/apasquier/.recently-used r, owner /home/apasquier/.viminfo r, owner /home/apasquier/.vimrc r, owner /home/apasquier/.xim.template r, owner /home/apasquier/.xinitrc.template r, owner /home/apasquier/.xsession-errors r, owner /home/apasquier/Desktop/ r, owner /home/apasquier/Desktop/.~lock.tp_switch3com.odt# r, owner /home/apasquier/Desktop/switch3com.pdf w, owner /home/apasquier/Desktop/switch3com.pdf.part rw, owner /home/apasquier/Desktop/tp_switch3com.odt w, owner /home/apasquier/Desktop/tp_switch3com.odt.part rw, owner /home/apasquier/Documents/ r, owner /home/apasquier/Documents/ rw, /home/apasquier/default-server.conf r, owner /home/apasquier/fraise r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, owner /proc//fd/ r, owner /proc//mounts r, /proc/meminfo r, /usr/bin/evince rix, /usr/bin/file rix, /usr/lib64/firefox/firefox rix, /usr/lib64/firefox/firefox.sh rix, /usr/share/applications/ r, /usr/share/applications/evince.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/applications/writer.desktop r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/gvfs/remote-volume-monitors/hal.monitor r, /usr/share/mime/application/pdf.xml r, /usr/share/mime/application/vnd.oasis.opendocument.text.xml r, /usr/share/misc/magic.mgc r, /var/cache/gio-2.0/defaults.list r, /var/run/dbus/system_bus_socket w, owner /var/run/gdm/auth-for-apasquier-9K3FWe/database r, }	over 2 years ago		108	apasquier	Edit	History
opensuse10.3	/opt/kde3/bin/kwatchgnupg	#include <tunables/global> /opt/kde3/bin/kwatchgnupg flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kwatchgnupg mr, /opt/kde3/lib/libso mr, }	over 3 years ago	gconf-neu	240	shivver-fox	Edit	History
ubuntu-gutsy	/usr/lib/gnome-screensaver/gnome-screensaver-gl-helper	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /home//.Xauthority r, /proc//mounts r, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper mr, }	over 4 years ago	gnome	191	hbpteam	Edit	History
opensuse10.3	/usr/bin/metacity	#include <tunables/global> /usr/bin/metacity flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /home//.ICEauthority r, /home//.Xauthority r, /home//.fontconfig/ r, /home//.metacity/sessions/ w, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/metacity mr, }	over 4 years ago	some bug-buddy rules and other misc updates	380	jmichael	Edit	History
opensuse10.3	/usr/local/bin/tor	#include <tunables/global> /usr/local/bin/tor { #include <abstractions/base> /usr/local/bin/tor mr, }	over 4 years ago	changes-3	286	security	Edit	History
opensuse10.3	/usr/bin/beagled	#include <tunables/global> /usr/bin/beagled { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /bin/ps Px, /bin/sleep Px, /etc/fstab r, /etc/mono/2.0/machine.config r, /etc/mono/config r, /home/** rw, /home//.beagle/Indexes/.db krw, /home//.beagle/TextCache/TextCache.db krw, /home//.wapi/shared_data- mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc//status r, /proc/acpi/ac_adapter/AC/state r, /proc/loadavg r, /proc/meminfo r, /proc/stat r, /proc/sys/fs/inotify/max_queued_events r, /proc/sys/fs/inotify/max_user_instances r, /proc/sys/fs/inotify/max_user_watches r, /proc/sys/kernel/ngroups_max r, /proc/uptime r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/beagled mr, /usr/bin/mono ixr, /usr/bin/totem-video-indexer Px, /usr/lib/beagle/.dll mr, /usr/lib/beagle/Backends/.dll mr, /usr/lib/beagle/BeagleDaemon.exe mr, /usr/lib/beagle/Filters/.dll mr, /usr/lib/beagle/beagled-index-helper Px, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/**.dll mr, /var/cache/beagle/indexes/ r, /var/cache/beagle/indexes/applications/Locks/ r, /var/cache/beagle/indexes/applications/fingerprint r, /var/cache/beagle/indexes/applications/version r, /var/cache/beagle/indexes/documentation/Locks/ r, /var/cache/beagle/indexes/documentation/fingerprint r, /var/cache/beagle/indexes/documentation/version r, /var/tmp/ rw, }	over 4 years ago	Import of jmichaels profiles	217	dominic	Edit	History
opensuse11.0	/usr/bin/aircrack-ng	#include <tunables/global> /usr/bin/aircrack-ng flags=(complain) { #include <abstractions/base> }	about 1 year ago		78	bandolero	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> deny capability sys_ptrace, deny network inet dgram, deny network inet stream, deny network inet6 stream, deny /bin/bash mr, deny /dev/shm/ r, deny owner /dev/shm/pulse-shm-1954909843 rw, deny owner /dev/shm/pulse-shm-2436160337 rw, deny owner /dev/shm/pulse-shm-2643835015 r, deny owner /dev/shm/pulse-shm-2976378638 rw, deny owner /dev/shm/pulse-shm-3461736770 rw, deny owner /dev/shm/pulse-shm-633429473 rw, deny owner /dev/shm/pulse-shm-726882836 rw, deny owner /dev/shm/sem.ADBE_REL_student mrw, deny owner /dev/shm/sem.ADBE_ReadPrefs_student mrw, deny owner /dev/shm/sem.ADBE_WritePrefs_student mrw, deny /dev/tty rw, deny /etc/fonts/conf.avail/20-fix-globaladvance.conf r, deny /etc/fonts/conf.avail/20-unhint-small-vera.conf r, deny /etc/fonts/conf.avail/29-liberation-aliases.conf r, deny /etc/fonts/conf.avail/30-metric-aliases.conf r, deny /etc/fonts/conf.avail/30-urw-aliases.conf r, deny /etc/fonts/conf.avail/40-nonlatin.conf r, deny /etc/fonts/conf.avail/45-latin.conf r, deny /etc/fonts/conf.avail/49-sansserif.conf r, deny /etc/fonts/conf.avail/50-user.conf r, deny /etc/fonts/conf.avail/51-local.conf r, deny /etc/fonts/conf.avail/60-latin.conf r, deny /etc/fonts/conf.avail/65-fonts-persian.conf r, deny /etc/fonts/conf.avail/65-nonlatin.conf r, deny /etc/fonts/conf.avail/69-unifont.conf r, deny /etc/fonts/conf.avail/80-delicious.conf r, deny /etc/fonts/conf.avail/90-synthetic.conf r, deny /etc/fonts/conf.d/ r, deny /etc/fonts/fonts.conf r, deny /etc/fonts/suse-bitmaps.conf r, deny /etc/fonts/suse-font-dirs.conf r, deny /etc/fonts/suse-hinting.conf r, deny /etc/fonts/suse-post-user.conf r, deny /etc/fonts/suse-pre-user.conf r, deny /etc/gai.conf r, deny /etc/gconf/2/path r, deny /etc/gconf/gconf.xml.defaults/ r, deny /etc/gconf/gconf.xml.mandatory/ r, deny /etc/gconf/gconf.xml.schemas/ r, deny /etc/gconf/gconf.xml.schemas/desktop/ r, deny /etc/gconf/gconf.xml.schemas/desktop/gnome/ r, deny /etc/gconf/gconf.xml.schemas/desktop/gnome/interface/%gconf.xml r, deny /etc/gconf/gconf.xml.vendor/ r, deny /etc/gconf/gconf.xml.vendor/%gconf-tree.xml r, deny /etc/gnome-vfs-2.0/modules/ r, deny /etc/gnome-vfs-2.0/modules/default-modules.conf r, deny /etc/gnome-vfs-2.0/modules/smb-module.conf r, deny /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, deny /etc/gre.d/ r, deny /etc/gre.d/1.9.2.0-64bit.system.conf r, deny /etc/gtk-2.0/gdk-pixbuf.loaders r, deny /etc/gtk-2.0/gdk-pixbuf64.loaders r, deny /etc/gtk-2.0/gtk.immodules r, deny /etc/gtk-2.0/gtk64.immodules r, deny /etc/gtk-2.0/gtkrc r, deny /etc/host.conf r, deny /etc/hosts r, deny /etc/magic r, deny /etc/mailcap r, deny /etc/mime.types r, deny /etc/nsswitch.conf r, deny /etc/pango/pango.modules r, deny /etc/pango/pango64.modules r, deny /etc/passwd r, deny /etc/pulse/client.conf r, deny /etc/resolv.conf r, deny owner /home/student/.ICEauthority r, deny owner /home/student/.Xauthority r, deny owner /home/student/.adobe/Acrobat/9.0/ r, deny owner /home/student/.adobe/Acrobat/9.0/AdobeCMapFnt09.lst rk, deny owner /home/student/.adobe/Acrobat/9.0/Cache/UnixFnt09.lst rk, deny owner /home/student/.adobe/Acrobat/9.0/Cert/curl-ca-bundle.crt w, deny owner /home/student/.adobe/Acrobat/9.0/JavaScripts/ r, deny owner /home/student/.adobe/Acrobat/9.0/Preferences/acrogre.conf r, deny owner /home/student/.adobe/Acrobat/9.0/Preferences/mozilla/ rw, deny owner /home/student/.adobe/Acrobat/9.0/Preferences/mozilla/prefs.js w, deny owner /home/student/.adobe/Acrobat/9.0/Preferences/reader_prefs rw, deny owner /home/student/.adobe/Acrobat/9.0/SharedDataEvents rwk, deny owner /home/student/.adobe/Acrobat/9.0/SharedDataEvents-journal w, deny owner /home/student/.adobe/Acrobat/9.0/UserCache.bin r, deny owner /home/student/.adobe/Flash_Player/AssetCache/ r, deny owner /home/student/.config/qtcurve.gtk-colors rw, deny owner /home/student/.config/qtcurve.gtk-icons rw, deny owner /home/student/.config/qtcurvestylerc r, deny owner /home/student/.esd_auth r, deny owner /home/student/.fonts.conf r, deny owner /home/student/.gconf/ r, deny owner /home/student/.gconf/.testing.writeability w, deny owner /home/student/.gconf/desktop/ r, deny owner /home/student/.gconf/desktop/gnome/ r, deny owner /home/student/.kde/share/config/gtkrc-2.0 r, deny owner /home/student/.kde/share/config/kdeglobals r, deny owner /home/student/.macromedia/Flash_Player/#SharedObjects/ r, deny owner /home/student/.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol r, deny owner /home/student/.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, deny owner /home/student/.mozilla/firefox/default/ r, deny owner /home/student/.mozilla/firefox/default/.parentlock wk, deny owner /home/student/.mozilla/firefox/default/Cache/03AAD2FFd01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/0FA53C9Ad01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/1515DC39d01 r, deny owner /home/student/.mozilla/firefox/default/Cache/17AEC895d01 r, deny owner /home/student/.mozilla/firefox/default/Cache/19306739d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/1A7E5F4Fd01 a, deny owner /home/student/.mozilla/firefox/default/Cache/2B288905d01 r, deny owner /home/student/.mozilla/firefox/default/Cache/2B28FF62d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/3005DD63d01 r, deny owner /home/student/.mozilla/firefox/default/Cache/3BC8A5DEd01 r, deny owner /home/student/.mozilla/firefox/default/Cache/3DEF2C92d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/52D4E476d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/63E64756d01 a, deny owner /home/student/.mozilla/firefox/default/Cache/67860D7Bd01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/6BC945CEd01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/7027823Cd01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/963F3CAFd01 rw, deny owner /home/student/.mozilla/firefox/default/Cache/96885CB6d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/989A3A06d01 r, deny owner /home/student/.mozilla/firefox/default/Cache/9C584294d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/A4CF20F5d01 a, deny owner /home/student/.mozilla/firefox/default/Cache/A6214C15d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/AA789CFEd01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/BA3F67CEd01 a, deny owner /home/student/.mozilla/firefox/default/Cache/C1B9D7DDd01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/C73CBCFBd01 r, deny owner /home/student/.mozilla/firefox/default/Cache/C8EEB2F9d01 ra, deny owner /home/student/.mozilla/firefox/default/Cache/D1BF19CEd01 r, deny owner /home/student/.mozilla/firefox/default/Cache/D48CA044d01 r, deny owner /home/student/.mozilla/firefox/default/Cache/FBFD028Fd01 r, deny owner /home/student/.mozilla/firefox/default/Cache/FFB17506d01 r, deny owner /home/student/.mozilla/firefox/default/Cache/_CACHE_001_ rw, deny owner /home/student/.mozilla/firefox/default/Cache/_CACHE_002_ rw, deny owner /home/student/.mozilla/firefox/default/Cache/_CACHE_003_ rw, deny owner /home/student/.mozilla/firefox/default/Cache/_CACHE_MAP_ rw, deny owner /home/student/.mozilla/firefox/default/XPC.mfasl r, deny owner /home/student/.mozilla/firefox/default/XUL.mfasl rw, deny owner /home/student/.mozilla/firefox/default/adblockplus/patterns.ini rw, deny owner /home/student/.mozilla/firefox/default/adblockplus/patterns.ini-temp rw, deny owner /home/student/.mozilla/firefox/default/blocklist.xml r, deny owner /home/student/.mozilla/firefox/default/bookmarkbackups/ r, deny owner /home/student/.mozilla/firefox/default/cert8.db rw, deny owner /home/student/.mozilla/firefox/default/compatibility.ini r, deny owner /home/student/.mozilla/firefox/default/compreg.dat r, deny owner /home/student/.mozilla/firefox/default/content-prefs.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/cookies.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/cookies.sqlite-journal w, deny owner /home/student/.mozilla/firefox/default/downloads.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/downloads.sqlite-journal w, deny owner /home/student/.mozilla/firefox/default/extensions.cache r, deny owner /home/student/.mozilla/firefox/default/extensions.ini r, deny owner /home/student/.mozilla/firefox/default/extensions/ r, deny owner /home/student/.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/chrome.manifest r, deny owner /home/student/.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/chrome/secondsearch.jar r, deny owner /home/student/.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/defaults/preferences/ r, deny owner /home/student/.mozilla/firefox/default/extensions/\{0AE5CAA4-8BAB-11DB-AF59-ED4B56D89593\}/defaults/preferences/secondsearch.js r, deny owner /home/student/.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/chrome.manifest r, deny owner /home/student/.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/defaults/preferences/ r, deny owner /home/student/.mozilla/firefox/default/extensions/\{54BB9F3F-07E5-486c-9B39-C7398B99391C\}/defaults/preferences/textlink.js r, deny owner /home/student/.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome.manifest r, deny owner /home/student/.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/adblockplus.jar r, deny owner /home/student/.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, deny owner /home/student/.mozilla/firefox/default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/adblockplus.js r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/chrome.manifest r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/bindings.xml r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/branch.properties r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/firebug.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/content/firebug/panel.html r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/defaults/preferences/ r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/defaults/preferences/firebug.js r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/locale/en-US/firebug.dtd r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/locale/en-US/firebug.properties r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/Templarian_inspector.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNext.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextActive.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextArmed.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/breakNextDisabled.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/console.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/continueDisabled.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/css.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/debugger.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/dom.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug-gray-16.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/firebug.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/html.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/layout.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/net.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/panel.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/panelbase.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepIntoDisabled.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepOutDisabled.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/stepOverDisabled.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/traceConsole.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/detach.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/down.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/firebug.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/min.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/off.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/panel.css r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/tabBg.png r, deny owner /home/student/.mozilla/firefox/default/extensions/firebug@software.joehewitt.com/skin/classic/win/up.png r, deny owner /home/student/.mozilla/firefox/default/firebug/annotations.json rw, deny owner /home/student/.mozilla/firefox/default/formhistory.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/key3.db rw, deny owner /home/student/.mozilla/firefox/default/localstore-1.rdf rw, deny owner /home/student/.mozilla/firefox/default/localstore.rdf rw, deny owner /home/student/.mozilla/firefox/default/lock w, deny owner /home/student/.mozilla/firefox/default/mimeTypes.rdf rw, deny owner /home/student/.mozilla/firefox/default/permissions.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/places.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/places.sqlite-journal rw, deny owner /home/student/.mozilla/firefox/default/pluginreg.dat r, deny owner /home/student/.mozilla/firefox/default/prefs-1.js rw, deny owner /home/student/.mozilla/firefox/default/prefs.js rw, deny owner /home/student/.mozilla/firefox/default/search.json r, deny owner /home/student/.mozilla/firefox/default/search.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/secmod.db r, deny owner /home/student/.mozilla/firefox/default/sessionstore-1.js rw, deny owner /home/student/.mozilla/firefox/default/sessionstore.bak w, deny owner /home/student/.mozilla/firefox/default/sessionstore.js rw, deny owner /home/student/.mozilla/firefox/default/signons.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/urlclassifier3.sqlite rwk, deny owner /home/student/.mozilla/firefox/default/urlclassifier3.sqlite-journal w, deny owner /home/student/.mozilla/firefox/default/urlclassifierkey3.txt rw, deny owner /home/student/.mozilla/firefox/default/xpti.dat r, deny owner /home/student/.mozilla/firefox/profiles.ini r, deny owner /home/student/.qt/qtrc r, deny /opt/kde3/share/ r, deny /opt/kde3/share/fonts/ r, deny /opt/kde3/share/fonts/.fonts-config-timestamp r, deny /opt/kde3/share/fonts/override/ r, deny /opt/kde3/share/icons/ r, deny /opt/kde3/share/icons/crystalsvg/16x16/actions/add.png r, deny /opt/kde3/share/icons/crystalsvg/16x16/actions/editcopy.png r, deny /opt/kde3/share/icons/crystalsvg/16x16/actions/editcut.png r, deny /opt/kde3/share/icons/crystalsvg/16x16/actions/editdelete.png r, deny /opt/kde3/share/icons/crystalsvg/16x16/actions/editpaste.png r, deny /opt/kde3/share/icons/crystalsvg/16x16/actions/fileclose.png r, deny /opt/kde3/share/icons/crystalsvg/16x16/actions/undo.png r, deny /opt/kde3/share/icons/crystalsvg/22x22/actions/back.png r, deny /opt/kde3/share/icons/crystalsvg/22x22/actions/button_cancel.png r, deny /opt/kde3/share/icons/crystalsvg/22x22/actions/button_ok.png r, deny /opt/kde3/share/icons/crystalsvg/22x22/actions/forward.png r, deny /opt/kde3/share/icons/crystalsvg/22x22/actions/gohome.png r, deny /opt/kde3/share/icons/crystalsvg/22x22/actions/reload.png r, deny /opt/kde3/share/icons/crystalsvg/22x22/actions/stop.png r, deny /opt/kde3/share/icons/crystalsvg/32x32/actions/help.png r, deny /opt/kde3/share/icons/crystalsvg/icon-theme.cache r, deny /opt/kde3/share/icons/crystalsvg/index.theme r, deny /opt/kde3/share/icons/hicolor/icon-theme.cache r, deny /proc/ r, deny /proc/1/cmdline r, deny /proc/1/stat r, deny /proc/1/status r, deny /proc/10/cmdline r, deny /proc/10/stat r, deny /proc/10/status r, deny /proc/11/cmdline r, deny /proc/11/stat r, deny /proc/11/status r, deny /proc/12/cmdline r, deny /proc/12/stat r, deny /proc/12/status r, deny /proc/1218/cmdline r, deny /proc/1218/stat r, deny /proc/1218/status r, deny /proc/1274/cmdline r, deny /proc/1274/stat r, deny /proc/1274/status r, deny /proc/1275/cmdline r, deny /proc/1275/stat r, deny /proc/1275/status r, deny /proc/13/cmdline r, deny /proc/13/stat r, deny /proc/13/status r, deny /proc/1346/cmdline r, deny /proc/1346/stat r, deny /proc/1346/status r, deny /proc/14/cmdline r, deny /proc/14/stat r, deny /proc/14/status r, deny /proc/1479/cmdline r, deny /proc/1479/stat r, deny /proc/1479/status r, deny /proc/1490/cmdline r, deny /proc/1490/stat r, deny /proc/1490/status r, deny /proc/15/cmdline r, deny /proc/15/stat r, deny /proc/15/status r, deny /proc/1577/cmdline r, deny /proc/1577/stat r, deny /proc/1577/status r, deny /proc/1590/cmdline r, deny /proc/1590/stat r, deny /proc/1590/status r, deny /proc/16/cmdline r, deny /proc/16/stat r, deny /proc/16/status r, deny /proc/1638/cmdline r, deny /proc/1638/stat r, deny /proc/1638/status r, deny /proc/17/cmdline r, deny /proc/17/stat r, deny /proc/17/status r, deny /proc/18/cmdline r, deny /proc/18/stat r, deny /proc/18/status r, deny /proc/19/cmdline r, deny /proc/19/stat r, deny /proc/19/status r, deny /proc/2/cmdline r, deny /proc/2/stat r, deny /proc/2/status r, deny /proc/20/cmdline r, deny /proc/20/stat r, deny /proc/20/status r, deny /proc/2072/cmdline r, deny /proc/2072/stat r, deny /proc/2072/status r, deny /proc/2079/cmdline r, deny /proc/2079/stat r, deny /proc/2079/status r, deny /proc/2081/cmdline r, deny /proc/2081/stat r, deny /proc/2081/status r, deny /proc/2082/cmdline r, deny /proc/2082/stat r, deny /proc/2082/status r, deny /proc/21/cmdline r, deny /proc/21/stat r, deny /proc/21/status r, deny /proc/22/cmdline r, deny /proc/22/stat r, deny /proc/22/status r, deny /proc/23/cmdline r, deny /proc/23/stat r, deny /proc/23/status r, deny /proc/24/cmdline r, deny /proc/24/stat r, deny /proc/24/status r, deny /proc/2446/cmdline r, deny /proc/2446/stat r, deny /proc/2446/status r, deny /proc/2467/cmdline r, deny /proc/2467/stat r, deny /proc/2467/status r, deny /proc/2468/cmdline r, deny /proc/2468/stat r, deny /proc/2468/status r, deny /proc/25/cmdline r, deny /proc/25/stat r, deny /proc/25/status r, deny /proc/2547/cmdline r, deny /proc/2547/stat r, deny /proc/2547/status r, deny /proc/2582/cmdline r, deny /proc/2582/stat r, deny /proc/2582/status r, deny /proc/2585/cmdline r, deny /proc/2585/stat r, deny /proc/2585/status r, deny /proc/2596/cmdline r, deny /proc/2596/stat r, deny /proc/2596/status r, deny /proc/2600/cmdline r, deny /proc/2600/stat r, deny /proc/2600/status r, deny /proc/3/cmdline r, deny /proc/3/stat r, deny /proc/3/status r, deny /proc/3042/cmdline r, deny /proc/3042/stat r, deny /proc/3042/status r, deny /proc/3044/cmdline r, deny /proc/3044/stat r, deny /proc/3044/status r, deny /proc/3047/cmdline r, deny /proc/3047/stat r, deny /proc/3047/status r, deny /proc/3070/cmdline r, deny /proc/3070/stat r, deny /proc/3070/status r, deny /proc/309/cmdline r, deny /proc/309/stat r, deny /proc/309/status r, deny /proc/3090/cmdline r, deny /proc/3090/stat r, deny /proc/3090/status r, deny /proc/312/cmdline r, deny /proc/312/stat r, deny /proc/312/status r, deny /proc/3360/cmdline r, deny /proc/3360/stat r, deny /proc/3360/status r, deny /proc/3362/cmdline r, deny /proc/3362/stat r, deny /proc/3362/status r, deny /proc/3377/cmdline r, deny /proc/3377/stat r, deny /proc/3377/status r, deny /proc/3378/cmdline r, deny /proc/3378/stat r, deny /proc/3378/status r, deny owner /proc/3439/cmdline r, deny owner /proc/3439/stat r, deny owner /proc/3439/status r, deny /proc/3450/cmdline r, deny /proc/3450/stat r, deny /proc/3450/status r, deny /proc/3559/cmdline r, deny /proc/3559/stat r, deny /proc/3559/status r, deny /proc/3868/cmdline r, deny /proc/3868/stat r, deny /proc/3868/status r, deny /proc/3906/cmdline r, deny /proc/3906/stat r, deny /proc/3906/status r, deny /proc/3919/cmdline r, deny /proc/3919/stat r, deny /proc/3919/status r, deny /proc/3939/cmdline r, deny /proc/3939/stat r, deny /proc/3939/status r, deny /proc/3940/cmdline r, deny /proc/3940/stat r, deny /proc/3940/status r, deny /proc/3961/cmdline r, deny /proc/3961/stat r, deny /proc/3961/status r, deny /proc/3972/cmdline r, deny /proc/3972/stat r, deny /proc/3972/status r, deny /proc/3975/cmdline r, deny /proc/3975/stat r, deny /proc/3975/status r, deny /proc/4/cmdline r, deny /proc/4/stat r, deny /proc/4/status r, deny /proc/4069/cmdline r, deny /proc/4069/stat r, deny /proc/4069/status r, deny /proc/4071/cmdline r, deny /proc/4071/stat r, deny /proc/4071/status r, deny /proc/4073/cmdline r, deny /proc/4073/stat r, deny /proc/4073/status r, deny /proc/4074/cmdline r, deny /proc/4074/stat r, deny /proc/4074/status r, deny /proc/4077/cmdline r, deny /proc/4077/stat r, deny /proc/4077/status r, deny /proc/4078/cmdline r, deny /proc/4078/stat r, deny /proc/4078/status r, deny /proc/4080/cmdline r, deny /proc/4080/stat r, deny /proc/4080/status r, deny owner /proc/4113/cmdline r, deny owner /proc/4113/stat r, deny owner /proc/4113/status r, deny owner /proc/4116/cmdline r, deny owner /proc/4116/stat r, deny owner /proc/4116/status r, deny owner /proc/4118/cmdline r, deny owner /proc/4118/stat r, deny owner /proc/4118/status r, deny owner /proc/4120/cmdline r, deny owner /proc/4120/stat r, deny owner /proc/4120/status r, deny owner /proc/4125/cmdline r, deny owner /proc/4125/stat r, deny owner /proc/4125/status r, deny owner /proc/4127/cmdline r, deny owner /proc/4127/stat r, deny owner /proc/4127/status r, deny owner /proc/4128/cmdline r, deny owner /proc/4128/stat r, deny owner /proc/4128/status r, deny owner /proc/4130/cmdline r, deny owner /proc/4130/stat r, deny owner /proc/4130/status r, deny owner /proc/4133/cmdline r, deny owner /proc/4133/stat r, deny owner /proc/4133/status r, deny owner /proc/4134/cmdline r, deny owner /proc/4134/stat r, deny owner /proc/4134/status r, deny owner /proc/4141/cmdline r, deny owner /proc/4141/stat r, deny owner /proc/4141/status r, deny owner /proc/4154/cmdline r, deny owner /proc/4154/stat r, deny owner /proc/4154/status r, deny owner /proc/4167/cmdline r, deny owner /proc/4167/stat r, deny owner /proc/4167/status r, deny owner /proc/4168/cmdline r, deny owner /proc/4168/stat r, deny owner /proc/4168/status r, deny owner /proc/4177/cmdline r, deny owner /proc/4177/stat r, deny owner /proc/4177/status r, deny owner /proc/4180/cmdline r, deny owner /proc/4180/stat r, deny owner /proc/4180/status r, deny owner /proc/4182/cmdline r, deny owner /proc/4182/stat r, deny owner /proc/4182/status r, deny owner /proc/4188/cmdline r, deny owner /proc/4188/stat r, deny owner /proc/4188/status r, deny owner /proc/4195/cmdline r, deny owner /proc/4195/stat r, deny owner /proc/4195/status r, deny owner /proc/4199/cmdline r, deny owner /proc/4199/stat r, deny owner /proc/4199/status r, deny owner /proc/4244/cmdline r, deny owner /proc/4244/stat r, deny owner /proc/4244/status r, deny owner /proc/4255/cmdline r, deny owner /proc/4255/stat r, deny owner /proc/4255/status r, deny /proc/4949/cmdline r, deny /proc/4949/stat r, deny /proc/4949/status r, deny /proc/4952/cmdline r, deny /proc/4952/stat r, deny /proc/4952/status r, deny /proc/5/cmdline r, deny /proc/5/stat r, deny /proc/5/status r, deny owner /proc/5110/cmdline r, deny owner /proc/5110/stat r, deny owner /proc/5110/status r, deny /proc/58/cmdline r, deny /proc/58/stat r, deny /proc/58/status r, deny /proc/59/cmdline r, deny /proc/59/stat r, deny /proc/59/status r, deny /proc/6/cmdline r, deny /proc/6/stat r, deny /proc/6/status r, deny /proc/60/cmdline r, deny /proc/60/stat r, deny /proc/60/status r, deny owner /proc/6135/cmdline r, deny owner /proc/6135/stat r, deny owner /proc/6135/status r, deny owner /proc/6140/cmdline r, deny owner /proc/6140/mounts r, deny owner /proc/6140/stat r, deny owner /proc/6140/status r, deny /proc/6148/cmdline r, deny /proc/6148/stat r, deny /proc/6148/status r, deny owner /proc/6159/cmdline r, deny owner /proc/6159/mounts r, deny owner /proc/6159/stat r, deny owner /proc/6159/status r, deny owner /proc/6168/cmdline r, deny owner /proc/6168/stat r, deny owner /proc/6168/status r, deny owner /proc/6169/cmdline r, deny owner /proc/6169/stat r, deny owner /proc/6169/status r, deny owner /proc/6170/cmdline r, deny owner /proc/6170/stat r, deny owner /proc/6170/status r, deny owner /proc/6173/cmdline r, deny owner /proc/6173/fd/ r, deny owner /proc/6173/mounts r, deny owner /proc/6173/stat r, deny owner /proc/6173/status r, deny owner /proc/6182/cmdline r, deny owner /proc/6182/stat r, deny owner /proc/6182/status r, deny owner /proc/6183/cmdline r, deny owner /proc/6183/stat r, deny owner /proc/6183/status r, deny owner /proc/6184/cmdline r, deny owner /proc/6184/stat r, deny owner /proc/6184/status r, deny owner /proc/6188/cmdline r, deny owner /proc/6188/mounts r, deny owner /proc/6188/stat r, deny owner /proc/6188/status r, deny owner /proc/6238/mounts r, deny owner /proc/6239/mounts r, deny /proc/624/cmdline r, deny /proc/624/stat r, deny /proc/624/status r, deny owner /proc/6380/cmdline r, deny owner /proc/6380/mounts r, deny owner /proc/6380/stat r, deny owner /proc/6380/status r, deny owner /proc/6389/cmdline r, deny owner /proc/6389/stat r, deny owner /proc/6389/status r, deny owner /proc/6390/cmdline r, deny owner /proc/6390/stat r, deny owner /proc/6390/status r, deny owner /proc/6391/cmdline r, deny owner /proc/6391/stat r, deny owner /proc/6391/status r, deny owner /proc/6394/cmdline r, deny owner /proc/6394/fd/ r, deny owner /proc/6394/maps r, deny owner /proc/6394/mounts r, deny owner /proc/6394/stat r, deny owner /proc/6394/status r, deny owner /proc/6403/cmdline r, deny owner /proc/6403/stat r, deny owner /proc/6403/status r, deny owner /proc/6404/cmdline r, deny owner /proc/6404/stat r, deny owner /proc/6404/status r, deny owner /proc/6405/cmdline r, deny owner /proc/6405/stat r, deny owner /proc/6405/status r, deny owner /proc/6408/cmdline r, deny owner /proc/6408/stat r, deny owner /proc/6408/status r, deny owner /proc/6409/cmdline r, deny owner /proc/6409/stat r, deny owner /proc/6409/status r, deny owner /proc/6410/cmdline r, deny owner /proc/6410/stat r, deny owner /proc/6410/status r, deny owner /proc/6496/cmdline r, deny owner /proc/6525/fd/ r, deny owner /proc/6539/fd/ r, deny owner /proc/6553/fd/ r, deny owner /proc/6575/fd/ r, deny owner /proc/6589/fd/ r, deny owner /proc/6604/fd/ r, deny owner /proc/6618/fd/ r, deny owner /proc/6632/fd/ r, deny owner /proc/6646/fd/ r, deny owner /proc/6660/fd/ r, deny owner /proc/6674/fd/ r, deny owner /proc/6688/fd/ r, deny /proc/69/cmdline r, deny /proc/69/stat r, deny /proc/69/status r, deny /proc/698/cmdline r, deny /proc/698/stat r, deny /proc/698/status r, deny /proc/7/cmdline r, deny /proc/7/stat r, deny /proc/7/status r, deny /proc/70/cmdline r, deny /proc/70/stat r, deny /proc/70/status r, deny /proc/71/cmdline r, deny /proc/71/stat r, deny /proc/71/status r, deny /proc/72/cmdline r, deny /proc/72/stat r, deny /proc/72/status r, deny /proc/8/cmdline r, deny /proc/8/stat r, deny /proc/8/status r, deny /proc/9/cmdline r, deny /proc/9/stat r, deny /proc/9/status r, deny /proc/cpuinfo r, deny /proc/filesystems r, deny /proc/meminfo r, deny /proc/stat r, deny /proc/sys/kernel/ngroups_max r, deny /proc/sys/kernel/pid_max r, deny /proc/tty/drivers r, deny /proc/uptime r, deny /tmp/ rw, deny /tmp/.X11-unix/X0 w, deny owner /tmp/.esd-1005/socket rw, deny owner /tmp/A9ROZ5TD0f rw, deny owner /tmp/filefYJoFd w, deny owner /tmp/orbit-student/ w, deny owner /tmp/orbit-student/linc-1067-0-7ebb754df05e4 w, deny owner /tmp/orbit-student/linc-17fc-0-37b43d9aeed4d w, deny owner /tmp/orbit-student/linc-1960-0-231f8127ae0c8 w, deny owner /tmp/orbit-student/linc-1a30-0-19ec03dd2787 w, deny owner /tmp/orbit-student/linc-1ab3-0-7b59a4fa4d3a6 w, deny owner /tmp/pulse-b8jMVzKf5q76/native w, deny /usr/lib/Adobe/Reader9/Browser/intellinux/nppdf.so m, deny /usr/lib/Adobe/Reader9/Reader/intellinux/lib/suse-do-not-grab-server.so m, deny /usr/lib/gtk-2.0/2.10.0/immodules/im-cedilla.so m, deny /usr/lib/pango/1.6.0/modules/pango-basic-fc.so m, deny /usr/lib64/browser-plugins/npwrapper.libflashplayer.so m, deny /usr/lib64/browser-plugins/npwrapper.nppdf.so m, deny /usr/lib64/gtk-2.0/2.10.0/immodules/im-cedilla.so m, deny /usr/lib64/pango/1.6.0/modules/pango-basic-fc.so m, deny /usr/share/ r, deny /usr/share/X11/Xcms.txt r, deny /usr/share/fonts/ r, deny /usr/share/fonts/100dpi/ r, deny /usr/share/fonts/100dpi/.fonts-config-timestamp r, deny /usr/share/fonts/75dpi/ r, deny /usr/share/fonts/75dpi/.fonts-config-timestamp r, deny /usr/share/fonts/Speedo/ r, deny /usr/share/fonts/Speedo/.fonts-config-timestamp r, deny /usr/share/fonts/Type1/ r, deny /usr/share/fonts/Type1/.fonts-config-timestamp r, deny /usr/share/fonts/Type1/cour.pfa r, deny /usr/share/fonts/bdf/ r, deny /usr/share/fonts/cyrillic/ r, deny /usr/share/fonts/cyrillic/.fonts-config-timestamp r, deny /usr/share/fonts/encodings/ r, deny /usr/share/fonts/encodings/.fonts-config-timestamp r, deny /usr/share/fonts/encodings/large/ r, deny /usr/share/fonts/misc/ r, deny /usr/share/fonts/misc/.fonts-config-timestamp r, deny /usr/share/fonts/truetype/ r, deny /usr/share/fonts/truetype/.fonts-config-timestamp r, deny /usr/share/fonts/truetype/andalemo.ttf r, deny /usr/share/fonts/truetype/arial.ttf mr, deny /usr/share/fonts/truetype/arialbd.ttf r, deny /usr/share/fonts/truetype/ariali.ttf r, deny /usr/share/fonts/truetype/times.ttf r, deny /usr/share/fonts/truetype/trebuc.ttf r, deny /usr/share/fonts/truetype/trebucbd.ttf r, deny /usr/share/fonts/truetype/verdana.ttf r, deny /usr/share/fonts/truetype/verdanab.ttf r, deny /usr/share/fonts/truetype/verdanai.ttf r, deny /usr/share/fonts/truetype/verdanaz.ttf r, deny /usr/share/fonts/util/ r, deny /usr/share/ghostscript/ r, deny /usr/share/ghostscript/fonts/ r, deny /usr/share/ghostscript/fonts/.fonts-config-timestamp r, deny /usr/share/ghostscript/fonts/n021003l.pfb r, deny /usr/share/gvfs/remote-volume-monitors/ r, deny /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, deny /usr/share/gvfs/remote-volume-monitors/hal.monitor r, deny /usr/share/icons/ r, deny /usr/share/icons/DMZ/cursors/bottom_left_corner r, deny /usr/share/icons/DMZ/cursors/bottom_right_corner r, deny /usr/share/icons/DMZ/cursors/bottom_side r, deny /usr/share/icons/DMZ/cursors/hand2 r, deny /usr/share/icons/DMZ/cursors/left_ptr r, deny /usr/share/icons/DMZ/cursors/left_side r, deny /usr/share/icons/DMZ/cursors/right_side r, deny /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, deny /usr/share/icons/DMZ/cursors/top_left_corner r, deny /usr/share/icons/DMZ/cursors/top_right_corner r, deny /usr/share/icons/DMZ/cursors/top_side r, deny /usr/share/icons/DMZ/cursors/xterm r, deny /usr/share/icons/DMZ/index.theme r, deny /usr/share/icons/Gilouche/icon-theme.cache r, deny /usr/share/icons/Gilouche/index.theme r, deny /usr/share/icons/Tango/icon-theme.cache r, deny /usr/share/icons/Tango/index.theme r, deny /usr/share/icons/crystalsvg/128x128/actions/ r, deny /usr/share/icons/crystalsvg/128x128/apps/ r, deny /usr/share/icons/crystalsvg/128x128/devices/ r, deny /usr/share/icons/crystalsvg/128x128/filesystems/ r, deny /usr/share/icons/crystalsvg/128x128/mimetypes/ r, deny /usr/share/icons/crystalsvg/128x128/status/ r, deny /usr/share/icons/crystalsvg/16x16/actions/ r, deny /usr/share/icons/crystalsvg/16x16/apps/ r, deny /usr/share/icons/crystalsvg/16x16/devices/ r, deny /usr/share/icons/crystalsvg/16x16/filesystems/ r, deny /usr/share/icons/crystalsvg/16x16/mimetypes/ r, deny /usr/share/icons/crystalsvg/16x16/status/ r, deny /usr/share/icons/crystalsvg/22x22/actions/ r, deny /usr/share/icons/crystalsvg/22x22/apps/ r, deny /usr/share/icons/crystalsvg/22x22/devices/ r, deny /usr/share/icons/crystalsvg/22x22/filesystems/ r, deny /usr/share/icons/crystalsvg/22x22/mimetypes/ r, deny /usr/share/icons/crystalsvg/22x22/status/ r, deny /usr/share/icons/crystalsvg/32x32/actions/ r, deny /usr/share/icons/crystalsvg/32x32/apps/ r, deny /usr/share/icons/crystalsvg/32x32/devices/ r, deny /usr/share/icons/crystalsvg/32x32/filesystems/ r, deny /usr/share/icons/crystalsvg/32x32/mimetypes/ r, deny /usr/share/icons/crystalsvg/32x32/status/ r, deny /usr/share/icons/crystalsvg/48x48/actions/ r, deny /usr/share/icons/crystalsvg/48x48/apps/ r, deny /usr/share/icons/crystalsvg/48x48/devices/ r, deny /usr/share/icons/crystalsvg/48x48/filesystems/ r, deny /usr/share/icons/crystalsvg/48x48/mimetypes/ r, deny /usr/share/icons/crystalsvg/48x48/status/ r, deny /usr/share/icons/crystalsvg/64x64/actions/ r, deny /usr/share/icons/crystalsvg/64x64/apps/ r, deny /usr/share/icons/crystalsvg/64x64/devices/ r, deny /usr/share/icons/crystalsvg/64x64/filesystems/ r, deny /usr/share/icons/crystalsvg/64x64/mimetypes/ r, deny /usr/share/icons/crystalsvg/64x64/status/ r, deny /usr/share/icons/crystalsvg/scalable/actions/ r, deny /usr/share/icons/crystalsvg/scalable/apps/ r, deny /usr/share/icons/crystalsvg/scalable/devices/ r, deny /usr/share/icons/crystalsvg/scalable/filesystems/ r, deny /usr/share/icons/crystalsvg/scalable/mimetypes/ r, deny /usr/share/icons/crystalsvg/scalable/status/ r, deny /usr/share/icons/gnome/icon-theme.cache r, deny /usr/share/icons/gnome/index.theme r, deny /usr/share/icons/hicolor/icon-theme.cache r, deny /usr/share/icons/hicolor/index.theme r, deny /usr/share/mime/mime.cache r, deny /usr/share/misc/magic.mgc r, deny /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, deny /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/chrome.manifest r, deny /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/ r, deny /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/susefox@opensuse.org/defaults/preferences/susefox-pfs.js r, deny /usr/share/pixmaps/ r, deny /usr/share/sounds/freedesktop/index.theme r, deny /usr/share/sounds/freedesktop/stereo/dialog-question.ogg r, deny /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, deny /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, deny /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86-64.cache-2 r, deny /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, deny /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-x86-64.cache-2 r, deny /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-x86.cache-2 mr, deny /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86-64.cache-2 r, deny /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 mr, deny /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86-64.cache-2 r, deny /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, deny /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86-64.cache-2 r, deny /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, deny /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86-64.cache-2 r, deny /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, deny /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86-64.cache-2 r, deny /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, deny /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86-64.cache-2 r, deny /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, deny /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86-64.cache-2 r, deny /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 mr, deny /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86-64.cache-2 r, deny /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 mr, deny /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86-64.cache-2 r, deny /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 mr, deny /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86-64.cache-2 r, deny /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, deny /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86-64.cache-2 r, deny /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86.cache-2 mr, deny /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86-64.cache-2 r, deny /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 mr, deny /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86-64.cache-2 r, deny /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 mr, deny /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86-64.cache-2 r, deny /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 mr, deny /var/lib/dbus/machine-id r, deny /var/run/dbus/system_bus_socket w, deny /var/tmp/ r, /bin/basename rix, /bin/bash ix, /bin/cat rix, /bin/cp rix, /bin/grep rix, /bin/mkdir rix, /bin/ps rix, /bin/rm rix, /bin/uname rix, /usr/bin/dbus-launch rix, /usr/bin/dirname rix, /usr/bin/file rix, /usr/bin/gconftool-2 rix, /usr/bin/linux32 rix, /usr/bin/pactl rix, /usr/bin/test rix, /usr/bin/which rix, /usr/lib/Adobe/Reader9/Reader/intellinux/bin/acroread rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/Accessibility.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/AcroForm.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/Annots.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/DVA.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/DigSig.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/EFS.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/EScript.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/HLS.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/MakeAccessible.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/Multimedia.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/PDDom.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/PPKLite.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/ReadOutLoud.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/Reflow.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/SaveAsRTF.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/SearchFind.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/SendMail.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/Spelling.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/checkers.api rix, /usr/lib/Adobe/Reader9/Reader/intellinux/plug_ins/wwwlink.api rix, /usr/lib/Adobe/Reader9/bin/acroread rix, /usr/lib/nspluginwrapper/i386/linux/npviewer rix, /usr/lib/nspluginwrapper/i386/linux/npviewer.bin rix, /usr/lib/xulrunner-1.8.1.19/libgtkembedmoz.so rix, /usr/lib64/firefox/firefox rix, }	over 2 years ago		86	tome	Edit	History
ubuntu-gutsy	/usr/lib/postfix/showq	# $Id: usr.lib.postfix.showq 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/showq { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/showq rmix, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ r, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ r, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}hold/ r, /{var/spool/postfix/,}hold/[0-9A-F]/ r, /{var/spool/postfix/,}hold/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}hold/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}maildrop/ r, /{var/spool/postfix/,}maildrop/[0-9A-F]/ r, /{var/spool/postfix/,}pid/unix.showq rw, }	over 3 years ago		138	stive	Edit	History
opensuse11.0	/usr/bin/evolution	#include <tunables/global> /usr/bin/evolution { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> / r, /bin/bash rix, /etc/ r, owner /home// r, owner /home//.ICEauthority r, owner /home//.beagle/ w, owner /home//.config// r, owner /home//.evolution/* rwk, owner /home//.fontconfig/ r, owner /home//.gtk-bookmarks r, owner /home//.icons/ r, owner /home//.recently-used.xbel r, owner /proc//mounts r, /proc/meminfo r, owner /tmp/ k, /tmp/ rwl, /usr/bin/bug-buddy Ux, /usr/bin/evolution r, /usr/bin/evolution.bin rix, /usr/share/ r, owner /var/run/gdm/ r, }	over 3 years ago		195	unconfined	Edit	History
opensuse10.3	/usr/lib/jvm/java-1.5.0-sun-1.5.0_update16/jre/bin/java_vm	#include <tunables/global> /usr/lib/jvm/java-1.5.0-sun-1.5.0_update16/jre/bin/java_vm flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /cur/tmp/** mrw, /home//* r, /proc// r, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update16/** mr, }	over 3 years ago		172	shivver-fox	Edit	History
opensuse10.3	/usr/bin/wireshark	# $Id: usr.bin.wireshark 732 2007-06-11 05:14:29Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/bin/wireshark flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-write> capability net_raw, /etc/ethers r, /etc/pango/pango.modules r, /usr/bin/wireshark mixr, /usr/lib/firefox/firefox.sh rPx, /usr/lib/gtk-//loaders/* mr, /usr/share/* r, /usr/share/icons r, /usr/share/icons/** r, /usr/share/mime/* r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/* r, /usr/share/snmp/mibs/.index rw, @{HOME}/.fonts.cache-* r, @{HOME}/.wireshark/* rw, }	over 4 years ago		192	voshellc	Edit	History
opensuse10.3	/sbin/checkproc	#include <tunables/global> /sbin/checkproc { #include <abstractions/base> capability dac_override, capability sys_ptrace, /dev/blog w, /home//.gnupg/agent.pid r, /opt/kde3/bin/ r, /proc/ r, /proc//stat r, /proc//statm r, /sbin/checkproc mr, /usr/bin/gpg-agent r, /usr/sbin/* r, /var/run/*.pid r, }	over 4 years ago	none	185	cinimod	Edit	History
opensuse10.3	/usr/sbin/cupsd	#include <tunables/global> /usr/sbin/cupsd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/perl> capability chown, capability dac_override, capability fsetid, capability kill, capability net_bind_service, capability setgid, capability setuid, network inet dgram, network inet stream, network inet6 dgram, network inet6 stream, /bin/bash ixr, /dev/bus/usb/ r, /dev/bus/usb/001/ r, /dev/bus/usb/001/001 rw, /dev/bus/usb/002/ r, /dev/bus/usb/002/001 rw, /dev/bus/usb/003/ r, /dev/bus/usb/003/001 rw, /dev/bus/usb/003/004 rw, /dev/bus/usb/004/ r, /dev/bus/usb/004/001 rw, /dev/bus/usb/004/002 rw, /dev/bus/usb/004/003 rw, /dev/bus/usb/005/ r, /dev/bus/usb/005/001 rw, /dev/bus/usb/005/002 rw, /dev/bus/usb/006/ r, /dev/bus/usb/006/001 rw, /dev/bus/usb/007/ r, /dev/bus/usb/007/001 rw, /dev/bus/usb/007/002 rw, /dev/bus/usb/007/003 rw, /dev/bus/usb/007/004 rw, /dev/lp0 rw, /dev/tty rw, /dev/ttyS0 w, /dev/ttyS1 w, /dev/ttyS2 w, /dev/ttyS3 w, /dev/ttyS4 w, /dev/ttyS5 w, /dev/ttyS6 w, /dev/ttyS7 w, /dev/usb/lp0 rw, /etc/cups/ r, /etc/cups/* rw, /etc/cups/ppd/z600series.ppd rw, /etc/gai.conf r, /etc/ghostscript/8.15/Fontmap r, /etc/ghostscript/8.15/Fontmap.X11-auto r, /etc/ghostscript/8.15/cidfmap r, /etc/ghostscript/8.15/xlatmap r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/hp/hplip.conf r, /etc/printcap w, /proc/bus/usb/devices r, /proc/meminfo r, /proc/net/ r, /proc/net/unix r, /proc/sys/kernel/ngroups_max r, /root/.hplip/hplip.conf r, /sys/class/usb/ r, /sys/devices/pci0000:00/0000:00:10.0/usb4/4-2/manufacturer r, /usr/bin/env ixr, /usr/bin/gs ixr, /usr/bin/perl ix, /usr/bin/python2.5 ixr, /usr/bin/smbspool ixr, /usr/lib/ mr, /usr/lib/cups/backend/beh ixr, /usr/lib/cups/backend/canon ixr, /usr/lib/cups/backend/epson ixr, /usr/lib/cups/backend/hal ixr, /usr/lib/cups/backend/hp ixr, /usr/lib/cups/backend/hpfax ixr, /usr/lib/cups/backend/ipp ixr, /usr/lib/cups/backend/lpd ixr, /usr/lib/cups/backend/novell ixr, /usr/lib/cups/backend/parallel ixr, /usr/lib/cups/backend/pipe ixr, /usr/lib/cups/backend/scsi ixr, /usr/lib/cups/backend/serial ixr, /usr/lib/cups/backend/snmp ixr, /usr/lib/cups/backend/socket ixr, /usr/lib/cups/backend/usb ixr, /usr/lib/cups/backend/z600 ixr, /usr/lib/cups/cgi-bin/admin.cgi ixr, /usr/lib/cups/cgi-bin/printers.cgi ixr, /usr/lib/cups/daemon/cups-deviced ixr, /usr/lib/cups/daemon/cups-driverd ixr, /usr/lib/cups/driver/gutenprint.5.0 ixr, /usr/lib/cups/filter/pdftops ixr, /usr/lib/cups/filter/pstops ixr, /usr/lib/cups/filter/pstoraster ixr, /usr/lib/cups/filter/rastertoz600 ixr, /usr/local/z600llpddk/utility/bnsi3.lut r, /usr/sbin/cupsd mr, /usr/share/cups/ r, /usr/share/doc/packages/cups/cups.css r, /usr/share/doc/packages/cups/de/images/button-add-class.gif r, /usr/share/doc/packages/cups/de/images/button-add-printer.gif r, /usr/share/doc/packages/cups/de/images/button-cancel-all-jobs.gif r, /usr/share/doc/packages/cups/de/images/button-clear.gif r, /usr/share/doc/packages/cups/de/images/button-delete-printer.gif r, /usr/share/doc/packages/cups/de/images/button-help.gif r, /usr/share/doc/packages/cups/de/images/button-manage-classes.gif r, /usr/share/doc/packages/cups/de/images/button-manage-jobs.gif r, /usr/share/doc/packages/cups/de/images/button-manage-printers.gif r, /usr/share/doc/packages/cups/de/images/button-manage-server.gif r, /usr/share/doc/packages/cups/de/images/button-modify-printer.gif r, /usr/share/doc/packages/cups/de/images/button-move-jobs.gif r, /usr/share/doc/packages/cups/de/images/button-print-test-page.gif r, /usr/share/doc/packages/cups/de/images/button-reject-jobs.gif r, /usr/share/doc/packages/cups/de/images/button-search.gif r, /usr/share/doc/packages/cups/de/images/button-set-allowed-users.gif r, /usr/share/doc/packages/cups/de/images/button-set-as-default.gif r, /usr/share/doc/packages/cups/de/images/button-set-printer-options.gif r, /usr/share/doc/packages/cups/de/images/button-sort-descending.gif r, /usr/share/doc/packages/cups/de/images/button-stop-printer.gif r, /usr/share/doc/packages/cups/de/images/button-unpublish-printer.gif r, /usr/share/doc/packages/cups/de/index.html r, /usr/share/doc/packages/cups/favicon.ico r, /usr/share/doc/packages/cups/images/bottom-left.gif r, /usr/share/doc/packages/cups/images/bottom-right.gif r, /usr/share/doc/packages/cups/images/esp-logo.gif r, /usr/share/doc/packages/cups/images/happy.gif r, /usr/share/doc/packages/cups/images/printer-idle.gif r, /usr/share/doc/packages/cups/images/tab-left.gif r, /usr/share/doc/packages/cups/images/tab-right.gif r, /usr/share/doc/packages/cups/images/top-left.gif r, /usr/share/doc/packages/cups/images/top-middle.gif r, /usr/share/doc/packages/cups/images/top-right.gif r, /usr/share/ghostscript/8.15/Resource/CMap/ r, /usr/share/ghostscript/8.15/lib/.ps r, /usr/share/ghostscript/8.15/lib/Fontmap.GS r, /usr/share/ghostscript/8.15/lib/Fontmap.rus r, /usr/share/ghostscript/8.15/lib/cjkv/baseutil.ps r, /usr/share/ghostscript/8.15/lib/cjkv/cjkcidcm.ps r, /usr/share/ghostscript/8.15/lib/cjkv/cjkfnmap.ps r, /usr/share/ghostscript/8.15/lib/cjkv/cjkvinit.ps r, /usr/share/ghostscript/8.15/lib/cjkv/cjkvttcf.ps r, /usr/share/ghostscript/8.15/lib/cjkv/tt11util.ps r, /usr/share/ghostscript/8.15/lib/cjkv/tt42util.ps r, /usr/share/ghostscript/8.15/lib/escp_24.src r, /usr/share/gutenprint/5.0.1/xml/ r, /usr/share/gutenprint/5.0.1/xml/papers.xml r, /usr/share/gutenprint/5.0.1/xml/printers.xml r, /usr/share/hplip/base/__init__.py r, /usr/share/hplip/base/__init__.pyc rw, /usr/share/hplip/base/codes.py r, /usr/share/hplip/base/codes.pyc rw, /usr/share/hplip/base/device.py r, /usr/share/hplip/base/device.pyc rw, /usr/share/hplip/base/g.py r, /usr/share/hplip/base/g.pyc rw, /usr/share/hplip/base/logger.py r, /usr/share/hplip/base/logger.pyc rw, /usr/share/hplip/base/mdns.py r, /usr/share/hplip/base/mdns.pyc rw, /usr/share/hplip/base/models.py r, /usr/share/hplip/base/models.pyc rw, /usr/share/hplip/base/msg.py r, /usr/share/hplip/base/msg.pyc rw, /usr/share/hplip/base/pexpect.py r, /usr/share/hplip/base/pexpect.pyc rw, /usr/share/hplip/base/pml.py r, /usr/share/hplip/base/pml.pyc rw, /usr/share/hplip/base/service.py r, /usr/share/hplip/base/service.pyc rw, /usr/share/hplip/base/slp.py r, /usr/share/hplip/base/slp.pyc rw, /usr/share/hplip/base/status.py r, /usr/share/hplip/base/status.pyc rw, /usr/share/hplip/base/strings.py r, /usr/share/hplip/base/strings.pyc rw, /usr/share/hplip/base/tui.py r, /usr/share/hplip/base/tui.pyc rw, /usr/share/hplip/base/utils.py r, /usr/share/hplip/base/utils.pyc rw, /usr/share/hplip/prnt/__init__.py r, /usr/share/hplip/prnt/__init__.pyc rw, /usr/share/hplip/prnt/cups.py r, /usr/share/hplip/prnt/cups.pyc rw, /usr/share/hplip/prnt/ldl.py r, /usr/share/hplip/prnt/ldl.pyc rw, /usr/share/hplip/prnt/pcl.py r, /usr/share/hplip/prnt/pcl.pyc rw, /usr/share/ppd/ r, /var/cache/cups/job.cache rw, /var/cache/cups/ppds.dat rw, /var/cache/cups/remote.cache rw, /var/log/cups/access_log rw, /var/log/cups/access_log.O w, /var/log/cups/error_log rw, /var/run/cups/certs/ rw, /var/run/cups/cups.sock w, /var/run/nscd/services r, /var/spool/cups/* rw, /var/spool/cups/tmp/ r, /var/spool/cups/tmp/* rw, }	over 4 years ago		220	overwrite	Edit	History
opensuse10.3	/usr/sbin/alias_manager.pl	#include <tunables/global> /usr/sbin/alias_manager.pl { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> /etc/sympa/ r, /etc/sympa/auth.conf r, /etc/sympa/sympa.conf r, /etc/sympa/wwsympa.conf r, /usr/bin/CAS.pm r, /usr/bin/Conf.pm r, /usr/bin/Language.pm r, /usr/bin/Log.pm r, /usr/bin/Version.pm r, /usr/bin/perl ix, /usr/bin/tools.pl r, /usr/bin/tt2.pl r, /usr/bin/wwslib.pm r, /usr/sbin/alias_manager.pl mr, /usr/share/sympa/* r, /var/log/apache2/error_log w, }	over 4 years ago		249	arclyde	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /usr/bin/amule mr, }	over 4 years ago	1	245	optix	Edit	History
opensuse10.3	/usr/lib/beagle/beagled-index-helper	#include <tunables/global> /usr/lib/beagle/beagled-index-helper flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/bash ixr, /etc/mono/2.0/machine.config r, /etc/mono/config r, /home// rw, /home//.beagle/** krw, /home//.local/share/mime/mime.cache mr, /home//.wapi/shared_data-* mrw, /home//.wapi/shared_fileshare- mrw, /home//Desktop/ r, /proc//maps r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/mono ixr, /usr/bin/totem-video-indexer Px, /usr/lib/beagle/.dll mr, /usr/lib/beagle/Filters/.dll mr, /usr/lib/beagle/IndexHelper.exe mr, /usr/lib/beagle/beagled-index-helper mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/**.dll mr, /usr/share/mime/mime.cache mr, /var/tmp/ rw, }	over 4 years ago	argh, switch things back to complain for a while	359	jmichael	Edit	History
opensuse10.3	/etc/gdm/PostSession/Default	#include <tunables/global> /etc/gdm/PostSession/Default { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> capability setgid, capability setuid, /bin/bash ixr, /etc/gdm/PostSession/Default mr, /proc/meminfo r, }	over 4 years ago	Import of jmichaels profiles	254	dominic	Edit	History
opensuse11.0	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin { #include <abstractions/base> #include <abstractions/nameservice> /proc/*/mounts r, /tmp/.X11-unix/X0 w, /usr/bin/pidgin r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/ru/LC_MESSAGES/gtk20.mo r, }	over 2 years ago	pidgin	131	pavibhai	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> }	over 2 years ago		171	szwajcar	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /bin/grep ixr, /bin/mktemp ixr, /etc/magic r, /home//.gdbinit r, /home//.inputrc r, /proc//auxv r, /proc//mem r, /proc/*/status r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/file ixr, /usr/bin/gdb ixr, /usr/lib/firefox/firefox-bin Pxr, /usr/lib/firefox/firefox.sh mr, /usr/share/misc/magic.mgc r, }	over 4 years ago	none	223	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/x11vnc	#include <tunables/global> /usr/bin/x11vnc flags=(complain) { #include <abstractions/base> /usr/bin/x11vnc mr, }	over 4 years ago		184	igoriii	Edit	History
opensuse10.3	/bin/hostname	#include <tunables/global> /bin/hostname { #include <abstractions/base> #include <abstractions/nameservice> capability sys_admin, /bin/hostname mr, }	over 4 years ago	Import of jmichaels profiles	315	dominic	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		58	rafal	Edit	History
opensuse11.0	/usr/bin/test	#include <tunables/global> /usr/bin/test flags=(complain) { #include <abstractions/base> }	over 3 years ago		239	lbarsov	Edit	History
opensuse11.0	/usr/bin/fusermount	#include <tunables/global> /usr/bin/fusermount { #include <abstractions/base> #include <abstractions/user-tmp> owner /dev/fuse rw, owner /usr/bin/fusermount mr, }	over 3 years ago	New Fusermount profile	146	rhughes	Edit	History
opensuse11.0	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/kde> network dgram, network stream, deny r, /bin/bash rix, /bin/uname rix, /dev/shm/ r, owner /dev/shm/* rw, /dev/tty rw, /etc/gnome-vfs-2.0/modules/ r, /etc/host.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/passwd r, /etc/pulse/client.conf r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.aMule/ rw, owner /home//.aMule/Incoming/ rw, owner /home//.aMule/Temp/ rw, owner /home//.aMule/Temp/.backup rw, owner /home//.aMule/Temp/.bak rw, owner /home//.aMule/Temp/.met rw, owner /home//.aMule/Temp/.part rw, owner /home//.aMule/muleLock wk, owner /home//.config/totem/state.ini r, owner /home//.fontconfig/ r, owner /home//.gstreamer-0.10/registry.x86_64.bin r, owner /home//.icons/ r, owner /home//.local/share/icons/ r, owner /home//.pulse-cookie rwk, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/amule r, /usr/bin/bug-buddy rix, /usr/bin/gdb rix, /usr/bin/totem rix, /usr/lib/** mr, /usr/share/GeoIP/GeoIP.dat r, /usr/share/amule/skins/ r, /usr/share/amule/webserver/ r, /usr/share/locale-bundle/de/LC_MESSAGES/.mo r, /usr/share/totem/fullscreen.ui r, /usr/share/totem/playlist.ui r, /usr/share/totem/totem.ui r, /var/cache/libx11/compose/ r, /var/run/nscd/socket w, }	over 3 years ago	1	291	eet	Edit	History
opensuse10.3	/sbin/checkproc	#include <tunables/global> /sbin/checkproc { #include <abstractions/base> capability dac_override, capability sys_ptrace, /dev/blog w, /home//.gnupg/agent.pid r, /opt/kde3/bin/kdm r, /proc/ r, /proc//stat r, /proc//statm r, /sbin/checkproc mr, /usr/bin/gpg-agent r, /usr/sbin/ r, /var/run/.pid r, /var/spool/*.pid r, }	over 4 years ago	tests	191	dominic	Edit	History
opensuse10.3	/sbin/klogd	# $Id: sbin.klogd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/klogd { #include <abstractions/base> capability sys_admin, /boot/System.map* r, /sbin/klogd rmix, /var/log/boot.msg rwl, /var/run/klogd.pid rwl, @{PROC}/kmsg r, }	over 4 years ago	Initial Revision	297	novell	Edit	History
opensuse11.0	/usr/bin/boinc_client	#include <tunables/global> /usr/bin/boinc_client { #include <abstractions/base> }	about 1 year ago		61	boinc-man	Edit	History
opensuse10.3	/usr/bin/eog	#include <tunables/global> /usr/bin/eog { #include <abstractions/X> #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/accels/eog rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//.thumbnails/* rw, /home//Desktop/* r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /usr/bin/eog mr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/eog/* r, /usr/share/gdm/applications/ r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, }	over 4 years ago		184	FYPJ	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /bin/grep ixr, /bin/mktemp ixr, /etc/magic r, /home//.gdbinit r, /home//.inputrc r, /proc//auxv r, /proc//mem r, /proc/*/status r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/file ixr, /usr/bin/gdb ixr, /usr/lib/firefox/firefox-bin Pxr, /usr/lib/firefox/firefox.sh mr, /usr/share/misc/magic.mgc r, }	over 4 years ago	Testing	242	dominic	Edit	History
opensuse10.3	/bin/hostname	#include <tunables/global> /bin/hostname { #include <abstractions/base> #include <abstractions/nameservice> capability sys_admin, /bin/hostname mr, }	over 4 years ago	none	285	cinimod	Edit	History
opensuse10.3	/usr/bin/gsf-office-thumbnailer	#include <tunables/global> /usr/bin/gsf-office-thumbnailer flags=(complain) { #include <abstractions/base> /home//Documents/* r, /usr/bin/gsf-office-thumbnailer mr, }	over 4 years ago	few more profile tweaks	277	jmichael	Edit	History
opensuse11.0	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> #include <abstractions/bash> network inet dgram, network inet stream, /bin/bash rix, /bin/uname rix, /dev/tty rw, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/obex-module.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/host.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/opt/kde3/share/icons/ r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.Xauthority r, owner /home//.aMule/ rw, owner /home//.aMule/Incoming/ rw, owner /home//.aMule/Temp/ rw, owner /home//.aMule/amule.conf r, owner /home//.aMule/clients.met r, owner /home//.aMule/clients.met.BAK rw, owner /home//.aMule/cryptkey.dat r, owner /home//.aMule/emfriends.met r, owner /home//.aMule/ipfilter.dat r, owner /home//.aMule/ipfilter_static.dat r, owner /home//.aMule/key_index.dat r, owner /home//.aMule/known.met r, owner /home//.aMule/known2_64.met rw, owner /home//.aMule/last_version_check rw, owner /home//.aMule/lastversion rw, owner /home//.aMule/lastversion7nckGj rw, owner /home//.aMule/load_index.dat r, owner /home//.aMule/logfile rw, owner /home//.aMule/logfile.bak rw, owner /home//.aMule/muleLock wk, owner /home//.aMule/nodes.dat r, owner /home//.aMule/preferences.dat r, owner /home//.aMule/preferencesKad.dat r, owner /home//.aMule/server.met r, owner /home//.aMule/shareddir.dat r, owner /home//.aMule/src_index.dat r, owner /home//.fontconfig/2c06a42904f01c0353eb6890b1b94581-x86.cache-2 r, owner /home//.icons/ r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/.X11-unix/X0 w, /usr/bin/amule r, /usr/bin/bug-buddy rix, /usr/lib/* mr, /usr/share/GeoIP/GeoIP.dat r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/fonts/** r, /usr/share/icons/ r, /usr/share/icons/Crux/icon-theme.cache r, /usr/share/icons/Crux/index.theme r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/sb_v_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/pixmaps/ r, /usr/share/themes/Crux/gtk-2.0/gtkrc r, /usr/share/themes/Default/gtk-2.0-key/gtkrc r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/run/nscd/socket w, }	over 3 years ago		288	Maicoc	Edit	History
opensuse10.3	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox flags=(complain) { #include <abstractions/base> /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/mapping-modules.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gre.d/ r, /etc/gre.d/1.8.1.16.conf r, /etc/gre.d/1.9.0.1.system.conf r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home/*/.gnome2_private/ w, /tmp/ r, /tmp/.ICE-unix/2962 w, /tmp/.X11-unix/X0 w, /tmp/gconfd-teresa/lock/ior r, /tmp/orbit-teresa/ w, /tmp/orbit-teresa/linc-15f4-0-5182835a439eb w, /tmp/orbit-teresa/linc-beb-0-1f5b5da995238 w, /usr/bin/bug-buddy ixr, /usr/lib/firefox/firefox mr, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /var/run/nscd/passwd r, /var/run/nscd/socket w, }	over 3 years ago	changelog1	178	tro	Edit	History
ubuntu-gutsy	/usr/bin/gnome-panel	#include <tunables/global> /usr/bin/gnome-panel flags=(complain) { #include <abstractions/base> /usr/bin/gnome-panel mr, }	over 4 years ago		240	athroener	Edit	History
opensuse10.3	/usr/lib/cyrus/bin/idled	#include <tunables/global> /usr/lib/cyrus/bin/idled { #include <abstractions/base> /etc/imapd.* r, /mnt/mail/config/** rw, /usr/lib/cyrus/bin/idled mr, /var/lib/imap/* rw, /var/lib/imap/** w, /var/lib/imap/db/* rw, }	over 4 years ago		268	arclyde	Edit	History
opensuse10.3	/opt/kde3/bin/kmail	#include <tunables/global> /opt/kde3/bin/kmail flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kmail mr, /opt/kde3/lib/libso mr, }	over 4 years ago	kmail	209	cathay4t	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-sm	#include <tunables/global> /usr/sbin/jabberd2-sm flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-sm mr, }	over 4 years ago		292	igoriii	Edit	History
opensuse11.0	/usr/bin/dtomcat6	#include <tunables/global> /usr/bin/dtomcat6 { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /dev/tty rw, /etc/tomcat6/tomcat6.conf r, /usr/bin/build-classpath r, /usr/bin/dtomcat6 r, owner /var/log/tomcat6/catalina.out w, owner /var/run/tomcat6.pid w, }	7 months ago		27	itwwhite	Edit	History
opensuse10.3	/sbin/unix2_chkpwd	#include <tunables/global> /sbin/unix2_chkpwd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> /sbin/unix2_chkpwd mr, }	over 4 years ago	argh, switch things back to complain for a while	230	jmichael	Edit	History
opensuse11.0	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /etc/fonts/** r, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/obex-module.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /usr/lib/firefox/firefox.sh rix, }	over 2 years ago		221	knigeth	Edit	History
ubuntu-gutsy	/usr/lib/postfix/qmgr	# $Id: usr.lib.postfix.qmgr 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/qmgr { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /usr/lib/postfix/qmgr rmix, /var/spool/postfix/** krw, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/local w, /{var/spool/postfix/,}private/relay w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/smtp w, /{var/spool/postfix/,}private/trace w, /{var/spool/postfix/,}private/uucp w, /{var/spool/postfix/,}public/flush w, /{var/spool/postfix/,}public/qmgr r, }	over 3 years ago		234	stive	Edit	History
opensuse11.0	/usr/bin/vncserver	# Last Modified: Sat Jul 26 21:34:58 2008 # REPOSITORY: http://apparmor.opensuse.org/backend/api neuweiler 3337 #include <tunables/global> /usr/bin/vncserver { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/perl> network inet dgram, network inet stream, network inet6 stream, network stream, deny owner /dev/pts/1 rw, deny /dev/tty rw, /bin/bash rix, /bin/cat rix, /bin/kill rix, /bin/uname rix, /etc/gai.conf r, /etc/hosts r, /etc/nsswitch.conf r, /etc/passwd r, /etc/resolv.conf r, owner /home//.vnc/passwd r, owner /home//.vnc/.log rw, owner /home//.Xauthority rwk, owner /home//.Xauthority-c wl, owner /home//.Xauthority-l wl, owner /home//.Xauthority-n wl, owner /home//.vnc/.pid rw, /home//.vnc/xstartup rix, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, owner /tmp/.X0-lock wl, owner /tmp/.X11-unix/X0 wl, owner /tmp/.tX0-lock wl, /usr/bin/Xvnc rix, /usr/bin/mcookie rix, /usr/bin/perl ix, /usr/bin/vncserver r, /usr/bin/xauth rix, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /var/run/nscd/socket w, /usr/bin/xrdb rix, }	over 3 years ago	1st working edition	134	neuweiler	Edit	History
opensuse11.0	/usr/bin/icecast	#include <tunables/global> /usr/bin/icecast flags=(complain) { #include <abstractions/base> capability setgid, capability setuid, network inet stream, owner /etc/group r, owner /etc/hosts r, owner /etc/icecast.xml r, /etc/mime.types r, owner /etc/nsswitch.conf r, owner /etc/passwd r, owner /etc/resolv.conf r, owner /usr/bin/icecast r, owner /var/log/icecast/access.log a, owner /var/log/icecast/error.log a, }	over 3 years ago	icecast	174	Claymore	Edit	History
opensuse10.3	/usr/bin/gnomesu	#include <tunables/global> /usr/bin/gnomesu flags=(complain) { #include <abstractions/base> /usr/bin/gnomesu mr, }	over 4 years ago	argh, switch things back to complain for a while	259	jmichael	Edit	History
opensuse10.3	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/base> /usr/sbin/sshd mr, }	over 4 years ago		182	jjochec	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /bin/grep ixr, /bin/mktemp ixr, /etc/magic r, /home//.gdbinit r, /home//.inputrc r, /proc//auxv r, /proc//mem r, /proc/*/status r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/expr ixr, /usr/bin/file ixr, /usr/bin/gdb ixr, /usr/lib/firefox/firefox-bin Pxr, /usr/lib/firefox/firefox.sh mr, /usr/share/misc/magic.mgc r, }	over 4 years ago		284	overwrite	Edit	History
opensuse11.0	/usr/lib/jvm/java-1_6_0-ibm-1.6.0/jre/bin/java	#include <tunables/global> /usr/lib/jvm/java-1_6_0-ibm-1.6.0/jre/bin/java flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> }	about 1 year ago		51	dirty_a	Edit	History
opensuse11.0	/etc/init.d/apache2	#include <tunables/global> /etc/init.d/apache2 { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	about 1 year ago		68	neologic	Edit	History
opensuse11.0	/home/liao/LIBRARY/src/firefox/firefox	#include <tunables/global> /home/liao/LIBRARY/src/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/bash> network inet dgram, network inet stream, network inet6 dgram, network inet6 stream, /bin/basename rix, /bin/bash mrix, /bin/uname mrpx, /dev/tty rw, /etc/fonts/** r, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/obex-module.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/hosts r, /etc/nsswitch.conf r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.esd_auth r, owner /home//.fontconfig/542d408b754c73fa2d25ed29a98a4f99-x86.cache-2 r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, owner /home//.mozilla/firefox/* rwk, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/chrome.manifest r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/chrome/forecastfox.jar r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/components/ r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/components/nsForecastfox.js r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/components/nsForecastfox.xpt r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/defaults/converters.js r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/defaults/parser.js r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/defaults/preferences/ r, owner /home//.mozilla/firefox/p0ct6n21.default/extensions/\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3\}/defaults/preferences/forecastfox.js r, owner /home//.qt/qtrc r, owner /home//LIBRARY/src/firefox/application.ini r, owner /home//LIBRARY/src/firefox/chrome/ r, owner /home//LIBRARY/src/firefox/chrome/browser.jar r, owner /home//LIBRARY/src/firefox/chrome/browser.manifest r, owner /home//LIBRARY/src/firefox/chrome/classic.jar r, owner /home//LIBRARY/src/firefox/chrome/classic.manifest r, owner /home//LIBRARY/src/firefox/chrome/comm.jar r, owner /home//LIBRARY/src/firefox/chrome/comm.manifest r, owner /home//LIBRARY/src/firefox/chrome/en-US.jar r, owner /home//LIBRARY/src/firefox/chrome/en-US.manifest r, owner /home//LIBRARY/src/firefox/chrome/icons/default/default16.png r, owner /home//LIBRARY/src/firefox/chrome/icons/default/default32.png r, owner /home//LIBRARY/src/firefox/chrome/icons/default/default48.png r, owner /home//LIBRARY/src/firefox/chrome/pippki.manifest r, owner /home//LIBRARY/src/firefox/chrome/reporter.jar r, owner /home//LIBRARY/src/firefox/chrome/reporter.manifest r, owner /home//LIBRARY/src/firefox/chrome/toolkit.jar r, owner /home//LIBRARY/src/firefox/chrome/toolkit.manifest r, owner /home//LIBRARY/src/firefox/components/ r, owner /home//LIBRARY/src/firefox/components/FeedConverter.js r, owner /home//LIBRARY/src/firefox/components/FeedProcessor.js r, owner /home//LIBRARY/src/firefox/components/FeedWriter.js r, owner /home//LIBRARY/src/firefox/components/NetworkGeolocationProvider.js r, owner /home//LIBRARY/src/firefox/components/WebContentConverter.js r, owner /home//LIBRARY/src/firefox/components/aboutCertError.js r, owner /home//LIBRARY/src/firefox/components/aboutPrivateBrowsing.js r, owner /home//LIBRARY/src/firefox/components/aboutRights.js r, owner /home//LIBRARY/src/firefox/components/aboutRobots.js r, owner /home//LIBRARY/src/firefox/components/aboutSessionRestore.js r, owner /home//LIBRARY/src/firefox/components/browser.xpt r, owner /home//LIBRARY/src/firefox/components/fuelApplication.js r, owner /home//LIBRARY/src/firefox/components/jsconsole-clhandler.js r, owner /home//LIBRARY/src/firefox/components/libbrowsercomps.so mr, owner /home//LIBRARY/src/firefox/components/libbrowserdirprovider.so mr, owner /home//LIBRARY/src/firefox/components/libdbusservice.so mr, owner /home//LIBRARY/src/firefox/components/libimgicon.so mr, owner /home//LIBRARY/src/firefox/components/libmozgnome.so mr, owner /home//LIBRARY/src/firefox/components/libnkgnomevfs.so mr, owner /home//LIBRARY/src/firefox/components/nsAddonRepository.js r, owner /home//LIBRARY/src/firefox/components/nsBadCertHandler.js r, owner /home//LIBRARY/src/firefox/components/nsBlocklistService.js r, owner /home//LIBRARY/src/firefox/components/nsBrowserContentHandler.js r, owner /home//LIBRARY/src/firefox/components/nsBrowserGlue.js r, owner /home//LIBRARY/src/firefox/components/nsContentDispatchChooser.js r, owner /home//LIBRARY/src/firefox/components/nsContentPrefService.js r, owner /home//LIBRARY/src/firefox/components/nsDefaultCLH.js r, owner /home//LIBRARY/src/firefox/components/nsDownloadManagerUI.js r, owner /home//LIBRARY/src/firefox/components/nsExtensionManager.js r, owner /home//LIBRARY/src/firefox/components/nsFilePicker.js r, owner /home//LIBRARY/src/firefox/components/nsHandlerService.js r, owner /home//LIBRARY/src/firefox/components/nsHelperAppDlg.js r, owner /home//LIBRARY/src/firefox/components/nsLivemarkService.js r, owner /home//LIBRARY/src/firefox/components/nsLoginInfo.js r, owner /home//LIBRARY/src/firefox/components/nsLoginManager.js r, owner /home//LIBRARY/src/firefox/components/nsLoginManagerPrompter.js r, owner /home//LIBRARY/src/firefox/components/nsMicrosummaryService.js r, owner /home//LIBRARY/src/firefox/components/nsPlacesDBFlush.js r, owner /home//LIBRARY/src/firefox/components/nsPlacesTransactionsService.js r, owner /home//LIBRARY/src/firefox/components/nsPrivateBrowsingService.js r, owner /home//LIBRARY/src/firefox/components/nsProxyAutoConfig.js r, owner /home//LIBRARY/src/firefox/components/nsSafebrowsingApplication.js r, owner /home//LIBRARY/src/firefox/components/nsSearchService.js r, owner /home//LIBRARY/src/firefox/components/nsSearchSuggestions.js r, owner /home//LIBRARY/src/firefox/components/nsSessionStartup.js r, owner /home//LIBRARY/src/firefox/components/nsSessionStore.js r, owner /home//LIBRARY/src/firefox/components/nsSetDefaultBrowser.js r, owner /home//LIBRARY/src/firefox/components/nsSidebar.js r, owner /home//LIBRARY/src/firefox/components/nsTaggingService.js r, owner /home//LIBRARY/src/firefox/components/nsTryToClose.js r, owner /home//LIBRARY/src/firefox/components/nsURLFormatter.js r, owner /home//LIBRARY/src/firefox/components/nsUpdateService.js r, owner /home//LIBRARY/src/firefox/components/nsUrlClassifierLib.js r, owner /home//LIBRARY/src/firefox/components/nsUrlClassifierListManager.js r, owner /home//LIBRARY/src/firefox/components/nsWebHandlerApp.js r, owner /home//LIBRARY/src/firefox/components/pluginGlue.js r, owner /home//LIBRARY/src/firefox/components/storage-Legacy.js r, owner /home//LIBRARY/src/firefox/components/storage-mozStorage.js r, owner /home//LIBRARY/src/firefox/components/txEXSLTRegExFunctions.js r, owner /home//LIBRARY/src/firefox/defaults/pref/ r, owner /home//LIBRARY/src/firefox/defaults/pref/channel-prefs.js r, owner /home//LIBRARY/src/firefox/defaults/pref/firefox-branding.js r, owner /home//LIBRARY/src/firefox/defaults/pref/firefox-l10n.js r, owner /home//LIBRARY/src/firefox/defaults/pref/firefox.js r, owner /home//LIBRARY/src/firefox/defaults/pref/reporter.js r, owner /home//LIBRARY/src/firefox/dictionaries/ r, owner /home//LIBRARY/src/firefox/dictionaries/en-US.aff r, owner /home//LIBRARY/src/firefox/dictionaries/en-US.dic r, owner /home//LIBRARY/src/firefox/extensions/ r, owner /home//LIBRARY/src/firefox/extensions/\{972ce4c6-7e08-4474-a285-3208198ce6fd\}/install.rdf r, owner /home//LIBRARY/src/firefox/firefox r, owner /home//LIBRARY/src/firefox/greprefs/ r, owner /home//LIBRARY/src/firefox/greprefs/all.js r, owner /home//LIBRARY/src/firefox/greprefs/security-prefs.js r, owner /home//LIBRARY/src/firefox/greprefs/xpinstall.js r, owner /home//LIBRARY/src/firefox/libfreebl3.so mr, owner /home//LIBRARY/src/firefox/libmozjs.so mr, owner /home//LIBRARY/src/firefox/libnspr4.so mr, owner /home//LIBRARY/src/firefox/libnss3.so mr, owner /home//LIBRARY/src/firefox/libnssckbi.so mr, owner /home//LIBRARY/src/firefox/libnssdbm3.so mr, owner /home//LIBRARY/src/firefox/libnssutil3.so mr, owner /home//LIBRARY/src/firefox/libplc4.so mr, owner /home//LIBRARY/src/firefox/libplds4.so mr, owner /home//LIBRARY/src/firefox/libsmime3.so mr, owner /home//LIBRARY/src/firefox/libsoftokn3.so mr, owner /home//LIBRARY/src/firefox/libsqlite3.so mr, owner /home//LIBRARY/src/firefox/libssl3.so mr, owner /home//LIBRARY/src/firefox/libxpcom.so mr, owner /home//LIBRARY/src/firefox/libxul.so mr, owner /home//LIBRARY/src/firefox/modules/DownloadLastDir.jsm r, owner /home//LIBRARY/src/firefox/modules/DownloadUtils.jsm r, owner /home//LIBRARY/src/firefox/modules/ISO8601DateUtils.jsm r, owner /home//LIBRARY/src/firefox/modules/PlacesDBUtils.jsm r, owner /home//LIBRARY/src/firefox/modules/PluralForm.jsm r, owner /home//LIBRARY/src/firefox/modules/XPCOMUtils.jsm r, owner /home//LIBRARY/src/firefox/modules/distribution.js r, owner /home//LIBRARY/src/firefox/modules/utils.js r, owner /home//LIBRARY/src/firefox/platform.ini r, owner /home//LIBRARY/src/firefox/plugins/ r, owner /home//LIBRARY/src/firefox/plugins/libnullplugin.so mr, owner /home//LIBRARY/src/firefox/res/broken-image.gif r, owner /home//LIBRARY/src/firefox/res/charsetData.properties r, owner /home//LIBRARY/src/firefox/res/charsetalias.properties r, owner /home//LIBRARY/src/firefox/res/forms.css r, owner /home//LIBRARY/src/firefox/res/hiddenWindow.html r, owner /home//LIBRARY/src/firefox/res/html.css r, owner /home//LIBRARY/src/firefox/res/langGroups.properties r, owner /home//LIBRARY/src/firefox/res/loading-image.gif r, owner /home//LIBRARY/src/firefox/res/quirk.css r, owner /home//LIBRARY/src/firefox/res/ua.css r, owner /home//LIBRARY/src/firefox/searchplugins/ r, owner /home//LIBRARY/src/firefox/searchplugins/amazondotcom.xml r, owner /home//LIBRARY/src/firefox/searchplugins/answers.xml r, owner /home//LIBRARY/src/firefox/searchplugins/creativecommons.xml r, owner /home//LIBRARY/src/firefox/searchplugins/eBay.xml r, owner /home//LIBRARY/src/firefox/searchplugins/google.xml r, owner /home//LIBRARY/src/firefox/searchplugins/wikipedia.xml r, owner /home//LIBRARY/src/firefox/searchplugins/yahoo.xml r, owner /home//LIBRARY/src/firefox/update.test w, owner /home//LIBRARY/src/firefox/updates/ r, owner /home//LIBRARY/src/firefox/updates/0/update.test w, owner /home/liao/.mozilla/firefox/p0ct6n21.default/extensions/VMwareVMRC@vmware.com/plugins/np-vmware-vmrc-2.5.0-.so r, /home/liao/LIBRARY/src/firefox/firefox-bin rix, /home/liao/LIBRARY/src/firefox/run-mozilla.sh rix, /opt/kde3/share/icons/crystalsvg/16x16/actions/add.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/back.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/fileclose.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/forward.png r, /opt/kde3/share/icons/crystalsvg/16x16/filesystems/folder.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/back.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/button_cancel.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/forward.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/gohome.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/reload.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/stop.png r, /opt/kde3/share/icons/crystalsvg/32x32/actions/messagebox_warning.png r, owner /proc//cmdline r, /proc/meminfo r, /tmp/ rw, /tmp/.X11-unix/X0 w, owner /tmp/etilqs_NEF5qePZUNNdUtH w, owner /tmp/gconfd-liao/lock/ior r, owner /tmp/moz_media_cache rw, owner /tmp/orbit-liao/ w, owner /tmp/orbit-liao/linc-2464-0-1824c9ba23128 w, owner /tmp/orbit-liao/linc-2464-0-af95608f1fe8 w, owner /tmp/orbit-liao/linc-e75-0-2356fa9edcecf w, /usr/bin/dirname rix, /usr/lib/* mr, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/fonts/** r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/17eac1165263be9f8c818b6f419cf6e6-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5582bcdff229c67b5fec2ece77d58e8f-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/c16af864172909159ced9a806109b5c1-x86.cache-2 r, /var/cache/fontconfig/c36a5ca5419b5200dcfc86d54b5d311a-x86.cache-2 r, /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/fontconfig/fe471b6618bd5b47a85b69bc640c6308-x86.cache-2 r, /var/run/nscd/passwd r, /var/run/nscd/socket w, /var/tmp/ r, }	over 2 years ago	firefox_2009-08-25_003	156	pbballking	Edit	History
opensuse11.0	/usr/local/sbin/privoxy	#include <tunables/global> /usr/local/sbin/privoxy flags=(complain) { #include <abstractions/base> capability setgid, capability setuid, network inet stream, owner /etc/nsswitch.conf r, owner /etc/passwd r, owner /usr/local/etc/privoxy/config r, owner /usr/local/etc/privoxy/default.action r, owner /usr/local/etc/privoxy/default.filter r, owner /usr/local/etc/privoxy/standard.action r, owner /usr/local/etc/privoxy/user.action r, owner /usr/local/sbin/privoxy r, owner /var/log/privoxy/logfile a, owner /var/run/nscd/socket w, owner /var/run/privoxy.pid a, }	over 3 years ago	privoxy_neu_mit_passw_sept22_2008_zwei	124	hans141	Edit	History
opensuse10.3	/opt/kde3/bin/kmailcvt	#include <tunables/global> /opt/kde3/bin/kmailcvt flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kmailcvt mr, /opt/kde3/lib/libso mr, }	over 3 years ago	gconf-neu	187	shivver-fox	Edit	History
opensuse10.3	/usr/bin/cal	#include <tunables/global> /usr/bin/cal { #include <abstractions/base> /usr/bin/cal mr, }	over 3 years ago	/var/log/apparmor/reports/cal/log	292	doknisa	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/firefox/firefox.sh mr, }	over 4 years ago		194	hase	Edit	History
opensuse11.0	/usr/bin/Xorg	#include <tunables/global> /usr/bin/Xorg { #include <abstractions/base> }	about 1 year ago		116	usera	Edit	History
ubuntu-gutsy	/usr/bin/mono	#include <tunables/global> /usr/bin/mono { #include <abstractions/base> /usr/bin/mono mr, }	over 3 years ago	test	167	armor	Edit	History
opensuse10.3	/usr/bin/bug-buddy	#include <tunables/global> /usr/bin/bug-buddy { #include <abstractions/base> /usr/bin/bug-buddy mr, }	over 4 years ago		303	FYPJ	Edit	History
opensuse10.3	/opt/kde3/bin/kwrite	#include <tunables/global> /opt/kde3/bin/kwrite flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kwrite mr, /opt/kde3/lib/libso mr, }	over 4 years ago		188	gianni	Edit	History
opensuse10.3	/etc/init.d/boot.dazuko	#include <tunables/global> /etc/init.d/boot.dazuko flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> capability sys_module, /bin/basename ixr, /bin/bash ixr, /bin/grep ixr, /bin/lsmod ixr, /bin/stty ixr, /etc/init.d/boot.dazuko mr, /etc/modprobe.conf r, /etc/modprobe.conf.local r, /etc/modprobe.d/ r, /etc/modprobe.d/blacklist r, /etc/modprobe.d/ipv6 r, /etc/modprobe.d/ipw2200 r, /etc/modprobe.d/iwlwifi r, /etc/modprobe.d/module-renames r, /etc/modprobe.d/nvidia r, /etc/modprobe.d/pnp-aliases r, /etc/modprobe.d/sound r, /etc/modprobe.d/thinkpad_acpi r, /etc/modprobe.d/tv r, /etc/modprobe.d/unsupported.blacklist r, /etc/modprobe.d/xorg-x11-driver-video r, /etc/rc.status r, /etc/sysconfig/dazuko r, /etc/sysconfig/kernel r, /lib/modules//modules.dep r, /lib/modules//updates/dazuko.ko krw, /proc/modules r, /sbin/modprobe ixr, }	over 4 years ago	it works	346	overwrite	Edit	History
opensuse10.3	/usr/sbin/postsuper	#include <tunables/global> /usr/sbin/postsuper flags=(complain) { #include <abstractions/base> /usr/sbin/postsuper mr, }	over 4 years ago	changes 6	322	security	Edit	History
opensuse10.3	/bin/vim-normal	#include <tunables/global> /bin/vim-normal flags=(complain) { #include <abstractions/base> /bin/vim-normal mr, }	over 4 years ago	/prg/vi.log	241	gomi	Edit	History
opensuse11.0	/usr/bin/crontab	#include <tunables/global> /usr/bin/crontab flags=(complain) { #include <abstractions/base> }	about 1 year ago	/fixes/changelog.log	106	jdb	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> deny capability sys_ptrace, /bin/basename rix, /bin/bash rix, /bin/grep rix, /etc/magic r, /usr/bin/file rix, /usr/lib/firefox/firefox px, /usr/share/misc/magic.mgc r, }	over 2 years ago		62	buds428	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/bz2.ini r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/curl.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_pgsql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/pgsql.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/zlib.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, owner /usr/lib/** mr, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, owner /usr/lib64/ m, /usr/lib64/ r, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago	apparmor_apache.changelog	130	abbadon	Edit	History
ubuntu-gutsy	/usr/lib/postfix/smtpd	# $Id: usr.lib.postfix.smtpd 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/smtpd { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability dac_read_search, capability setgid, capability setuid, /dev/urandom r, /etc/aliases.db krw, /etc/fstab r, /etc/mailname r, /etc/mtab r, /etc/postfix/.db r, /etc/postfix/main.cf r, /etc/postfix/prng_exch rw, /etc/postfix/smtpd_scache.dir r, /etc/postfix/smtpd_scache.pag rw, /etc/postfix/{ssl/,}.pem r, /etc/ssl/certs/ssl-cert-snakeoil.pem r, /etc/ssl/private/* r, /usr/lib/postfix/smtpd rmix, /usr/lib/sasl2/ mr, /usr/lib/sasl2/* mr, /usr/lib64/sasl2/ mr, /usr/lib64/sasl2/* mr, /usr/sbin/postdrop rPx, /usr/share/ssl/certs/ca-bundle.crt r, /usr/share/ssl/openssl.cnf r, /var/lib/mailman/data/aliases.db r, /var/run/sasl2/mux w, /var/spool/postfix/etc/* r, /var/spool/postfix/lib/* mr, /{var/spool/postfix/,}pid/inet.* krw, /{var/spool/postfix/,}private/anvil w, /{var/spool/postfix/,}private/proxymap w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/tlsmgr w, /{var/spool/postfix/,}public/cleanup w, @{PROC}/net/if_inet6 r, }	over 3 years ago		129	stive	Edit	History
opensuse10.3	/home/admin/AdventNet/ME/ServiceDesk/bin/run.sh	#include <tunables/global> /home/admin/AdventNet/ME/ServiceDesk/bin/run.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /home/admin/AdventNet/ME/ServiceDesk/bin/run.sh mr, }	over 3 years ago	andrew	164	gankov	Edit	History
ubuntu-gutsy	/usr/bin/system-config-printer-applet	#include <tunables/global> /usr/bin/system-config-printer-applet { #include <abstractions/base> /bin/dash ix, /usr/bin/system-config-printer-applet mr, }	over 4 years ago	gnome	226	hbpteam	Edit	History
opensuse10.3	/usr/bin/gftp	#include <tunables/global> /usr/bin/gftp { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/gftp mr, }	over 4 years ago	apparmor.log	188	danny	Edit	History
opensuse10.3	/usr/sbin/sabayon-apply	#include <tunables/global> /usr/sbin/sabayon-apply flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> /etc/xml/catalog r, /etc/xml/suse-catalog.xml r, /home/*/.Xauthority r, /proc/meminfo r, /usr/bin/env ixr, /usr/bin/python2.5 ixr, /usr/sbin/sabayon-apply mr, }	over 4 years ago	few more changes to get gnome session working elsewhere	296	jmichael	Edit	History
opensuse11.0	/usr/bin/google	#include <tunables/global> /usr/bin/google { #include <abstractions/base> /usr/bin/python2.6 ix, }	about 1 year ago		72	samsuse11	Edit	History
opensuse11.0	/usr/sbin/memcached	#include <tunables/global> /usr/sbin/memcached flags=(complain) { #include <abstractions/base> }	about 1 year ago	Created initial memcached profile.	44	hach-que	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /dev/shm/ r, owner /dev/shm/pulse-* rw, /etc/gre.d/ r, /etc/gre.d/.conf r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/pulse/client.conf r, /etc/rpc r, owner /home//.ICEauthority r, owner /home//.config/user-dirs.dirs r, owner /home//.esd_auth r, owner /home//.icons/ r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/ w, owner /home//.mozilla/firefox/.default/ r, owner /home//.mozilla/firefox/.default/.bak rw, owner /home//.mozilla/firefox/.default/.cache rw, owner /home//.mozilla/firefox/.default/.dat rw, owner /home//.mozilla/firefox/.default/.db rw, owner /home//.mozilla/firefox/.default/.ini w, owner /home//.mozilla/firefox/.default/.js rw, owner /home//.mozilla/firefox/.default/.json rw, owner /home//.mozilla/firefox/.default/.mfasl rw, owner /home//.mozilla/firefox/.default/.rdf rw, owner /home//.mozilla/firefox/.default/.sqlite rwk, owner /home//.mozilla/firefox/.default/.sqlite-journal rw, owner /home//.mozilla/firefox/.default/.tmp rw, owner /home//.mozilla/firefox/.default/.txt rw, owner /home//.mozilla/firefox/.default/.autoreg rw, owner /home//.mozilla/firefox/.default/.parentlock wk, owner /home//.mozilla/firefox/.default/Cache.Trash/ rw, owner /home//.mozilla/firefox/.default/Cache.Trash/* rw, owner /home//.mozilla/firefox/.default/Cache.Trash/*/ rw, owner /home//.mozilla/firefox/.default/Cache/ rw, owner /home//.mozilla/firefox/.default/Cache/ rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/ r, owner /home//.mozilla/firefox/.default/bookmarkbackups/.json rw, owner /home//.mozilla/firefox/.default/compatibility.ini rw, owner /home//.mozilla/firefox/.default/extensions.ini rw, owner /home//.mozilla/firefox/.default/extensions.log rw, owner /home//.mozilla/firefox/.default/extensions/ r, owner /home//.mozilla/firefox/.default/lock w, owner /home//.mozilla/firefox/profiles.ini rw, owner /home//.pulse-cookie rwk, owner /home//Downloads/ w, owner /proc//fd/ r, owner /proc//mounts r, /usr/lib/nspluginwrapper/x86_64/linux/npwrapper.so mr, /usr/lib64/** mr, owner /usr/lib64/firefox/components/compreg.dat.tmp w, /usr/lib64/firefox/components/compreg.dat.tmp r, owner /usr/lib64/firefox/components/xpti.dat.tmp w, /usr/lib64/firefox/components/xpti.dat.tmp r, owner /usr/lib64/firefox/update.test w, /usr/lib64/firefox/update.test r, owner /usr/lib64/mozilla/ w, /usr/lib64/mozilla/ r, /usr/share/applications/.cache r, /usr/share/applications/.desktop r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/.monitor r, /usr/share/locale-bundle/ru/LC_MESSAGES/ r, /usr/share/mime/application/.xml r, /usr/share/mime/text/.xml r, /usr/share/mozilla/extensions/** r, owner "/usr/share/mozilla/extensions//Access Privileges Test/" w, /usr/share/myspell/.aff r, /usr/share/myspell/.dic r, /var/cache/gio-2.0/defaults.list r, /var/lib/dbus/machine-id r, owner /var/run/gdm/auth-for/database r, ^null-d { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gre.d/ r, /etc/gre.d/.conf r, /etc/mailcap r, /etc/mime.types r, owner /home//.ICEauthority r, owner /home//.esd_auth r, owner /home//.fontconfig/* r, owner /home//.icons/ r, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/.default/ r, /home//.mozilla/firefox/.default/.db rw, owner /home//.mozilla/firefox/.default/.js rw, owner /home//.mozilla/firefox/.default/.parentlock wk, owner /home//.mozilla/firefox/.default/Cache/ rw, owner /home//.mozilla/firefox/.default/XPC.mfasl rw, owner /home//.mozilla/firefox/.default/XUL.mfasl rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/ rw, owner /home//.mozilla/firefox/.default/bookmarkbackups/.json rw, owner /home//.mozilla/firefox/.default/bookmarks.html rw, owner /home//.mozilla/firefox/.default/chrome/.css rw, owner /home//.mozilla/firefox/.default/compatibility.ini rw, owner /home//.mozilla/firefox/.default/compreg.dat.tmp w, owner /home//.mozilla/firefox/.default/content-prefs.sqlite rwk, owner /home//.mozilla/firefox/.default/content-prefs.sqlite-journal rw, owner /home//.mozilla/firefox/.default/cookies.sqlite rwk, owner /home//.mozilla/firefox/.default/cookies.sqlite-journal rw, owner /home//.mozilla/firefox/.default/downloads.sqlite rwk, owner /home//.mozilla/firefox/.default/downloads.sqlite-journal rw, owner /home//.mozilla/firefox/.default/extensions-1.cache rw, owner /home//.mozilla/firefox/.default/extensions-1.ini rw, owner /home//.mozilla/firefox/.default/extensions.cache rw, owner /home//.mozilla/firefox/.default/extensions.ini rw, owner /home//.mozilla/firefox/.default/extensions.rdf rw, owner /home//.mozilla/firefox/.default/extensions/ r, owner /home//.mozilla/firefox/.default/formhistory.sqlite rwk, owner /home//.mozilla/firefox/.default/formhistory.sqlite-journal rw, owner /home//.mozilla/firefox/.default/localstore-1.rdf rw, owner /home//.mozilla/firefox/.default/localstore.rdf rw, owner /home//.mozilla/firefox/.default/lock rw, owner /home//.mozilla/firefox/.default/mimeTypes-1.rdf rw, owner /home//.mozilla/firefox/.default/mimeTypes.rdf rw, owner /home//.mozilla/firefox/.default/permissions.sqlite rwk, owner /home//.mozilla/firefox/.default/permissions.sqlite-journal rw, owner /home//.mozilla/firefox/.default/places.sqlite rwk, owner /home//.mozilla/firefox/.default/places.sqlite-journal rw, owner /home//.mozilla/firefox/.default/pluginreg.dat rw, owner /home//.mozilla/firefox/.default/search.json rw, owner /home//.mozilla/firefox/.default/search.sqlite rwk, owner /home//.mozilla/firefox/.default/search.sqlite-journal rw, owner /home//.mozilla/firefox/.default/signons.sqlite rwk, owner /home//.mozilla/firefox/.default/signons.sqlite-journal rw, owner /home//.mozilla/firefox/.default/urlclassifier3.sqlite rwk, owner /home//.mozilla/firefox/.default/urlclassifier3.sqlite-journal rw, owner /home//.mozilla/firefox/.default/urlclassifierkey3.txt rw, owner /home//.mozilla/firefox/.default/xpti.dat rw, owner /home//.mozilla/firefox/.default/xpti.dat.tmp rw, owner /home//.mozilla/firefox/profiles.ini rw, owner /proc//mounts r, /proc/cpuinfo r, /proc/meminfo r, /usr/lib/ mr, /usr/lib64/ mr, /usr/share/applications/mimeinfo.cache r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/gdu.monitor r, /usr/share/gvfs/remote-volume-monitors/gphoto2.monitor r, /usr/share/gvfs/remote-volume-monitors/hal.monitor r, /usr/share/locale-bundle/ru/LC_MESSAGES/* r, /usr/share/mime// r, /usr/share/mozilla/extensions/** r, /var/cache/gio-2.0/defaults.list r, owner /var/run/gdm/auth-for*/database r, } }	about 1 year ago		113	cityzen	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	24032009	204	rollo	Edit	History
opensuse11.0	/usr/sbin/smbd	# $Id: usr.sbin.smbd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/smbd { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability net_bind_service, capability setgid, capability setuid, capability sys_resource, /etc/cups/client.conf r, /etc/samba/dhcp.conf r, audit owner /etc/samba/secrets.tdb rwk, /etc/samba/smb.conf r, owner /etc/samba/smbpasswd rwk, owner /srv/dev/ r, owner /srv/shared/ r, /tmp rw, /usr/lib/samba/lowcase.dat r, /usr/lib/samba/upcase.dat r, /usr/lib/samba/valid.dat r, /usr/sbin/smbd r, /var/lib/samba/ rwk, owner /var/log/samba/cores/smbd/ w, /var/log/samba/log.smbd w, owner /var/run/cups/cups.sock w, owner /var/run/samba/smbd.pid wk, /var/tmp rw, /var/tmp/ rwl, @{HOMEDIRS} rwl, @{HOME}/** rwl, @{PROC}/[0-9]*/mounts r, }	over 3 years ago	fix	240	octo	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename flags=(complain) { #include <abstractions/base> /bin/basename mr, }	over 3 years ago	openoffice splash	149	helsil	Edit	History
opensuse10.3	/sbin/ip	#include <tunables/global> /sbin/ip flags=(complain) { #include <abstractions/base> capability sys_module, /etc/iproute2/rt_scopes r, /proc/net/ r, /proc/net/unix r, /sbin/ip mr, }	over 4 years ago	argh, switch things back to complain for a while	366	jmichael	Edit	History
ubuntu-gutsy	/usr/sbin/enforce	#include <tunables/global> /usr/sbin/enforce flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/perl> /bin/cat ixr, /bin/dash Pxmr, /etc/apparmor.d/ r, /etc/apparmor.d/abstractions/base r, /etc/apparmor.d/bin.check-foreground-console rw, /etc/apparmor.d/bin.check-foreground-console.new rw, /etc/apparmor.d/bin.dash rw, /etc/apparmor.d/bin.dash.new rw, /etc/apparmor.d/bin.fusermount rw, /etc/apparmor.d/bin.fusermount.new rw, /etc/apparmor.d/bin.ping6 rw, /etc/apparmor.d/bin.ping6.new rw, /etc/apparmor.d/bin.su rw, /etc/apparmor.d/bin.su.new rw, /etc/apparmor.d/bin.umount rw, /etc/apparmor.d/bin.umount.new rw, /etc/apparmor.d/lib.dhcp3-client.call-dhclient-script rw, /etc/apparmor.d/lib.dhcp3-client.call-dhclient-script.new rw, /etc/apparmor.d/tunables/global r, /etc/apparmor.d/tunables/home r, /etc/apparmor.d/tunables/proc r, /etc/apparmor.d/usr.bin.X rw, /etc/apparmor.d/usr.bin.X.new rw, /etc/apparmor.d/usr.bin.Xorg rw, /etc/apparmor.d/usr.bin.Xorg.new rw, /etc/apparmor.d/usr.bin.albumshaper rw, /etc/apparmor.d/usr.bin.albumshaper.new rw, /etc/apparmor.d/usr.bin.aplay rw, /etc/apparmor.d/usr.bin.aplay.new rw, /etc/apparmor.d/usr.bin.aqualung rw, /etc/apparmor.d/usr.bin.aqualung.new rw, /etc/apparmor.d/usr.bin.arping rw, /etc/apparmor.d/usr.bin.arping.new rw, /etc/apparmor.d/usr.bin.at rw, /etc/apparmor.d/usr.bin.at.new rw, /etc/apparmor.d/usr.bin.audacious rw, /etc/apparmor.d/usr.bin.audacious.new rw, /etc/apparmor.d/usr.bin.avidemux rw, /etc/apparmor.d/usr.bin.avidemux.new rw, /etc/apparmor.d/usr.bin.basename rw, /etc/apparmor.d/usr.bin.basename.new rw, /etc/apparmor.d/usr.bin.bluetooth-applet rw, /etc/apparmor.d/usr.bin.bluetooth-applet.new rw, /etc/apparmor.d/usr.bin.bug-buddy rw, /etc/apparmor.d/usr.bin.bug-buddy.new rw, /etc/apparmor.d/usr.bin.cddb-slave2-properties rw, /etc/apparmor.d/usr.bin.cddb-slave2-properties.new rw, /etc/apparmor.d/usr.bin.chage rw, /etc/apparmor.d/usr.bin.chage.new rw, /etc/apparmor.d/usr.bin.chfn rw, /etc/apparmor.d/usr.bin.chfn.new rw, /etc/apparmor.d/usr.bin.chsh rw, /etc/apparmor.d/usr.bin.chsh.new rw, /etc/apparmor.d/usr.bin.crontab rw, /etc/apparmor.d/usr.bin.crontab.new rw, /etc/apparmor.d/usr.bin.dbus-daemon rw, /etc/apparmor.d/usr.bin.dbus-daemon.new rw, /etc/apparmor.d/usr.bin.devhelp rw, /etc/apparmor.d/usr.bin.devhelp.new rw, /etc/apparmor.d/usr.bin.djview4 rw, /etc/apparmor.d/usr.bin.djview4.new rw, /etc/apparmor.d/usr.bin.dvd95 rw, /etc/apparmor.d/usr.bin.dvd95.new rw, /etc/apparmor.d/usr.bin.dvdrip rw, /etc/apparmor.d/usr.bin.dvdrip.new rw, /etc/apparmor.d/usr.bin.evolution rw, /etc/apparmor.d/usr.bin.evolution.new rw, /etc/apparmor.d/usr.bin.expiry rw, /etc/apparmor.d/usr.bin.expiry.new rw, /etc/apparmor.d/usr.bin.fileshareset rw, /etc/apparmor.d/usr.bin.fileshareset.new rw, /etc/apparmor.d/usr.bin.fping rw, /etc/apparmor.d/usr.bin.fping.new rw, /etc/apparmor.d/usr.bin.fping6 rw, /etc/apparmor.d/usr.bin.fping6.new rw, /etc/apparmor.d/usr.bin.fwbuilder rw, /etc/apparmor.d/usr.bin.fwbuilder.new rw, /etc/apparmor.d/usr.bin.gconftool-2 rw, /etc/apparmor.d/usr.bin.gconftool-2.new rw, /etc/apparmor.d/usr.bin.gfloppy rw, /etc/apparmor.d/usr.bin.gfloppy.new rw, /etc/apparmor.d/usr.bin.gimp-2.4 rw, /etc/apparmor.d/usr.bin.gimp-2.4.new rw, /etc/apparmor.d/usr.bin.gksu rw, /etc/apparmor.d/usr.bin.gksu.new rw, /etc/apparmor.d/usr.bin.gnome-about-me rw, /etc/apparmor.d/usr.bin.gnome-about-me.new rw, /etc/apparmor.d/usr.bin.gnome-at-properties rw, /etc/apparmor.d/usr.bin.gnome-at-properties.new rw, /etc/apparmor.d/usr.bin.gnome-default-applications-properties rw, /etc/apparmor.d/usr.bin.gnome-default-applications-properties.new rw, /etc/apparmor.d/usr.bin.gnome-dictionary rw, /etc/apparmor.d/usr.bin.gnome-dictionary.new rw, /etc/apparmor.d/usr.bin.gnome-keyboard-properties rw, /etc/apparmor.d/usr.bin.gnome-keyboard-properties.new rw, /etc/apparmor.d/usr.bin.gnome-panel rw, /etc/apparmor.d/usr.bin.gnome-panel.new rw, /etc/apparmor.d/usr.bin.gnome-screensaver rw, /etc/apparmor.d/usr.bin.gnome-screensaver.new rw, /etc/apparmor.d/usr.bin.gnome-screenshot rw, /etc/apparmor.d/usr.bin.gnome-screenshot.new rw, /etc/apparmor.d/usr.bin.gnome-session rw, /etc/apparmor.d/usr.bin.gnome-session.new rw, /etc/apparmor.d/usr.bin.gnome-sound-properties rw, /etc/apparmor.d/usr.bin.gnome-sound-properties.new rw, /etc/apparmor.d/usr.bin.gnome-splashscreen-manager rw, /etc/apparmor.d/usr.bin.gnome-splashscreen-manager.new rw, /etc/apparmor.d/usr.bin.gnome-system-log rw, /etc/apparmor.d/usr.bin.gnome-system-log.new rw, /etc/apparmor.d/usr.bin.gnome-volume-control rw, /etc/apparmor.d/usr.bin.gnome-volume-control.new rw, /etc/apparmor.d/usr.bin.gnome-volume-manager rw, /etc/apparmor.d/usr.bin.gnome-volume-manager.new rw, /etc/apparmor.d/usr.bin.gnome-wm rw, /etc/apparmor.d/usr.bin.gnome-wm.new rw, /etc/apparmor.d/usr.bin.gpasswd rw, /etc/apparmor.d/usr.bin.gpasswd.new rw, /etc/apparmor.d/usr.bin.gstm rw, /etc/apparmor.d/usr.bin.gstm.new rw, /etc/apparmor.d/usr.bin.gtkterm rw, /etc/apparmor.d/usr.bin.gtkterm.new rw, /etc/apparmor.d/usr.bin.gucharmap rw, /etc/apparmor.d/usr.bin.gucharmap.new rw, /etc/apparmor.d/usr.bin.kchmviewer rw, /etc/apparmor.d/usr.bin.kchmviewer.new rw, /etc/apparmor.d/usr.bin.kdesud rw, /etc/apparmor.d/usr.bin.kdesud.new rw, /etc/apparmor.d/usr.bin.kgrantpty rw, /etc/apparmor.d/usr.bin.kgrantpty.new rw, /etc/apparmor.d/usr.bin.kpac_dhcp_helper rw, /etc/apparmor.d/usr.bin.kpac_dhcp_helper.new rw, /etc/apparmor.d/usr.bin.lppasswd rw, /etc/apparmor.d/usr.bin.lppasswd.new rw, /etc/apparmor.d/usr.bin.mcpp rw, /etc/apparmor.d/usr.bin.mcpp.new rw, /etc/apparmor.d/usr.bin.meld rw, /etc/apparmor.d/usr.bin.meld.new rw, /etc/apparmor.d/usr.bin.metacity rw, /etc/apparmor.d/usr.bin.metacity.new rw, /etc/apparmor.d/usr.bin.mkfontdir rw, /etc/apparmor.d/usr.bin.mkfontdir.new rw, /etc/apparmor.d/usr.bin.mkfontscale rw, /etc/apparmor.d/usr.bin.mkfontscale.new rw, /etc/apparmor.d/usr.bin.monodevelop rw, /etc/apparmor.d/usr.bin.monodevelop.new rw, /etc/apparmor.d/usr.bin.mtr rw, /etc/apparmor.d/usr.bin.mtr.new rw, /etc/apparmor.d/usr.bin.nautilus rw, /etc/apparmor.d/usr.bin.nautilus-cd-burner rw, /etc/apparmor.d/usr.bin.nautilus-cd-burner.new rw, /etc/apparmor.d/usr.bin.nautilus.new rw, /etc/apparmor.d/usr.bin.nessus rw, /etc/apparmor.d/usr.bin.nessus.new rw, /etc/apparmor.d/usr.bin.newgrp rw, /etc/apparmor.d/usr.bin.newgrp.new rw, /etc/apparmor.d/usr.bin.ooffice rw, /etc/apparmor.d/usr.bin.ooffice.new rw, /etc/apparmor.d/usr.bin.oofromtemplate rw, /etc/apparmor.d/usr.bin.oofromtemplate.new rw, /etc/apparmor.d/usr.bin.pterm rw, /etc/apparmor.d/usr.bin.pterm.new rw, /etc/apparmor.d/usr.bin.screen rw, /etc/apparmor.d/usr.bin.screen.new rw, /etc/apparmor.d/usr.bin.serpentine rw, /etc/apparmor.d/usr.bin.serpentine.new rw, /etc/apparmor.d/usr.bin.slocate rw, /etc/apparmor.d/usr.bin.slocate.new rw, /etc/apparmor.d/usr.bin.soundconverter rw, /etc/apparmor.d/usr.bin.soundconverter.new rw, /etc/apparmor.d/usr.bin.ssh-agent rw, /etc/apparmor.d/usr.bin.ssh-agent.new rw, /etc/apparmor.d/usr.bin.start_kdeinit rw, /etc/apparmor.d/usr.bin.start_kdeinit.new rw, /etc/apparmor.d/usr.bin.streamtuner rw, /etc/apparmor.d/usr.bin.streamtuner.new rw, /etc/apparmor.d/usr.bin.sudo rw, /etc/apparmor.d/usr.bin.sudo.new rw, /etc/apparmor.d/usr.bin.sudoedit rw, /etc/apparmor.d/usr.bin.sudoedit.new rw, /etc/apparmor.d/usr.bin.system-config-printer rw, /etc/apparmor.d/usr.bin.system-config-printer-applet rw, /etc/apparmor.d/usr.bin.system-config-printer-applet.new rw, /etc/apparmor.d/usr.bin.system-config-printer.new rw, /etc/apparmor.d/usr.bin.traceroute6.iputils rw, /etc/apparmor.d/usr.bin.traceroute6.iputils.new rw, /etc/apparmor.d/usr.bin.tracker-search-tool rw, /etc/apparmor.d/usr.bin.tracker-search-tool.new rw, /etc/apparmor.d/usr.bin.ttb rw, /etc/apparmor.d/usr.bin.ttb.new rw, /etc/apparmor.d/usr.bin.tvtime rw, /etc/apparmor.d/usr.bin.tvtime.new rw, /etc/apparmor.d/usr.bin.update-manager rw, /etc/apparmor.d/usr.bin.update-manager.new rw, /etc/apparmor.d/usr.bin.v4l-conf rw, /etc/apparmor.d/usr.bin.v4l-conf.new rw, /etc/apparmor.d/usr.bin.vino-session rw, /etc/apparmor.d/usr.bin.vino-session.new rw, /etc/apparmor.d/usr.bin.wall rw, /etc/apparmor.d/usr.bin.wall.new rw, /etc/apparmor.d/usr.bin.wavbreaker rw, /etc/apparmor.d/usr.bin.wavbreaker.new rw, /etc/apparmor.d/usr.bin.webhttrack rw, /etc/apparmor.d/usr.bin.webhttrack.new rw, /etc/apparmor.d/usr.bin.xcdroast rw, /etc/apparmor.d/usr.bin.xcdroast.new rw, /etc/apparmor.d/usr.bin.xdpyinfo rw, /etc/apparmor.d/usr.bin.xdpyinfo.new rw, /etc/apparmor.d/usr.bin.xine rw, /etc/apparmor.d/usr.bin.xine.new rw, /etc/apparmor.d/usr.bin.xkbcomp rw, /etc/apparmor.d/usr.bin.xkbcomp.new rw, /etc/apparmor.d/usr.bin.xrdb rw, /etc/apparmor.d/usr.bin.xrdb.new rw, /etc/apparmor.d/usr.bin.xsane rw, /etc/apparmor.d/usr.bin.xsane.new rw, /etc/apparmor.d/usr.bin.xterm rw, /etc/apparmor.d/usr.bin.xterm.new rw, /etc/apparmor.d/usr.games.banner rw, /etc/apparmor.d/usr.games.banner.new rw, /etc/apparmor.d/usr.games.glines rw, /etc/apparmor.d/usr.games.glines.new rw, /etc/apparmor.d/usr.games.gnibbles rw, /etc/apparmor.d/usr.games.gnibbles.new rw, /etc/apparmor.d/usr.games.gnobots2 rw, /etc/apparmor.d/usr.games.gnobots2.new rw, /etc/apparmor.d/usr.games.gnometris rw, /etc/apparmor.d/usr.games.gnometris.new rw, /etc/apparmor.d/usr.games.gnomine rw, /etc/apparmor.d/usr.games.gnomine.new rw, /etc/apparmor.d/usr.games.gnotravex rw, /etc/apparmor.d/usr.games.gnotravex.new rw, /etc/apparmor.d/usr.games.gnotski rw, /etc/apparmor.d/usr.games.gnotski.new rw, /etc/apparmor.d/usr.games.gtali rw, /etc/apparmor.d/usr.games.gtali.new rw, /etc/apparmor.d/usr.games.iagno rw, /etc/apparmor.d/usr.games.iagno.new rw, /etc/apparmor.d/usr.games.mahjongg rw, /etc/apparmor.d/usr.games.mahjongg.new rw, /etc/apparmor.d/usr.games.same-gnome rw, /etc/apparmor.d/usr.games.same-gnome.new rw, /etc/apparmor.d/usr.lib.bonobo-activation.bonobo-activation-server rw, /etc/apparmor.d/usr.lib.bonobo-activation.bonobo-activation-server.new rw, /etc/apparmor.d/usr.lib.deskbar-applet.deskbar-applet rw, /etc/apparmor.d/usr.lib.deskbar-applet.deskbar-applet.new rw, /etc/apparmor.d/usr.lib.eject.dmcrypt-get-device rw, /etc/apparmor.d/usr.lib.eject.dmcrypt-get-device.new rw, /etc/apparmor.d/usr.lib.evolution.2.12.evolution-exchange-storage rw, /etc/apparmor.d/usr.lib.evolution.2.12.evolution-exchange-storage.new rw, /etc/apparmor.d/usr.lib.evolution.camel-lock-helper-1.2 rw, /etc/apparmor.d/usr.lib.evolution.camel-lock-helper-1.2.new rw, /etc/apparmor.d/usr.lib.evolution.evolution-data-server-1.12 rw, /etc/apparmor.d/usr.lib.evolution.evolution-data-server-1.12.new rw, /etc/apparmor.d/usr.lib.fast-user-switch-applet.fast-user-switch-applet rw, /etc/apparmor.d/usr.lib.fast-user-switch-applet.fast-user-switch-applet.new rw, /etc/apparmor.d/usr.lib.firefox.firefox rw, /etc/apparmor.d/usr.lib.firefox.firefox.new rw, /etc/apparmor.d/usr.lib.gnome-control-center.gnome-settings-daemon rw, /etc/apparmor.d/usr.lib.gnome-control-center.gnome-settings-daemon.new rw, /etc/apparmor.d/usr.lib.gnome-vfs-2.0.gnome-vfs-daemon rw, /etc/apparmor.d/usr.lib.gnome-vfs-2.0.gnome-vfs-daemon.new rw, /etc/apparmor.d/usr.lib.j2se.1.4.jre.javaws.javaws rw, /etc/apparmor.d/usr.lib.j2se.1.4.jre.javaws.javaws.new rw, /etc/apparmor.d/usr.lib.jvm.java-1.5.0-sun-1.5.0.13.jre.bin.javaws rw, /etc/apparmor.d/usr.lib.jvm.java-1.5.0-sun-1.5.0.13.jre.bin.javaws.new rw, /etc/apparmor.d/usr.lib.jvm.java-6-sun-1.6.0.03.jre.bin.java rw, /etc/apparmor.d/usr.lib.jvm.java-6-sun-1.6.0.03.jre.bin.java.new rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconf-sanity-check-2 rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconf-sanity-check-2.new rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconfd-2 rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconfd-2.new rw, /etc/apparmor.d/usr.lib.libvte9.gnome-pty-helper rw, /etc/apparmor.d/usr.lib.libvte9.gnome-pty-helper.new rw, /etc/apparmor.d/usr.lib.nautilus-cd-burner.mapping-daemon rw, /etc/apparmor.d/usr.lib.nautilus-cd-burner.mapping-daemon.new rw, /etc/apparmor.d/usr.lib.openssh.ssh-keysign rw, /etc/apparmor.d/usr.lib.openssh.ssh-keysign.new rw, /etc/apparmor.d/usr.lib.pt_chown rw, /etc/apparmor.d/usr.lib.pt_chown.new rw, /etc/apparmor.d/usr.lib.xcdroast.bin.xcdrwrap rw, /etc/apparmor.d/usr.lib.xcdroast.bin.xcdrwrap.new rw, /etc/apparmor.d/usr.sbin.cupsd rw, /etc/apparmor.d/usr.sbin.cupsd.new rw, /etc/apparmor.d/usr.sbin.pppd rw, /etc/apparmor.d/usr.sbin.pppd.new rw, /etc/apparmor/logprof.conf r, /etc/apparmor/subdomain.conf r, /proc//mounts r, /proc/filesystems r, /sbin/apparmor_parser ixr, /sys/kernel/security/apparmor/.replace w, /sys/kernel/security/apparmor/matching r, /tmp/tmpfD939eM w, /tmp/tmpfGVKZg8 w, /tmp/tmpfOCghbY w, /tmp/tmpfY2SnUr w, /tmp/tmpfZKUKDs w, /tmp/tmpfw6yd6d w, /usr/bin/perl ix, /usr/lib/* mr, /usr/sbin/enforce mr, /usr/share/perl/5.8.8/AutoLoader.pm r, /usr/share/perl/5.8.8/Carp.pm r, /usr/share/perl/5.8.8/Exporter.pm r, /usr/share/perl/5.8.8/Exporter/Heavy.pm r, /usr/share/perl/5.8.8/File/Basename.pm r, /usr/share/perl/5.8.8/File/Path.pm r, /usr/share/perl/5.8.8/File/Spec.pm r, /usr/share/perl/5.8.8/File/Spec/Unix.pm r, /usr/share/perl/5.8.8/File/Temp.pm r, /usr/share/perl/5.8.8/FindBin.pm r, /usr/share/perl/5.8.8/Getopt/Long.pm r, /usr/share/perl/5.8.8/SelectSaver.pm r, /usr/share/perl/5.8.8/Symbol.pm r, /usr/share/perl/5.8.8/Term/Cap.pm r, /usr/share/perl/5.8.8/Term/ReadLine.pm r, /usr/share/perl/5.8.8/Time/Local.pm r, /usr/share/perl/5.8.8/base.pm r, /usr/share/perl/5.8.8/bytes.pm r, /usr/share/perl/5.8.8/constant.pm r, /usr/share/perl/5.8.8/integer.pm r, /usr/share/perl/5.8.8/overload.pm r, /usr/share/perl/5.8.8/strict.pm r, /usr/share/perl/5.8.8/subs.pm r, /usr/share/perl/5.8.8/vars.pm r, /usr/share/perl/5.8.8/warnings.pm r, /usr/share/perl/5.8.8/warnings/register.pm r, /usr/share/perl5/HTTP/Date.pm r, /usr/share/perl5/HTTP/Headers.pm r, /usr/share/perl5/HTTP/Message.pm r, /usr/share/perl5/HTTP/Request.pm r, /usr/share/perl5/HTTP/Response.pm r, /usr/share/perl5/HTTP/Status.pm r, /usr/share/perl5/Immunix/Severity.pm r, /usr/share/perl5/LWP.pm r, /usr/share/perl5/LWP/Debug.pm r, /usr/share/perl5/LWP/MemberMixin.pm r, /usr/share/perl5/LWP/Protocol.pm r, /usr/share/perl5/LWP/UserAgent.pm r, /usr/share/perl5/RPC/XML.pm r, /usr/share/perl5/RPC/XML/Client.pm r, /usr/share/perl5/RPC/XML/Parser.pm r, /usr/share/perl5/URI.pm r, /usr/share/perl5/URI/Escape.pm r, }	over 4 years ago	gnome	237	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/lesspipe	#include <tunables/global> /usr/bin/lesspipe flags=(complain) { #include <abstractions/base> capability dac_override, /bin/dash ixr, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/bin/lesspipe mr, }	over 4 years ago	gnome	263	hbpteam	Edit	History
opensuse10.3	/usr/lib/nautilus-cd-burner/mapping-daemon	#include <tunables/global> /usr/lib/nautilus-cd-burner/mapping-daemon { #include <abstractions/base> #include <abstractions/nameservice> /tmp/mapping-* w, /tmp/virtual-*/ w, /usr/lib/nautilus-cd-burner/mapping-daemon mr, }	over 4 years ago	Import of jmichaels profiles	192	dominic	Edit	History
opensuse10.3	/usr/bin/gnome-screensaver	#include <tunables/global> /usr/bin/gnome-screensaver flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /dev/dri/card* rw, /etc/opt/kde3/share/applications/ r, /etc/xdg/menus/gnome-screensavers.menu r, /home//.Xauthority r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/*.desktop r, /opt/kde3/share/applications/kde/ r, /opt/kde3/share/desktop-directories/ r, /opt/kde3/share/desktop-directories/.directory r, /proc/meminfo r, /usr/bin/gnome-screensaver mr, /usr/lib/dri/.so mr, /usr/lib/gnome-screensaver/gnome-screensaver-dialog Px, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper Px, /usr/lib/gnome-screensaver/gnome-screensaver/ ix, /usr/lib/xscreensaver/* ix, /usr/share/applications/ r, /usr/share/applications/** r, /usr/share/desktop-directories/ r, /usr/share/desktop-directories/.directory r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/.desktop r, }	over 4 years ago	allow dri module loading for gl screensavers	189	jmichael	Edit	History
ubuntu-gutsy	/usr/lib/deskbar-applet/deskbar-applet	#include <tunables/global> /usr/lib/deskbar-applet/deskbar-applet { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/orbit2> #include <abstractions/perl> #include <abstractions/python> /bin/bash ix, /bin/dash ix, /etc/sound/events/.soundlist r, /home//.xbel r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2/deskbar-applet/modules-2.20-compatible/ r, /home//.gnome2_private/ w, /home//.gtk-bookmarks r, /home//.icons/ r, /home//.mozilla/firefox/.ini r, /home//.mozilla/firefox// r, /home//.mozilla/firefox/g63bbmzm.default/.html r, /home//.mozilla/firefox/g63bbmzm.default/.js r, /home/void/ r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/ r, /usr/bin/acidrip ixr, /usr/bin/alacarte ixr, /usr/bin/albumshaper Px, /usr/bin/anjuta ixr, /usr/bin/aptoncd ixr, /usr/bin/aqualung Px, /usr/bin/audacious Px, /usr/bin/audacity ixr, /usr/bin/avidemux Px, /usr/bin/azureus ixr, /usr/bin/baobab ixr, /usr/bin/beep-media-player-2 ixr, /usr/bin/blender ixr, /usr/bin/bluetooth-analyzer ixr, /usr/bin/bluetooth-properties ixr, /usr/bin/btdownloadgui.bittornado ixr, /usr/bin/ccsm ixr, /usr/bin/cddb-slave2-properties Px, /usr/bin/cinepaint ixr, /usr/bin/debian-reference ixr, /usr/bin/devede ixr, /usr/bin/devhelp Px, /usr/bin/dia-normal ixr, /usr/bin/djview4 Px, /usr/bin/dogtail-recorder ixr, /usr/bin/dogtail-sniff ixr, /usr/bin/dvd95 Px, /usr/bin/dvdrip Px, /usr/bin/easytag ixr, /usr/bin/eclipse ixr, /usr/bin/ekiga ixr, /usr/bin/env ix, /usr/bin/eog ixr, /usr/bin/etherape ixr, /usr/bin/evince ixr, /usr/bin/evolution Px, /usr/bin/f-spot ixr, /usr/bin/file-roller ixr, /usr/bin/fwbuilder Px, /usr/bin/gcalctool ixr, /usr/bin/gconf-editor ixr, /usr/bin/gdebi-gtk ixr, /usr/bin/gdmflexiserver ixr, /usr/bin/gdmphotosetup ixr, /usr/bin/geany ixr, /usr/bin/gedit ixr, /usr/bin/gfloppy Px, /usr/bin/ghex2 ixr, /usr/bin/gimp-2.4 Px, /usr/bin/gksu Px, /usr/bin/glade-3 ixr, /usr/bin/gmenu-simple-editor ixr, /usr/bin/gnome-about ixr, /usr/bin/gnome-about-me ixr, /usr/bin/gnome-accessibility-keyboard-properties ixr, /usr/bin/gnome-app-install ixr, /usr/bin/gnome-appearance-properties ixr, /usr/bin/gnome-at-properties Px, /usr/bin/gnome-btdownload ixr, /usr/bin/gnome-cd ixr, /usr/bin/gnome-commander ixr, /usr/bin/gnome-control-center ixr, /usr/bin/gnome-default-applications-properties Px, /usr/bin/gnome-dictionary Px, /usr/bin/gnome-display-properties ixr, /usr/bin/gnome-font-viewer ixr, /usr/bin/gnome-keybinding-properties ixr, /usr/bin/gnome-keyboard-properties Px, /usr/bin/gnome-keyring-manager ixr, /usr/bin/gnome-mouse-properties ixr, /usr/bin/gnome-nettool ixr, /usr/bin/gnome-network-preferences ixr, /usr/bin/gnome-open ixr, /usr/bin/gnome-panel ixr, /usr/bin/gnome-power-preferences ixr, /usr/bin/gnome-rdp ixr, /usr/bin/gnome-screensaver-preferences ixr, /usr/bin/gnome-screenshot Px, /usr/bin/gnome-search-tool ixr, /usr/bin/gnome-session-properties ixr, /usr/bin/gnome-sound-properties Px, /usr/bin/gnome-sound-recorder ixr, /usr/bin/gnome-splashscreen-manager Px, /usr/bin/gnome-system-log Px, /usr/bin/gnome-system-monitor ixr, /usr/bin/gnome-terminal ixr, /usr/bin/gnome-volume-control Px, /usr/bin/gnome-volume-properties ixr, /usr/bin/gnome-window-properties ixr, /usr/bin/gpilotd-control-applet ixr, /usr/bin/gqview ixr, /usr/bin/grip ixr, /usr/bin/gstm Px, /usr/bin/gstreamer-properties ixr, /usr/bin/gthumb ixr, /usr/bin/gtkterm Px, /usr/bin/gucharmap Px, /usr/bin/hal-device-manager ixr, /usr/bin/htop ixr, /usr/bin/hwdb-gui ixr, /usr/bin/idle-python2.5 ixr, /usr/bin/inkscape ixr, /usr/bin/isomaster ixr, /usr/bin/kchmviewer Px, /usr/bin/klavaro ixr, /usr/bin/meld Px, /usr/bin/monodevelop Px, /usr/bin/monodoc ixr, /usr/bin/mplayer ixr, /usr/bin/my-default-printer ixr, /usr/bin/nautilus Px, /usr/bin/nautilus-actions-config ixr, /usr/bin/nautilus-cd-burner Px, /usr/bin/nautilus-file-management-properties ixr, /usr/bin/nessus Px, /usr/bin/nmapfe ixr, /usr/bin/nzb ixr, /usr/bin/onboard ixr, /usr/bin/onboard-settings ixr, /usr/bin/ooffice Px, /usr/bin/oofromtemplate Px, /usr/bin/opera ixr, /usr/bin/ophcrack ixr, /usr/bin/orca ixr, /usr/bin/packagesearch ixr, /usr/bin/pdfedit ixr, /usr/bin/perl ix, /usr/bin/picard ixr, /usr/bin/pidgin ixr, /usr/bin/pterm ixr, /usr/bin/putty ixr, /usr/bin/python2.5 ixr, /usr/bin/rhythmbox ixr, /usr/bin/scim-setup ixr, /usr/bin/scite ixr, /usr/bin/serpentine Px, /usr/bin/smplayer ixr, /usr/bin/sound-juicer ixr, /usr/bin/soundconverter Px, /usr/bin/specto ixr, /usr/bin/streamtuner Px, /usr/bin/system-config-printer Px, /usr/bin/system-config-printer-applet Px, /usr/bin/tagtool ixr, /usr/bin/themus-theme-applier ixr, /usr/bin/thoggen ixr, /usr/bin/tomboy ixr, /usr/bin/totem ixr, /usr/bin/tracker-preferences ixr, /usr/bin/tracker-search-tool Pxr, /usr/bin/tsclient ixr, /usr/bin/ttb Px, /usr/bin/tvtime Px, /usr/bin/update-manager Px, /usr/bin/vino-preferences ixr, /usr/bin/vlc ixr, /usr/bin/vumeter ixr, /usr/bin/wavbreaker Px, /usr/bin/wavesurfer ixr, /usr/bin/webhttrack Px, /usr/bin/wireshark ixr, /usr/bin/xaralx ixr, /usr/bin/xcdroast Px, /usr/bin/xchat ixr, /usr/bin/xine Px, /usr/bin/xsane Px, /usr/bin/yelp ixr, /usr/bin/zim ixr, /usr/games/blackjack ixr, /usr/games/glchess ixr, /usr/games/glines ixr, /usr/games/gnect ixr, /usr/games/gnibbles Px, /usr/games/gnobots2 ixr, /usr/games/gnome-sudoku ixr, /usr/games/gnometris Px, /usr/games/gnomine ixr, /usr/games/gnotravex Px, /usr/games/gnotski Px, /usr/games/gtali ixr, /usr/games/iagno Px, /usr/games/mahjongg ixr, /usr/games/same-gnome ixr, /usr/games/sol ixr, /usr/lib/ r, /usr/lib/Adobe/Reader8/bin/acroread ixr, /usr/lib/deskbar-applet/deskbar-applet mr, /usr/lib/firefox/firefox Px, /usr/lib/j2se/1.4/jre/bin/java ixr, /usr/lib/j2se/1.4/jre/javaws/javaws Px, /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/bin/jconsole ixr, /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/java ixr, /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws Px, /usr/lib/jvm/java-6-sun-1.6.0.03/bin/jconsole ixr, /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java Px, /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/javaws ixr, /usr/lib/lazarus/startlazarus ixr, /usr/lib32/ r, /usr/local/share/applications/ r, /usr/local/share/icons/ r, /usr/sbin/gdmsetup ixr, /usr/sbin/synaptic ixr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/apport/apport-gtk ixr, /usr/share/deskbar-applet/.xml r, /usr/share/deskbar-applet/art/.png r, /usr/share/firefox/searchplugins/ r, /usr/share/firefox/searchplugins/.src r, /usr/share/firefox/searchplugins/.xml r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/.desktop r, /usr/share/gdm/gdmXnestWrapper ixr, /usr/share/gmountiso/Gmount-iso.py ixr, /usr/share/xine/desktop/*.desktop r, }	over 4 years ago	gnome	189	hbpteam	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/basename rcx, /bin/bash rix, /bin/grep rix, /usr/bin/file rcx, /usr/lib/firefox/firefox px, profile /bin/basename { #include <abstractions/base> /bin/basename mr, } profile /usr/bin/file { #include <abstractions/base> /etc/magic r, /usr/bin/file mr, /usr/share/misc/magic.mgc r, } }	over 3 years ago	none	228	jjohansen	Edit	History
opensuse11.0	/usr/bin/gedit	#include <tunables/global> /usr/bin/gedit { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> /usr/share/applications/.desktop r, /usr/share/gedit-2/* r, /var/run/gdm/** r, /var/run/gdm/auth-for-root-d95o3l/database r, @{HOME} rw, }	about 1 year ago	Added a few files	56	AppAmorUser	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	firefox.sh.changelog	55	sylerner	Edit	History
opensuse11.0	/sbin/auditd	#include <tunables/global> /sbin/auditd { #include <abstractions/base> capability sys_ptrace, owner /var/log/audit/audit.log rw, owner /var/log/audit/audit.log.1 w, }	over 2 years ago	Addition of audit.log permissions	87	ddiaz_a	Edit	History
opensuse11.0	/usr/local/jdk1.6.0_10/bin/java	#include <tunables/global> /usr/local/jdk1.6.0_10/bin/java flags=(complain) { #include <abstractions/base> owner /proc/meminfo r, /usr/local/jdk1.6.0_10/bin/java rix, owner /usr/local/jdk1.6.0_10/jre/lib/i386/client/libjvm.so mr, owner /usr/local/jdk1.6.0_10/jre/lib/i386/jli/libjli.so mr, owner /usr/local/jdk1.6.0_10/jre/lib/i386/jvm.cfg r, }	over 3 years ago		171	michigrimm	Edit	History
opensuse11.0	/bin/cpio	#include <tunables/global> /bin/cpio { #include <abstractions/base> }	over 3 years ago	2	244	davidbo	Edit	History
opensuse11.0	/usr/bin/opera	#include <tunables/global> /usr/bin/opera flags=(complain) { #include <abstractions/base> #include <abstractions/bash> capability sys_ptrace, network dgram, network stream, /bin/bash rix, /bin/grep rix, /bin/ls mrix, /bin/ps rix, /bin/sed mrpx, /dev/tty rw, /etc/X11/kstylerc r, /etc/X11/qt_plugins_3.3rc r, /etc/X11/qtrc r, /etc/fonts/** r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/host.conf r, /etc/hosts r, /etc/mailcap rk, /etc/nsswitch.conf r, /etc/opera6rc rk, /etc/opera6rc.fixed rk, /etc/opt/kde3/share/applications/mimeinfo.cache rk, /etc/passwd r, /etc/resolv.conf r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.adobe/Flash_Player/AssetCache/ r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.fontconfig/ r, owner /home//.fonts.conf r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kcmnspluginrc rwk, owner /home//.kde/share/config/kdeglobals r, owner /home//.local/share/icons/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/ r, owner /home//.mozilla/firefox/* r, owner /home//.mozilla/plugins/ r, owner /home//.opera/ rw, owner /home//.opera/ rwk, owner /home//.opera/cache4/ r, owner /home//.opera/cache4/* rwk, owner /home//.opera/cache4/revocation/ r, owner /home//.opera/cache4/revocation/* rwk, owner /home//.opera/images/ rwk, owner /home//.opera/mail/ w, owner /home//.opera/mail/* rwk, owner /home//.opera/mail/indexer/ rwk, owner /home//.opera/mail/lexicon/ rwk, owner /home//.opera/opcache/ r, owner /home//.opera/opcache/* rwk, owner /home//.opera/sessions/ rw, owner /home//.opera/sessions/* rwk, owner /home//.opera/skin/ r, owner /home//.opera/skin/* rk, owner /home//.opera/styles/user/ r, owner /home//.opera/styles/user/* rwk, owner /home//.opera/thumbnails/ rk, owner /home//.opera/toolbar/ r, owner /home//.opera/toolbar/* rwk, owner /home//.opera/vps/ r, owner /home//.opera/vps/0000/* rwk, owner /home//.opera/widgets/ rwk, owner /home//.qt/.kstylerc.lock rwk, owner /home//.qt/.qt_plugins_3.3rc.lock rwk, owner /home//.qt/.qtrc.lock rwk, owner /home//.qt/kstylerc r, owner /home//.qt/qt_plugins_3.3rc r, owner /home//.qt/qtrc r, /opt/ r, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib/kde3/plugins/styles/* mr, /opt/kde3/lib/libso mr, /opt/kde3/share/applications/mimeinfo.cache rk, /opt/kde3/share/fonts/** r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/index.theme rk, /proc/ r, /proc//cmdline r, owner /proc//maps r, /proc//stat r, /proc//status r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, /tmp/.X11-unix/X0 w, /usr/ r, /usr/X11R6/lib/ r, /usr/bin/opera r, /usr/lib/ r, /usr/lib/ mr, /usr/lib/opera/9.52/opera rix, /usr/lib/opera/9.52/operaplugincleaner px, /usr/lib/opera/9.52/operapluginwrapper rix, /usr/lib/opera/9.52/works px, /usr/local/ r, /usr/local/lib/ r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/applications/mimeinfo.cache rk, /usr/share/desktop-data/qtrc r, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/icons/ r, /usr/share/icons/ rk, /usr/share/locale-bundle/cs/LC_MESSAGES/coreutils.mo r, /usr/share/locale-bundle/cs/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/cs/LC_MESSAGES/gtk20.mo r, /usr/share/mime/aliases rk, /usr/share/mime/globs rk, /usr/share/mime/subclasses rk, /usr/share/opera/encoding.bin rk, /usr/share/opera/ini/dialog.ini rk, /usr/share/opera/ini/fastforward.ini rk, /usr/share/opera/ini/font.ini rk, /usr/share/opera/ini/pluginpath.ini rk, /usr/share/opera/ini/standard_keyboard.ini rk, /usr/share/opera/ini/standard_menu.ini rk, /usr/share/opera/ini/standard_mouse.ini rk, /usr/share/opera/ini/standard_toolbar.ini rk, /usr/share/opera/locale/en/search.ini rk, /usr/share/opera/locale/english.lng rk, /usr/share/opera/skin/ r, /usr/share/opera/skin/* rk, /usr/share/opera/styles/* rk, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/* r, /var/cache/gio-2.0/defaults.list rk, /var/cache/libx11/compose/* r, }	over 3 years ago	opera	244	vojtaeus	Edit	History
opensuse10.3	/bin/netstat	#include <tunables/global> /bin/netstat { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability sys_ptrace, /bin/netstat mr, /proc/ r, /proc//cmdline r, /proc//fd/ r, /proc/net/ r, /proc/net/* r, }	over 4 years ago	Import of jmichaels profiles	181	dominic	Edit	History
opensuse10.3	/usr/lib/nautilus-cd-burner/mapping-daemon	#include <tunables/global> /usr/lib/nautilus-cd-burner/mapping-daemon { #include <abstractions/base> #include <abstractions/nameservice> /tmp/mapping-* w, /tmp/virtual-*/ w, /usr/lib/nautilus-cd-burner/mapping-daemon mr, }	over 4 years ago	none	168	cinimod	Edit	History
opensuse10.3	/usr/bin/opensuse-updater-gnome-applet	#include <tunables/global> /usr/bin/opensuse-updater-gnome-applet flags=(complain) { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /home//.Xauthority r, /home//.fontconfig/* r, /home//.opensuse-updater-gnome rw, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/opensuse-updater-gnome-applet mr, /usr/sbin/zypp-checkpatches-wrapper Px, /usr/share/opensuse-updater-gnome/glade/.glade r, /usr/share/opensuse-updater-gnome/images/** r, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	357	jmichael	Edit	History
opensuse10.3	/usr/sbin/avahi-daemon	#include <tunables/global> /usr/sbin/avahi-daemon { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability kill, capability setgid, capability setuid, /etc/avahi/ r, /etc/avahi/avahi-daemon.conf r, /etc/avahi/hosts r, /etc/avahi/services/ r, /etc/avahi/services/.service r, /proc//fd/ r, /usr/sbin/avahi-daemon mr, /var/run/avahi-daemon/ w, /var/run/avahi-daemon/pid krw, /var/run/avahi-daemon/socket w, /var/run/dbus/system_bus_socket w, }	over 4 years ago	none	183	cinimod	Edit	History
ubuntu-gutsy	/usr/local/share/skype/skype	#include <tunables/global> /usr/local/share/skype/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /etc/fonts/ r, /etc/gai.conf r, /home// r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/andrey.vihrov/call256.dbb krw, /home//.Skype/andrey.vihrov/callmember256.dbb krw, /home//.Skype/andrey.vihrov/chat1024.dbb krw, /home//.Skype/andrey.vihrov/chat256.dbb w, /home//.Skype/andrey.vihrov/chat512.dbb krw, /home//.Skype/andrey.vihrov/chat8192.dbb krw, /home//.Skype/andrey.vihrov/chatmember256.dbb krw, /home//.Skype/andrey.vihrov/chatmsg1024.dbb krw, /home//.Skype/andrey.vihrov/chatmsg16384.dbb krw, /home//.Skype/andrey.vihrov/chatmsg2048.dbb krw, /home//.Skype/andrey.vihrov/chatmsg256.dbb krw, /home//.Skype/andrey.vihrov/chatmsg32768.dbb krw, /home//.Skype/andrey.vihrov/chatmsg4096.dbb krw, /home//.Skype/andrey.vihrov/chatmsg512.dbb krw, /home//.Skype/andrey.vihrov/chatmsg8192.dbb krw, /home//.Skype/andrey.vihrov/chatsync/17/173cf32a4bca229d.dat krw, /home//.Skype/andrey.vihrov/chatsync/24/240db6d0720b3edb.dat krw, /home//.Skype/andrey.vihrov/chatsync/40/40429cb8ffde1463.dat krw, /home//.Skype/andrey.vihrov/chatsync/8f/8f951f2e99c19ab1.dat krw, /home//.Skype/andrey.vihrov/chatsync/90/9063a0f774e6429e.dat krw, /home//.Skype/andrey.vihrov/chatsync/ab/ab14842e682193b1.dat krw, /home//.Skype/andrey.vihrov/chatsync/da/dafbc83711f9c6de.dat krw, /home//.Skype/andrey.vihrov/chatsync/e5/e5b3db203a9a246b.dat krw, /home//.Skype/andrey.vihrov/chatsync/f2/f2951621245ff270.dat krw, /home//.Skype/andrey.vihrov/chatsync/f7/f70d307d25227a3c.dat krw, /home//.Skype/andrey.vihrov/config.lck kw, /home//.Skype/andrey.vihrov/config.tmp krw, /home//.Skype/andrey.vihrov/config.xml krw, /home//.Skype/andrey.vihrov/contactgroup256.dbb krw, /home//.Skype/andrey.vihrov/contactgroup512.dbb krw, /home//.Skype/andrey.vihrov/dyncontent/bundle.dat krw, /home//.Skype/andrey.vihrov/dyncontent/bundle.dat-journal w, /home//.Skype/andrey.vihrov/index2.dat krw, /home//.Skype/andrey.vihrov/profile16384.dbb krw, /home//.Skype/andrey.vihrov/transfer256.dbb krw, /home//.Skype/andrey.vihrov/transfer512.dbb krw, /home//.Skype/andrey.vihrov/user1024.dbb krw, /home//.Skype/andrey.vihrov/user16384.dbb krw, /home//.Skype/andrey.vihrov/user256.dbb krw, /home//.Skype/andrey.vihrov/user32768.dbb krw, /home//.Skype/andrey.vihrov/user4096.dbb krw, /home//.Skype/andrey.vihrov/voicemail256.dbb krw, /home//.Skype/shared.lck kw, /home//.Skype/shared.tmp krw, /home//.Skype/shared.xml krw, /home//.Xauthority r, /home//.fontconfig/ r, /home//.mozilla/firefox/* r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5907 w, /tmp/.X11-unix/X0 w, /usr/local/lib32/libQtCore.so. mr, /usr/local/lib32/libQtDBus.so.* mr, /usr/local/lib32/libQtGui.so.* mr, /usr/local/lib32/libQtNetwork.so.* mr, /usr/local/lib32/libQtXml.so.* mr, /usr/local/lib32/libdbus-1.so.* mr, /usr/local/lib32/libsigc-2.0.so.* mr, /usr/local/share/skype/ r, /usr/local/share/skype/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/fonts/ r, /usr/share/icons/DMZ-White/ r, /var/cache/ r, /var/lib/** r, }	over 4 years ago		423	a-v	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox { #include <abstractions/base> #include <abstractions/nameservice> /bin/dash ixr, /bin/ls ixr, /bin/pwd Px, /bin/sed ixr, /proc/11997/mounts r, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/lib/firefox/firefox mr, /usr/lib/firefox/run-mozilla.sh Px, }	over 4 years ago	gnome	246	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox-bin	# $Id: usr.lib.firefox.firefox-bin 725 2007-06-11 05:07:41Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/firefox/firefox-bin flags=(complain) { #include <abstractions/X> #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-download> #include <abstractions/user-write> capability sys_nice, /bin/bash mixr, /bin/grep mixr, /bin/netstat Px, /bin/ps mixr, /etc/SuSE-release r, /etc/X11/.kstylerc.lock rw, /etc/X11/.qt_plugins_rc.lock rw, /etc/X11/.qtrc.lock rw, /etc/X11/fs/config r, /etc/gnome-vfs-/modules r, /etc/gnome-vfs-/modules/.conf r, /etc/ld.so.cache mr, /etc/mailcap r, /etc/mime.types r, /etc/mozpluggerrc r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/* r, /etc/rpc r, /etc/sysconfig/clock r, /opt/kde3/bin/kde-config mixr, /opt/kde3/share/applications/*.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /tmp/hsperfdata_/[0-9]* m, /usr/bin/m4 rmix, /usr/bin/mozplugger-helper rmix, /usr/java/jre/plugin//ns/libjavaplugin_oji.so mr, /usr/lib/GConf/2/gconfd-2 Px, /usr/lib/browser-extensions/firefox r, /usr/lib/browser-plugins r, /usr/lib/browser-plugins/.so mr, /usr/lib/browser-plugins/.xpt r, /usr/lib/firefox/* r, /usr/lib/firefox/*.so mr, /usr/lib/firefox/firefox-bin mixr, /usr/lib/gnome-vfs-/modules/.so mr, /usr/lib/gtk-/*.so mr, /usr/lib/jvm/java-/* r, /usr/lib/jvm/java-/.so mr, /usr/lib/jvm/java-/jre/bin/java_vm mixr, /usr/lib/ooo-/share/fonts/* r, /usr/lib/pango/*.so mr, /usr/share/applications/.desktop r, /usr/share/applications/defaults.list r, /usr/share/applications/mimeinfo.cache r, /usr/share/ghostscript/fonts r, /usr/share/icons r, /usr/share/icons/ r, /usr/share/locale/ r, /usr/share/mime/ r, /usr/share/pixmaps r, /usr/share/themes/ r, /usr/share/zoneinfo r, /var/X11R6/compose-cache/* r, /var/run/dbus/system_bus_socket w, @{HOME}/.fonts r, @{HOME}/.fonts.cache-1 r, @{HOME}/.gnome2_private w, @{HOME}/.gtk_qt_engine_rc lrw, @{HOME}/.icons r, @{HOME}/.java/deployment/* r, @{HOME}/.java/deployment/cache/javapi/** lrw, @{HOME}/.java/deployment/log/* lw, @{HOME}/.kde/share/config/* r, @{HOME}/.kde/share/config/gtkrc-* r, @{HOME}/.macromedia/ r, "@{HOME}/.macromedia/Macromedia/Flash Player/" rw, @{HOME}/.mailcap r, @{HOME}/.mime.types r, @{HOME}/.mozilla/appreg rw, @{HOME}/.mozilla/firefox/ lrw, @{HOME}/.mozilla/plugins r, @{HOME}/.mozilla/plugins/ mlrw, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/maps r, @{PROC}/[0-9]*/stat r, @{PROC}/net/if_inet6 r, @{PROC}/sys/vm/heap-stack-gap r, }	over 4 years ago	Ubuntu Gutsy 7.10 beta, Youtube, VLC MP3 Player, FoxyProxy	230	cdine	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/python[12].[0-9]/site-packages r, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago		113	vpilo	Edit	History
opensuse11.0	/usr/bin/truecrypt	# Last Modified: Mon Dec 9 10:06:09 2008 # ------------------------------------------------------------------ # #include <tunables/global> /usr/bin/truecrypt flags=(complain){ #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> capability chown, capability mknod, capability setgid, capability setuid, capability sys_admin, capability sys_resource, /bin/mount mrUx, /bin/umount mrUx, owner /dev/* rwk, owner /dev/mapper/* w, /etc/sudoers r, /media/ r, /media/.hal-mtab r, /proc/meminfo r, /proc/partitions rwk, /proc/stat r, /sbin/dmsetup rix, /sbin/modprobe rix, /tmp/* rwlk, owner /usr/bin/fusermount mrUx, /usr/bin/sudo rix, /usr/bin/truecrypt rix, owner /var/run/sudo/* w, }	over 3 years ago	Finally built one that works	239	rhughes	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_ptrace, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/** r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/bz2.ini r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/curl.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_pgsql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/pgsql.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/zlib.ini r, /proc//attr/current w, /srv/www/htdocs r, /srv/www/htdocs.nicksargen/nick.conf r, /srv/www/htdocs/* r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, owner /usr/lib/** mr, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, owner /usr/lib64/ m, /usr/lib64/ r, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/php5 r, /usr/share/php5/** r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, owner /var/run/nscd/services r, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> deny owner /srv/www/htdocs.wslabs/wp-admin/install.php r, /bin/bash rix, /dev/tty rw, /etc/postfix/dynamicmaps.cf r, /etc/postfix/main.cf r, /proc//attr/current w, owner /srv/www/.htpasswda3 a, /srv/www/.htpasswda3 w, /srv/www/htdocs r, owner /srv/www/htdocs.nicksargen.com/wp-content/uploads/* rw, owner /srv/www/htdocs.nicksargen/ w, owner /srv/www/htdocs.nicksargen/ w, /srv/www/htdocs.nicksargen/ r, owner /srv/www/htdocs.wslabs/ w, owner /srv/www/htdocs.wslabs/ w, /srv/www/htdocs.wslabs/ r, /srv/www/htdocs/** rw, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, owner /tmp/* rw, /usr/sbin/postdrop rix, /usr/sbin/sendmail rix, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/mysql/charsets/Index.xml r, /usr/share/zoneinfo/ r, /var/lib/mysql/mysql.sock w, /var/lib/php/sess_* rwl, owner /var/lib/php5/ r, owner /var/lib/php5/* rwk, /var/log/apache2/** rwl, owner /var/spool/postfix/maildrop/* rw, /var/spool/postfix/public/pickup w, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /dev/urandom r, /proc//attr/current w, /srv/www/htdocs/index.php r, /srv/www/htdocs/wp-admin/index.php r, /var/log/apache2/* w, } }	about 1 year ago		89	bkone	Edit	History
opensuse11.0	/usr/bin/konqueror	#include <tunables/global> /usr/bin/konqueror flags=(complain) { #include <abstractions/base> /bin/bash px -> /bin/bash, /usr/bin/nspluginviewer px, /usr/lib/kde4/libexec/drkonqi rix, }	over 3 years ago		191	purrcy	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox flags=(complain) { #include <abstractions/base> }	over 3 years ago		176	justdewit05	Edit	History
opensuse10.3	/usr/sbin/scanlogd	#include <tunables/global> /usr/sbin/scanlogd { #include <abstractions/base> #include <abstractions/nameservice> capability net_raw, capability setgid, capability setuid, capability sys_chroot, network inet raw, network packet dgram, network packet raw, /usr/sbin/scanlogd mr, }	over 4 years ago	scanlogd	306	kaizer	Edit	History
opensuse10.3	/bin/netstat	#include <tunables/global> /bin/netstat { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability sys_ptrace, /bin/netstat mr, /proc/ r, /proc//cmdline r, /proc//fd/ r, /proc/net/ r, /proc/net/* r, }	over 4 years ago	none	148	cinimod	Edit	History
opensuse10.3	/usr/sbin/avahi-daemon	#include <tunables/global> /usr/sbin/avahi-daemon flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability kill, capability setgid, capability setuid, network inet dgram, /etc/avahi/ r, /etc/avahi/avahi-daemon.conf r, /etc/avahi/hosts r, /etc/avahi/services/ r, /etc/avahi/services/.service r, /proc//fd/ r, /usr/sbin/avahi-daemon mr, /var/run/avahi-daemon/ w, /var/run/avahi-daemon/pid krw, /var/run/avahi-daemon/socket w, /var/run/dbus/system_bus_socket w, }	over 4 years ago	Initial revision	241	dominic	Edit	History
opensuse10.3	/usr/bin/git	#include <tunables/global> /usr/bin/git { #include <abstractions/base> /usr/bin/git mr, }	over 4 years ago	enforce mode	270	dominic	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gai.conf r, /home//.Skype/ rw, /home//.Skype/** krw, /home//.config/Trolltech.conf kr, /home//.fontconfig/** r, /home//.kde/share/config/kioslaverc r, /proc/interrupts r, /usr/bin/skype mr, /usr/share/skype/* kr, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, }	over 4 years ago		311	orat	Edit	History
ubuntu-gutsy	/usr/bin/deluge	#include <tunables/global> /usr/bin/deluge { #include <abstractions/base> /usr/bin/deluge mr, /usr/bin/python2.5 ix, }	over 4 years ago		236	guyome	Edit	History
opensuse10.3	/usr/bin/gimp-2.2	#include <tunables/global> /usr/bin/gimp-2.2 { #include <abstractions/base> /usr/bin/gimp-2.2 mr, }	over 4 years ago	enforce mode	278	dominic	Edit	History
ubuntu-gutsy	/usr/bin/hamachi	#include <tunables/global> /usr/bin/hamachi flags=(complain) { #include <abstractions/base> /tmp/upxBCN1WMIANOG pxrw, /usr/bin/hamachi mr, }	over 4 years ago	hamachi	307	snide	Edit	History
opensuse11.0	/opt/google/chrome/google-chrome	#include <tunables/global> /opt/google/chrome/google-chrome { #include <abstractions/base> #include <abstractions/bash> capability dac_override, capability sys_admin, capability sys_ptrace, /bin/bash rix, /bin/readlink cx, /dev/tty rw, /etc/fonts/** r, /etc/gtk-2.0/gdk-pixbuf.loaders r, owner /home//.Xauthority r, owner /home//.config/google-chrome/Default/Preferences r, owner "/home//.config/google-chrome/Local State" r, owner /home//.config/google-chrome/SingletonSocket w, owner /home//.fonts.conf r, /opt/google/chrome/chrome rix, /opt/google/chrome/chrome-sandbox rix, /opt/google/chrome/chrome.pak mr, /opt/google/chrome/google-chrome r, /opt/google/chrome/locales/en-US.pak mr, owner /proc/ r, /proc//fd/ r, owner /proc//mounts r, /proc/meminfo r, /tmp/.X11-unix/X0 w, /usr/bin/dirname rix, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/0cb4977238439d35570f02dadf93f40f-x86.cache-2 mr, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 mr, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 mr, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 mr, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 mr, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/c16af864172909159ced9a806109b5c1-x86.cache-2 mr, /var/cache/fontconfig/c36a5ca5419b5200dcfc86d54b5d311a-x86.cache-2 r, /var/cache/fontconfig/c952848b32a83a3db68a27ab871288f2-x86.cache-2 mr, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 mr, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 mr, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 mr, profile /bin/readlink { /bin/readlink mr, /dev/urandom r, /etc/ld.so.cache r, /lib64/ld-.so mrpx, /lib64/libc-.so mr, /usr/lib/locale/* r, /usr/lib64/gconv/gconv-modules.cache r, /usr/share/locale/** r, } }	over 2 years ago		217	pone13	Edit	History
opensuse10.3	/sbin/route	#include <tunables/global> /sbin/route flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability net_admin, /proc/net/route r, /sbin/route mr, }	over 4 years ago	few minor changes	178	jmichael	Edit	History
opensuse10.3	/usr/bin/xsetroot	#include <tunables/global> /usr/bin/xsetroot flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/freedesktop.org> /usr/bin/xsetroot mr, /var/lib/gdm/* r, }	over 4 years ago	argh, switch things back to complain for a while	249	jmichael	Edit	History
opensuse10.3	/usr/bin/Xgl	#include <tunables/global> /usr/bin/Xgl flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/user-tmp> capability dac_override, capability ipc_owner, capability setgid, capability setuid, capability sys_admin, /bin/bash ixr, /dev/dri/card* rw, /etc/sysconfig/displaymanager r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home//.gnome2/share/fonts/fonts.dir r, /home/jesse/.gnome2/share/fonts/** r, /proc/meminfo r, /usr/bin/Xgl mr, /usr/bin/Xorg Px, /usr/bin/xkbcomp Px, /usr/lib/dri/.so mr, /var/lib/gdm/ r, /var/lib/xkb/compiled/.xkm rw, /var/log/Xgl..log rw, /var/log/Xgl..log.old w, /var/log/gdm/.log w, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	178	jmichael	Edit	History
opensuse10.3	/sbin/syslog-ng	# $Id$ # ------------------------------------------------------------------ # # Copyright (C) 2006 Novell/SUSE # Copyright (C) 2006 Christian Boltz # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslog-ng { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability fowner, capability fsetid, /dev/log w, /dev/tty10 rw, /dev/xconsole rw, /etc/syslog-ng/* r, /sbin/syslog-ng mr, /var/lib//dev/log w, /var/log/* w, /var/run/syslog-ng.pid w, }	over 4 years ago	none	264	cinimod	Edit	History
opensuse11.0	/usr/bin/expr	#include <tunables/global> /usr/bin/expr { #include <abstractions/base> }	over 2 years ago		112	test2	Edit	History
opensuse10.3	/usr/lib/gnome-panel/mixer_applet2	#include <tunables/global> /usr/lib/gnome-panel/mixer_applet2 flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml r, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /tmp/orbit-*/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/lib/gnome-panel/mixer_applet2 mr, /usr/share/gnome-2.0/ui/GNOME_MixerApplet.xml r, }	over 2 years ago	some bug-buddy rules and other misc updates	151	Amanda	Edit	History
ubuntu-gutsy	/usr/bin/gnome-at-properties	#include <tunables/global> /usr/bin/gnome-at-properties { #include <abstractions/base> /usr/bin/gnome-at-properties mr, }	over 4 years ago	gnome	311	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/albumshaper	#include <tunables/global> /usr/bin/albumshaper { #include <abstractions/base> /bin/dash ix, /usr/bin/albumshaper mr, }	over 4 years ago	gnome	281	hbpteam	Edit	History
opensuse10.3	/usr/bin/gimp-2.2	#include <tunables/global> /usr/bin/gimp-2.2 { #include <abstractions/base> /usr/bin/gimp-2.2 mr, }	over 4 years ago	none	195	cinimod	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/autofs	#include <tunables/global> /etc/NetworkManager/dispatcher.d/autofs flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/autofs mr, /proc/meminfo r, /sbin/chkconfig Px, }	over 4 years ago	argh, switch things back to complain for a while	269	jmichael	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> /usr/bin/skype mr, }	over 4 years ago	skype	130	VlapNET	Edit	History
opensuse10.3	/usr/lib/control-center-2.0/gnome-settings-daemon	#include <tunables/global> /usr/lib/control-center-2.0/gnome-settings-daemon flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/ r, /etc/sound/events/gnome-2.soundlist r, /etc/sound/events/gtk-events-2.soundlist r, /etc/sysconfig/ r, /home// r, /home//.Xauthority r, /home//.Xdefaults r, /home//.esd_auth r, /home//.gnome2/share/ rw, /home//.gnome2/share/cursor-fonts/ rw, /home//.gnome2/share/cursor-fonts/ rw, /home//.gnome2/share/fonts/ rw, /home//.gnome2/share/fonts/fonts.dir rw, /home//.gnome2_private/ w, /home//.gstreamer-0.10/ w, /home//.gstreamer-0.10/registry.i686.xml rw, /home//.gstreamer-0.10/registry.i686.xml.tmp* rw, /home//.gtkrc-1.2-gnome2 rw, /home//.gtkrc-1.2-gnome2.new rw, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/subclasses r, /home/jesse/.gnome2/share/fonts/* rw, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc/meminfo r, /usr/bin/gnome-screensaver Px, /usr/bin/mkfontdir ixr, /usr/bin/mkfontscale ixr, /usr/bin/xrdb Px, /usr/bin/xscreensaver Px, /usr/lib/control-center-2.0/gnome-settings-daemon mr, /usr/lib/control-center-2.0/novell-sysconfig-proxy-helper Px, /usr/lib/nautilus-cd-burner/mapping-daemon Pxmr, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/gdm/applications/ r, /usr/share/gnome-control-center/** r, /var/cache/gnome-vfs/defaults.list r, }	over 4 years ago	minor changes for 10.3 rc2 initial gnome launch	196	jmichael	Edit	History
opensuse11.0	/usr/local/sbin/zabbix_agentd	#include <tunables/global> /usr/local/sbin/zabbix_agentd { #include <abstractions/base> }	about 1 year ago	Zabbix_server_Agent	70	lcardoza	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago	blob	46	VinLeiger	Edit	History
opensuse11.0	/usr/sbin/vsftpd	# $Id: usr.sbin.vsftpd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/vsftpd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, / r, /dev/urandom r, owner /etc/environment r, /etc/fstab r, owner /etc/ftpusers r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/mtab r, /etc/shells r, /etc/vsftpd.* r, /etc/vsftpd/* r, owner /proc//mounts r, /pub r, /pub/* r, owner /srv/ftp/validation/ r, owner /srv/ftp/validation/** wk, owner /srv/ftp/validation// rw, /usr/sbin/vsftpd mrix, /var/log/vsftpd.log w, /var/log/xferlog w, @{HOMEDIRS} r, @{HOME}/* rwl, }	over 2 years ago		123	aurelien sergent	Edit	History
opensuse11.0	/usr/bin/test	#include <tunables/global> /usr/bin/test flags=(complain) { #include <abstractions/base> }	over 3 years ago		230	espenbo	Edit	History
opensuse11.0	/usr/lib/postfix/tlsmgr	#include <tunables/global> /usr/lib/postfix/tlsmgr { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, owner /etc/postfix/dynamicmaps.cf r, owner /etc/postfix/main.cf r, owner /usr/lib/postfix/tlsmgr m, /usr/lib/postfix/tlsmgr r, owner /var/lib/postfix/prng_exch rwk, }	over 3 years ago	several small additions	241	cboltz-server	Edit	History
opensuse10.3	/usr/sbin/postfix	#include <tunables/global> /usr/sbin/postfix { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /bin/bash ixr, /bin/egrep ixr, /bin/grep ixr, /bin/ls ixmr, /bin/sed ixr, /bin/uname ixr, /dev/console rw, /dev/tty rw, /etc/gai.conf r, /etc/postfix/ r, /etc/postfix/dynamicmaps.cf r, /etc/postfix/main.cf r, /etc/postfix/master.cf r, /etc/postfix/post-install r, /etc/postfix/postfix-files r, /etc/postfix/postfix-script ixr, /etc/postfix/relocated.db krw, /etc/postfix/transport.db krw, /etc/postfix/virtual.db krw, /proc/meminfo r, /proc/net/if_inet6 r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/cmp ixr, /usr/bin/find ixr, /usr/lib/postfix/bounce ixr, /usr/lib/postfix/error ixr, /usr/lib/postfix/master ixr, /usr/lib/postfix/pickup ixr, /usr/lib/postfix/qmgr ixr, /usr/lib/postfix/smtp ixr, /usr/lib/postfix/trivial-rewrite ixr, /usr/sbin/ r, /usr/sbin/postconf ixr, /usr/sbin/postfix mr, /usr/sbin/postlog ixr, /usr/sbin/postqueue ixr, /usr/sbin/postsuper ixr, /usr/sbin/sendmail r, /usr/share/doc/packages/postfix/README_FILES/QMQP_README r, /var/run/nscd/services r, /var/spool/postfix/ r, /var/spool/postfix/active/ r, /var/spool/postfix/active/100091AF41CB krw, /var/spool/postfix/active/4BE3E1AF41C1 krw, /var/spool/postfix/active/4CE981AF41C2 krw, /var/spool/postfix/active/644E71AF41C4 krw, /var/spool/postfix/active/A3C3F1AF41B0 krw, /var/spool/postfix/active/BDB231AF41B6 krw, /var/spool/postfix/active/CAE441AF41C0 krw, /var/spool/postfix/bounce/ r, /var/spool/postfix/corrupt/ r, /var/spool/postfix/defer/ r, /var/spool/postfix/defer/1/ r, /var/spool/postfix/defer/1/100091AF41CB kw, /var/spool/postfix/defer/4/ r, /var/spool/postfix/defer/4/4BE3E1AF41C1 kw, /var/spool/postfix/defer/4/4CE981AF41C2 kw, /var/spool/postfix/defer/6/ r, /var/spool/postfix/defer/6/644E71AF41C4 kw, /var/spool/postfix/defer/A/ r, /var/spool/postfix/defer/A/A3C3F1AF41B0 kw, /var/spool/postfix/defer/B/ r, /var/spool/postfix/defer/B/BDB231AF41B6 kw, /var/spool/postfix/defer/C/ r, /var/spool/postfix/defer/C/CAE441AF41C0 kw, /var/spool/postfix/deferred/ r, /var/spool/postfix/deferred/1/ r, /var/spool/postfix/deferred/1/100091AF41CB rw, /var/spool/postfix/deferred/4/ r, /var/spool/postfix/deferred/4/4BE3E1AF41C1 rw, /var/spool/postfix/deferred/4/4CE981AF41C2 rw, /var/spool/postfix/deferred/6/ r, /var/spool/postfix/deferred/6/644E71AF41C4 rw, /var/spool/postfix/deferred/A/ r, /var/spool/postfix/deferred/A/A3C3F1AF41B0 rw, /var/spool/postfix/deferred/B/ r, /var/spool/postfix/deferred/B/BDB231AF41B6 rw, /var/spool/postfix/deferred/C/ r, /var/spool/postfix/deferred/C/CAE441AF41C0 rw, /var/spool/postfix/flush/ r, /var/spool/postfix/hold/ r, /var/spool/postfix/incoming/ r, /var/spool/postfix/maildrop/ r, /var/spool/postfix/pid/master.pid krw, /var/spool/postfix/pid/unix.defer krw, /var/spool/postfix/pid/unix.retry krw, /var/spool/postfix/pid/unix.smtp krw, /var/spool/postfix/private/ r, /var/spool/postfix/private/anvil w, /var/spool/postfix/private/bounce w, /var/spool/postfix/private/bsmtp w, /var/spool/postfix/private/cyrus w, /var/spool/postfix/private/defer w, /var/spool/postfix/private/discard w, /var/spool/postfix/private/error w, /var/spool/postfix/private/ifmail w, /var/spool/postfix/private/lmtp w, /var/spool/postfix/private/local w, /var/spool/postfix/private/maildrop w, /var/spool/postfix/private/procmail w, /var/spool/postfix/private/proxymap w, /var/spool/postfix/private/relay w, /var/spool/postfix/private/retry w, /var/spool/postfix/private/rewrite w, /var/spool/postfix/private/scache w, /var/spool/postfix/private/smtp w, /var/spool/postfix/private/trace w, /var/spool/postfix/private/uucp w, /var/spool/postfix/private/verify w, /var/spool/postfix/private/virtual w, /var/spool/postfix/public/ r, /var/spool/postfix/public/cleanup w, /var/spool/postfix/public/flush w, /var/spool/postfix/public/pickup rw, /var/spool/postfix/public/qmgr rw, /var/spool/postfix/public/showq w, /var/spool/postfix/trace/ r, }	over 4 years ago	work in progress	217	diavlon	Edit	History
opensuse10.3	/usr/sbin/amavisd	#include <tunables/global> /usr/sbin/amavisd { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability dac_read_search, /etc/amavisd.conf r, /etc/amavisd/templates.d/** r, /usr/bin/perl ix, /usr/sbin/amavisd mr, /var/spool/amavis/amavisd.pid r, }	over 4 years ago		273	arclyde	Edit	History
opensuse10.3	/usr/sbin/clamd	#include <tunables/global> /usr/sbin/clamd flags=(complain) { #include <abstractions/base> /usr/sbin/clamd mr, }	over 4 years ago		209	larith	Edit	History
opensuse10.3	/usr/lib/cyrus/bin/imapd	#include <tunables/global> /usr/lib/cyrus/bin/imapd { #include <abstractions/base> #include <abstractions/nameservice> /etc/hosts.allow r, /etc/hosts.deny r, /etc/imapd.* r, /etc/kolab/cert.pem r, /etc/kolab/key.pem r, /mnt/mail/config/ krw, /mnt/mail/spool/ klrw, /usr/lib/cyrus/bin/imapd mr, /var/lib/imap/ krw, /var/run/sasl2/mux w, /var/spool/imap/ krw, }	over 4 years ago		248	arclyde	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	# $Id: usr.lib.firefox.firefox-bin 725 2007-06-11 05:07:41Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/firefox/firefox-bin flags=(complain) { #include <abstractions/X> #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-download> #include <abstractions/user-write> capability sys_nice, /bin/bash ix, /bin/grep mixr, /bin/netstat Px, /bin/ps mixr, /etc/SuSE-release r, /etc/X11/.kstylerc.lock rw, /etc/X11/.qt_plugins_rc.lock rw, /etc/X11/.qtrc.lock rw, /etc/X11/fs/config r, /etc/gnome-vfs-/modules r, /etc/gnome-vfs-/modules/.conf r, /etc/ld.so.cache mr, /etc/mailcap r, /etc/mime.types r, /etc/mozpluggerrc r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/* r, /etc/rpc r, /etc/sysconfig/clock r, /opt/kde3/bin/kde-config mixr, /opt/kde3/share/applications/*.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /tmp/hsperfdata_/[0-9]* m, /usr/bin/m4 rmix, /usr/bin/mozplugger-helper rmix, /usr/java/jre/plugin//ns/libjavaplugin_oji.so mr, /usr/lib/GConf/2/gconfd-2 Px, /usr/lib/browser-extensions/firefox r, /usr/lib/browser-plugins r, /usr/lib/browser-plugins/.so mr, /usr/lib/browser-plugins/.xpt r, /usr/lib/firefox/* r, /usr/lib/firefox/*.so mr, /usr/lib/firefox/firefox-bin mixr, /usr/lib/firefox/firefox.sh ixr, /usr/lib/gnome-vfs-/modules/.so mr, /usr/lib/gtk-/*.so mr, /usr/lib/jvm/java-/* r, /usr/lib/jvm/java-/.so mr, /usr/lib/jvm/java-/jre/bin/java_vm mixr, /usr/lib/ooo-/share/fonts/* r, /usr/lib/pango/*.so mr, /usr/share/applications/.desktop r, /usr/share/applications/defaults.list r, /usr/share/applications/mimeinfo.cache r, /usr/share/ghostscript/fonts r, /usr/share/icons r, /usr/share/icons/ r, /usr/share/locale/ r, /usr/share/mime/ r, /usr/share/pixmaps r, /usr/share/themes/ r, /usr/share/zoneinfo r, /var/X11R6/compose-cache/* r, /var/run/dbus/system_bus_socket w, @{HOME}/.fonts r, @{HOME}/.fonts.cache-1 r, @{HOME}/.gnome2_private w, @{HOME}/.gtk_qt_engine_rc lrw, @{HOME}/.icons r, @{HOME}/.java/deployment/* r, @{HOME}/.java/deployment/cache/javapi/** lrw, @{HOME}/.java/deployment/log/* lw, @{HOME}/.kde/share/config/* r, @{HOME}/.kde/share/config/gtkrc-* r, @{HOME}/.macromedia/ r, "@{HOME}/.macromedia/Macromedia/Flash Player/" rw, @{HOME}/.mailcap r, @{HOME}/.mime.types r, @{HOME}/.mozilla/appreg rw, @{HOME}/.mozilla/firefox/ lrw, @{HOME}/.mozilla/plugins r, @{HOME}/.mozilla/plugins/ mlrw, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/maps r, @{PROC}/[0-9]*/stat r, @{PROC}/net/if_inet6 r, @{PROC}/sys/vm/heap-stack-gap r, }	over 4 years ago	FireFox - Maik	147	maik	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/dhcpcd-hook-samba	#include <tunables/global> /etc/sysconfig/network/scripts/dhcpcd-hook-samba flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/gawk ixr, /etc/sysconfig/network/dhcp r, /etc/sysconfig/network/scripts/dhcpcd-hook-samba mr, /etc/sysconfig/network/scripts/dhcpcd-hook-samba-functions r, /proc/meminfo r, /var/lib/dhcp/dhclient-*.leases r, }	over 4 years ago	argh, switch things back to complain for a while	189	jmichael	Edit	History
ubuntu-gutsy	/usr/bin/metacity	#include <tunables/global> /usr/bin/metacity { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home//.ICEauthority r, /home//.Xauthority r, /home//.metacity/sessions/.ms w, "/home//.themes/Lunacity Silver/metacity-1/.png" r, "/home//.themes/Lunacity Silver/metacity-1/.xml" r, /proc/meminfo r, /usr/bin/metacity mr, }	over 4 years ago	gnome	216	hbpteam	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, ^null-14 flags=(complain) { /dev/urandom r, /etc/fonts/** r, /etc/gai.conf r, /etc/kde4/share/config/kioslaverc r, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/ld.so.cache r, /etc/localtime r, /etc/passwd r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/Trolltech.conf rk, owner /home//.esd_auth r, owner /home//.fontconfig/610f8f1b496ec00a8bbfc0b04d8fc09e-x86-64.cache-2 r, owner /home//.fonts.conf r, owner /home//.kde4/share/config/kdeglobals rk, owner /home//.kde4/share/config/kioslaverc r, owner /home//.kde4/share/config/kmozillahelperrc r, owner /home//.kde4/share/config/oxygenrc r, owner /home//.macromedia/ r, owner /home//.macromedia/Flash_Player/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/CJDM9BZG/ r, owner /home//.macromedia/Flash_Player/#SharedObjects/CJDM9BZG/s.ytimg.com/ r, owner /home//.macromedia/Flash_Player/macromedia.com/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/ r, owner /home//.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/#s.ytimg.com/ r, owner /home//.mozilla/firefox/* rwk, /lib64/libfreebl.so mr, /proc/meminfo r, /proc/stat r, /tmp/ r, /usr/lib64/* mr, /usr/share/X11/ r, /usr/share/fonts/ r, /usr/share/icons/ r, /usr/share/locale/ r, /var/cache/fontconfig/* r, /var/tmp/ r, owner /var/tmp/kdecache-zylo/** rw, } ^null-25 flags=(complain) { owner /home//.mozilla/firefox/* rwk, /proc/stat r, } ^null-5fd flags=(complain) { owner /dev/snd/timer r, owner /etc/hosts r, owner /etc/ld.so.cache r, owner /etc/resolv.conf r, owner /proc/cpuinfo r, owner /proc/stat r, owner /root/.Xauthority r, owner /root/.adobe/Flash_Player/AssetCache/ r, owner /root/.macromedia/Flash_Player/#SharedObjects/ r, owner /root/.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol r, owner /root/.mozilla/firefox/** rwk, owner /tmp/plugtmp/ r, owner /tmp/plugtmp/* w, owner /usr/lib64/xulrunner-1.9.1.6/chrome/classic.jar r, owner /usr/share/** r, } ^null-a2 { /proc/stat r, } }	over 2 years ago		96	Math	Edit	History
opensuse11.0	/usr/bin/tomboy	#include <tunables/global> /usr/bin/tomboy flags=(complain) { #include <abstractions/base> /usr/bin/env ix, }	over 2 years ago	tomboy profile added	106	lasm	Edit	History
ubuntu-gutsy	/etc/cron.daily/logrotate	# $Id: etc.cron.daily.logrotate 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /etc/cron.daily/logrotate { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/mysql> #include <abstractions/nameservice> capability chown, capability dac_override, capability fowner, capability fsetid, / r, /bin/bash mixr, /bin/cat mixr, /bin/cp ixr, /bin/dash ixr, /bin/date ixr, /bin/grep ixr, /bin/gzip mixr, /bin/kill mixr, /bin/logger mixr, /bin/ps ixr, /bin/readlink ixr, /bin/true mixr, /dev/tty wr, /etc/apache2/** r, /etc/cron.daily/logrotate r, /etc/default/apache2 r, /etc/default/rcS r, /etc/drupal/6/apache.conf r, /etc/init.d/* mixr, /etc/javascript-common/javascript-common.conf r, /etc/logrotate.conf r, /etc/logrotate.d r, /etc/logrotate.d/ r, /etc/logrotate.d/* r, /etc/lsb-base-logging.sh r, /etc/mysql/debian.cnf r, /etc/roundcube/apache.conf r, /etc/subdomain.d r, /home// r, /lib/lsb/ r, /proc/ r, /proc//mounts r, /proc//stat r, /proc//status r, /proc/filesystems r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, /proc/version r, /tmp w, /tmp/file wl, /tmp/logrot* wlr, /usr/bin/env ixr, /usr/bin/killall mixr, /usr/bin/mysqladmin ixr, /usr/lib/apache2/modules/* mr, /usr/sbin/apache2 ixr, /usr/sbin/apache2ctl ixr, /usr/sbin/logrotate mixr, /var/lib/logrotate.status wr, /var/lib/logrotate/status rw, /var/lib/privoxy/log/ rwl, /var/lib64/privoxy/log/ rwl, /var/lock/samba r, /var/log r, /var/log/** wrl, /var/run/apache2.pid r, /var/run/httpd.pid r, /var/run/mysqld/mysqld.sock w, /var/run/syslogd.pid r, /var/spool/slrnpull wr, /var/spool/slrnpull/log* wrl, /var/www/konyvtar.mezobereny.hu./lstat/katnaplo w, /var/www/konyvtar.mezobereny.hu./lstat/katstate r, /var/www/konyvtar.mezobereny.hu./lstat/katstatg ixr, /var/www/konyvtar.mezobereny.hu./lstat/katstath ixr, /var/www/konyvtar.mezobereny.hu./lstat/kvtnaplo w, /var/www/konyvtar.mezobereny.hu./lstat/kvtstate r, /var/www/konyvtar.mezobereny.hu./lstat/kvtstatg ixr, /var/www/konyvtar.mezobereny.hu./lstat/kvtstath ixr, @{PROC} r, @{PROC}/[1-9]* r, }	over 3 years ago		191	stive	Edit	History
opensuse11.0	/opt/kde3/bin/ark	#include <tunables/global> /opt/kde3/bin/ark flags=(complain) { #include <abstractions/base> /opt/kde3/lib/libso mr, }	over 3 years ago	1	245	maku	Edit	History
opensuse10.3	usr/bin/file	#include <tunables/global> profile usr/bin/file { #include <abstractions/base> /etc/magic r, /usr/bin/file mr, /usr/share/misc/magic.mgc r, }	over 3 years ago	test profile - please don't use	241	jjohansen	Edit	History
opensuse10.3	/sbin/syslog-ng	# $Id$ # ------------------------------------------------------------------ # # Copyright (C) 2006 Novell/SUSE # Copyright (C) 2006 Christian Boltz # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslog-ng { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability fowner, capability fsetid, /dev/log w, /dev/tty10 rw, /dev/xconsole rw, /etc/syslog-ng/* r, /sbin/syslog-ng mr, /var/lib//dev/log w, /var/log/* w, /var/run/syslog-ng.pid w, }	over 4 years ago	Initial Revision	382	novell	Edit	History
opensuse10.3	/opt/kde3/bin/kpdf	#include <tunables/global> /opt/kde3/bin/kpdf flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kpdf mr, /opt/kde3/lib64/libDCOP.so.* mr, /opt/kde3/lib64/libkdecore.so.* mr, /opt/kde3/lib64/libkdefx.so.* mr, /opt/kde3/lib64/libkdesu.so.* mr, /opt/kde3/lib64/libkdeui.so.* mr, /opt/kde3/lib64/libkio.so.* mr, /opt/kde3/lib64/libkparts.so.* mr, /opt/kde3/lib64/libkwalletclient.so.* mr, /tmp/.X11-unix/* w, }	over 4 years ago	/temo/test	206	Markus	Edit	History
opensuse11.0	/usr/lib64/thunderbird/thunderbird.sh	#include <tunables/global> /usr/lib64/thunderbird/thunderbird.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago	primary profile	147	estellnb	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	erstellt	117	server	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/netcontrol_global_hooks	#include <tunables/global> /etc/NetworkManager/dispatcher.d/netcontrol_global_hooks flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/netcontrol_global_hooks mr, /etc/sysconfig/network/config r, /etc/sysconfig/network/if-down.d/ r, /etc/sysconfig/network/if-up.d/ r, /etc/sysconfig/network/scripts/50-ntp Px, /etc/sysconfig/network/scripts/SuSEfirewall2 Px, /etc/sysconfig/network/scripts/dhcpcd-hook-samba Px, /etc/sysconfig/network/scripts/functions r, /etc/sysconfig/network/scripts/functions.common r, /proc/meminfo r, }	over 4 years ago	argh, switch things back to complain for a while	268	jmichael	Edit	History
opensuse10.3	/usr/bin/mkfontscale	#include <tunables/global> /usr/bin/mkfontscale { #include <abstractions/base> /home// r, /home//.fonts/ r, /home/*/.fonts/fonts.dir rw, /usr/bin/mkfontscale mr, }	over 4 years ago	none	221	cinimod	Edit	History
opensuse10.3	/usr/lib/GConf/2/gconf-sanity-check-2	#include <tunables/global> /usr/lib/GConf/2/gconf-sanity-check-2 flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home//.Xauthority r, /tmp/gconf-test-locking-file- klrw, /usr/lib/GConf/2/gconf-sanity-check-2 mr, }	over 4 years ago	argh, switch things back to complain for a while	258	jmichael	Edit	History
opensuse11.0	/usr/sbin/pure-ftpd	#include <tunables/global> /usr/sbin/pure-ftpd flags=(complain) { #include <abstractions/base> }	about 1 year ago		100	mskobal	Edit	History
opensuse11.0	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld { #include <abstractions/base> }	over 2 years ago	mysql	145	naren_bishayee	Edit	History
ubuntu-gutsy	/usr/sbin/proftpd	#include <tunables/global> /usr/sbin/proftpd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/wutmp> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, /etc/ftpusers r, /etc/pam.d/* r, /etc/proftpd/* r, /etc/shadow r, /etc/shells r, /etc/ssl/openssl.cnf r, /home/ r, /home/** rw, /home// ram, /lib/security/pam_.so mr, /proc//mounts r, /proc/filesystems r, /usr/lib/* mr, /usr/sbin/proftpd mr, /usr/share/drupal6/ r, /var/log/proftpd/* w, /var/run/proftpd.pid w, /var/run/proftpd/proftpd.delay krw, /var/run/proftpd/proftpd.scoreboard krw, /var/run/proftpd/proftpd.sock w, /var/run/proftpd/test.sock w, /var/www/** rw, }	over 3 years ago		201	stive	Edit	History
opensuse11.0	/usr/bin/Vuze.sh	#include <tunables/global> /usr/bin/Vuze.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash mrix, /bin/chmod rix, /bin/grep rix, /bin/sed rix, /bin/uname rix, /dev/tty rw, /etc/java/java.conf r, owner /home//azScript rw, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, owner /tmp/Vuze.log w, /usr/bin/Vuze.sh rix, /usr/bin/build-classpath rix, /usr/lib64/* mr, /usr/lib64/jvm/java-1.6.0-sun-1.6.0.u6/jre/bin/java px, /usr/lib64/jvm/java-1.6.0-sun-1.6.0.u6/jre/bin/java.bin rix, /usr/share/java-utils/java-functions r, }	over 2 years ago	Vuze	198	caidagalaxia	Edit	History
opensuse10.3	/usr/bin/ggreeter	#include <tunables/global> /usr/bin/ggreeter { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/bash ixr, /etc/mono/config r, /home//.Xauthority r, /home//.wapi/shared_data-* mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/bug-buddy ixr, /usr/bin/ggreeter mr, /usr/bin/mono ixr, /usr/lib/ggreeter/ggreeter.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/*.dll mr, }	over 4 years ago	none	151	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/meld	#include <tunables/global> /usr/bin/meld { #include <abstractions/base> /usr/bin/env ix, /usr/bin/meld mr, }	over 4 years ago	gnome	196	hbpteam	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/nfs	#include <tunables/global> /etc/NetworkManager/dispatcher.d/nfs { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/ls ixmr, /etc/NetworkManager/dispatcher.d/nfs mr, /etc/init.d/rc5.d/ r, /proc/meminfo r, /sbin/runlevel Px, }	over 4 years ago	none	243	cinimod	Edit	History
opensuse10.3	/usr/bin/package-manager	#include <tunables/global> /usr/bin/package-manager flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/package-manager mr, }	over 4 years ago	argh, switch things back to complain for a while	294	jmichael	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, owner /etc/gai.conf r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/ldap.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_pgsql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/pgsql.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, /srv/www/htdocs r, /srv/www/htdocs/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, owner /usr/lib/ m, owner /usr/lib/ r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, owner /var/run/nscd/services r, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago	apache1	140	mat271180	Edit	History
opensuse10.3	/usr/bin/Xvnc	#include <tunables/global> /usr/bin/Xvnc flags=(complain) { #include <abstractions/base> /usr/bin/Xvnc mr, }	over 3 years ago	andrew	255	gankov	Edit	History
opensuse10.3	/usr/bin/gnome-appearance-properties	#include <tunables/global> /usr/bin/gnome-appearance-properties flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.beagle/socket w, /home//.esd_auth r, /home//.fontconfig/ lrw, /home//.gnome2/backgrounds.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel.* rw, /home//.themes/ r, /home//.thumbnails/** rw, /usr/bin/gnome-appearance-properties mr, /usr/share/ghostscript/fonts/ r, /usr/share/gnome-background-properties/ r, /usr/share/gnome-background-properties/.xml r, /usr/share/gnome-control-center/glade/appearance.glade r, /usr/share/gnome-control-center/pixmaps/.png r, /usr/share/gnome/wm-properties/ r, /usr/share/gnome/wm-properties/.desktop r, /usr/share/mime/*.xml r, /usr/share/themes/ r, }	over 4 years ago	gnome appearance properties profile and eog updates	217	jmichael	Edit	History
opensuse10.3	/opt/kde3/bin/ktorrent	#include <tunables/global> /opt/kde3/bin/ktorrent flags=(complain) { #include <abstractions/base> network all, /home//.DCOPserver_linux__0 r, /home//.ICEauthority r, /opt/kde3/bin/ktorrent mr, /opt/kde3/lib/libso mr, /tmp/.ICE-unix/dcop2923-1200365524 w, }	over 4 years ago		221	vania-pooh	Edit	History
ubuntu-gutsy	/usr/bin/kradio	#include <tunables/global> /usr/bin/kradio { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/dash ixr, /etc/kde3/.areas r, /etc/kde3/kdebugrc r, /etc/qt3/qt_plugins_3.3rc r, /etc/xdg/ r, /etc/xdg/menus/ r, /hde/share/config/.tmp w, /home// rw, /home//.DCOPserver_int80h_* rw, /home//.DCOPserver_int80h_:0 w, /home//.ICEauthority lrw, /home//.ICEauthority- lw, /home//.Xauthority r, /home//.config/ r, /home//.icons/OSX_Cursors_v0.2/* r, /home//.kde/share/ r, /home//.kde/share/applnk/ r, /home//.kde/share/apps/kconf_update/ r, /home//.kde/share/apps/kradio/.krp rw, /home//.kde/share/config/ w, /home//.kde/share/config/.lock lw, /home//.kde/share/config/.new rw, /home//.kde/share/config/.tmp w, /home//.kde/share/config/kconf_updaterc rw, /home//.kde/share/config/kdedrc rw, /home//.kde/share/config/kdeglobals rw, /home//.kde/share/config/kioslaverc r, /home//.kde/share/config/kradiorc rw, /home//.kde/share/config/uiserverrc rw, /home//.kde/share/icons/KDE_Crystal_Diamond_2.7_Ubuntu_Mod/ r, /home//.kde/share/icons/OS-L-IconSet-Buildkit/ r, /home//.kde/share/mimelnk/ r, /home//.kde/share/services/ r, /home//.kde/share/servicetypes/ r, /home//.qt/.3rc r, /home//.qt/.lock krw, /proc//cmdline r, /proc/meminfo r, /usr/bin/dcopserver ixr, /usr/bin/dcopserver_shutdown ixr, /usr/bin/iceauth ixr, /usr/bin/kbuildsycoca ixr, /usr/bin/kconf_update ixr, /usr/bin/kded ixr, /usr/bin/kdeinit ixr, /usr/bin/kio_uiserver ixr, /usr/bin/kioslave Pxr, /usr/bin/klauncher ixr, /usr/bin/kradio mr, /usr/bin/lnusertemp ixr, /usr/lib/ mr, /usr/local/share/ r, /usr/local/share/applications/ r, /usr/local/share/icons/hicolor/ r, /usr/share/ r, /usr/share/applications/ r, /usr/share/applications/kde/ r, /usr/share/applications/screensavers/ r, /usr/share/applnk/ r, /usr/share/applnk/.hidden/ r, /usr/share/applnk/Multimedia/ r, /usr/share/applnk/System/ r, /usr/share/applnk/System/ScreenSavers/ r, /usr/share/apps/LICENSES/GPL_V2 r, /usr/share/apps/kconf_update/ r, /usr/share/apps/kio_uiserver/icons/crystalsvg// r, /usr/share/apps/kio_uiserver/icons/crystalsvg/16x16/.png r, /usr/share/apps/kradio/icons/hicolor// r, /usr/share/apps/kradio/icons/hicolor/16x16/ r, /usr/share/apps/kradio/icons/hicolor/22x22/ r, /usr/share/apps/kradio/icons/hicolor/32x32/.png r, /usr/share/apps/kradio/icons/hicolor/48x48/.png r, /usr/share/gdm/ r, /usr/share/gdm/applications/ r, /usr/share/mimelnk/ r, /usr/share/mimelnk/all/ r, /usr/share/mimelnk/application/ r, /usr/share/mimelnk/audio/ r, /usr/share/mimelnk/image/ r, /usr/share/mimelnk/inode/ r, /usr/share/mimelnk/media/ r, /usr/share/mimelnk/message/ r, /usr/share/mimelnk/model/ r, /usr/share/mimelnk/multipart/ r, /usr/share/mimelnk/text/ r, /usr/share/mimelnk/uri/ r, /usr/share/mimelnk/video/ r, /usr/share/services/ r, /usr/share/services/kded/ r, /usr/share/services/kresources/ r, /usr/share/services/kresources/kabc/ r, /usr/share/servicetypes/ r, }	over 4 years ago		241	jophn	Edit	History
opensuse10.3	/usr/sbin/mysqld-max	#include <tunables/global> /usr/sbin/mysqld-max { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability setgid, capability setuid, network inet tcp, /etc/ld.so.preload r, /etc/my.cnf r, /usr/sbin/mysqld r, /usr/sbin/mysqld-max mr, /usr/share/mysql/ r, /var/db/nscd/passwd r, /var/lib/distccd/ lkrw, /var/lib/mysql/ r, /var/lib/mysql/** klrw, /var/run/mysqld/* lrw, }	over 3 years ago		247	shimingzhou	Edit	History
opensuse11.0	/usr/bin/which	#include <tunables/global> /usr/bin/which { #include <abstractions/base> /usr/bin/which mr, }	over 3 years ago	...	167	knotwurk	Edit	History
opensuse10.3	/opt/VirtualBox-1.5.6/VBox.sh	#include <tunables/global> /opt/VirtualBox-1.5.6/VBox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /opt/VirtualBox-1.5.6/VBox.sh mr, }	over 4 years ago		182	R03L	Edit	History
opensuse10.3	/usr/bin/ggreeter	#include <tunables/global> /usr/bin/ggreeter { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/bash ixr, /etc/mono/config r, /home//.Xauthority r, /home//.wapi/shared_data-* mrw, /home//.wapi/shared_fileshare- mrw, /proc//maps r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/ngroups_max r, /usr/bin/bug-buddy ixr, /usr/bin/ggreeter mr, /usr/bin/mono ixr, /usr/lib/ggreeter/ggreeter.exe mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/*.dll mr, }	over 4 years ago	Import of jmichaels profiles	175	dominic	Edit	History
opensuse10.3	/home/dominic/bin/mycat	#include <tunables/global> /home/dominic/bin/mycat { #include <abstractions/base> /home/dominic/bin/mycat mr, /proc/mdstat r, }	over 4 years ago	Testing	157	dominic	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/nfs	#include <tunables/global> /etc/NetworkManager/dispatcher.d/nfs { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/ls ixmr, /etc/NetworkManager/dispatcher.d/nfs mr, /etc/init.d/rc5.d/ r, /proc/meminfo r, /sbin/runlevel Px, }	over 4 years ago	Import of jmichaels profiles	257	dominic	Edit	History
opensuse11.0	/usr/sbin/nmbd	#include <tunables/global> /usr/sbin/nmbd { }	4 months ago		28	givanchev	Edit	History
opensuse11.0	/usr/sbin/sshd	# $Id: usr.sbin.sshd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # will need to revalidate this profile once we finish re-architecting # the change_hat patch. # #include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_tty_config, /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/environment r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/modules.conf r, /etc/motd r, /etc/ssh/* r, /etc/ssh/moduli r, /sbin/nologin Ux, /tmp/ssh-/agent.[0-9] rwl, /tmp/ssh-[0-9]/ w, /usr/sbin/sshd mrix, /var/run w, /var/run/sshd{,.init}.pid wl, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]/fd/ r, @{PROC}/[0-9]/loginuid w, @{PROC}/[0-9]/mounts r, ^AUTHENTICATED flags=(complain) { #include <abstractions/authentication> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability setgid, capability setuid, capability sys_tty_config, /dev/log w, /dev/ptmx rw, /etc/default/passwd r, /etc/localtime r, /etc/login.defs r, /etc/motd r, /tmp/ssh-/agent.[0-9]* rwl, /tmp/ssh-[0-9]/ w, } ^EXEC flags=(complain) { #include <abstractions/base> /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /sbin/nologin Ux, } ^PRIVSEP flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, } ^PRIVSEP_MONITOR flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability setgid, capability setuid, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ssh/moduli r, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]*/mounts r, } }	over 3 years ago		288	liviudm	Edit	History
opensuse10.3	/bin/netstat	# $Id: bin.netstat 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # evolution, amongst other things, calls this program. I didn't want to # give evolution access to significant chunks of /proc # #include <tunables/global> /bin/netstat { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, /bin/netstat rmix, /etc/networks r, /proc//fd/ r, /proc/net/ r, /proc/net/dev r, /proc/net/if_inet6 r, /proc/net/unix r, @{PROC} r, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/fd r, @{PROC}/net r, @{PROC}/net/ r, }	over 3 years ago	aktualisierung	142	kladie	Edit	History
ubuntu-gutsy	/usr/bin/oofromtemplate	#include <tunables/global> /usr/bin/oofromtemplate { #include <abstractions/base> /bin/dash ix, /usr/bin/oofromtemplate mr, }	over 4 years ago	gnome	252	hbpteam	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/SuSEfirewall2	#include <tunables/global> /etc/sysconfig/network/scripts/SuSEfirewall2 { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/sysconfig/network/config r, /etc/sysconfig/network/ifcfg-* r, /etc/sysconfig/network/scripts/SuSEfirewall2 mr, /proc/meminfo r, }	over 4 years ago	none	162	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh flags=(complain) { #include <abstractions/base> /usr/bin/ssh mr, }	over 4 years ago	U	392	roger	Edit	History
ubuntu-gutsy	/usr/bin/gimp-2.4	#include <tunables/global> /usr/bin/gimp-2.4 { #include <abstractions/base> /usr/bin/gimp-2.4 mr, }	over 4 years ago	gnome	269	hbpteam	Edit	History
opensuse10.3	/usr/bin/manpath	#include <tunables/global> /usr/bin/manpath { #include <abstractions/base> /etc/manpath.config r, /usr/bin/manpath mr, }	over 4 years ago	Import of jmichaels profiles	312	dominic	Edit	History
opensuse10.3	/usr/bin/gnome-volume-manager	#include <tunables/global> /usr/bin/gnome-volume-manager { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc/*/mounts r, /usr/bin/bug-buddy ixr, /usr/bin/gnome-volume-manager mr, /var/run/resmgr/classes/desktop/ r, }	over 4 years ago	Import of jmichaels profiles	310	dominic	Edit	History
opensuse10.3	/usr/sbin/apxs2	#include <tunables/global> /usr/sbin/apxs2 { #include <abstractions/base> #include <abstractions/perl> /usr/bin/perl ix, /usr/sbin/apxs2 mr, }	over 3 years ago	1	384	kungfu	Edit	History
opensuse10.3	/usr/bin/Xorg	#include <tunables/global> /usr/bin/Xorg { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability chown, capability dac_override, capability fsetid, capability ipc_owner, capability mknod, capability setgid, capability setuid, capability sys_admin, capability sys_rawio, capability sys_tty_config, /bin/bash ixr, /dev/agpgart rw, /dev/apm_bios rw, /dev/dri/ w, /dev/dri/card* rw, /dev/input/mice rw, /dev/mem mrw, /dev/tty* rw, /etc/X11/xorg.conf r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home//.gnome2/share/fonts/fonts.dir r, /proc/bus/pci/ rw, /proc/meminfo r, /proc/mtrr w, /proc/sys/kernel/modprobe r, /sbin/modprobe Px, /sys/bus/pci/devices/ r, /sys/devices//resource r, /sys/devices/*/rom rw, /usr/bin/Xorg mr, /usr/bin/xkbcomp Px, /usr/lib/xorg/modules/drivers/.so mr, /usr/lib/xorg/modules/input/.so mr, /var/lib/gdm/ r, /var/lib/xkb/compiled/.xkm rw, /var/log/Xorg..log rw, /var/log/Xorg..log.old w, /var/log/gdm/.log w, /var/run/acpid.socket w, }	over 4 years ago	Import of jmichaels profiles	214	dominic	Edit	History
opensuse10.3	/home/dominic/bin/mycat	#include <tunables/global> /home/dominic/bin/mycat { #include <abstractions/base> /home/dominic/bin/mycat mr, /proc/mdstat r, }	over 4 years ago	none	164	cinimod	Edit	History
opensuse10.3	/usr/lib/NetworkManager/nm-crash-logger	#include <tunables/global> /usr/lib/NetworkManager/nm-crash-logger flags=(complain) { #include <abstractions/base> /usr/lib/NetworkManager/nm-crash-logger mr, }	over 4 years ago	initial nm-crash-logger profile	304	jmichael	Edit	History
opensuse11.0	/usr/sbin/httpd2-worker	#include <tunables/global> /usr/sbin/httpd2-worker { #include <abstractions/base> #include <abstractions/nis> capability chown, capability net_bind_service, capability setgid, capability setuid, network stream, owner /etc/apache2/* r, /etc/apache2/conf.d/ r, owner /etc/apache2/sysconfig.d/include.conf r, owner /etc/apache2/sysconfig.d/loadmodule.conf r, owner /etc/apache2/vhosts.d/ r, owner /etc/apache2/vhosts.d/accounting.conf r, owner /etc/group r, owner /etc/host.conf r, owner /etc/hosts r, owner /etc/mime.types r, owner /etc/nsswitch.conf r, owner /etc/passwd r, owner /etc/resolv.conf r, owner /usr/lib/** r, owner /usr/sbin/httpd2-worker r, owner /var/log/apache2/access_log a, owner /var/log/apache2/accounting a, owner /var/log/apache2/dummy-host.example.com-error_log a, owner /var/log/apache2/error_log a, owner /var/run/cgisock.3773 w, owner /var/run/httpd2.pid a, owner /var/run/nscd/socket w, }	over 3 years ago		257	stranger	Edit	History
opensuse10.3	/etc/sysconfig/network/scripts/SuSEfirewall2	#include <tunables/global> /etc/sysconfig/network/scripts/SuSEfirewall2 { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/perl> #include <abstractions/user-tmp> capability net_admin, capability net_raw, network inet raw, network inet6 raw, /bin/bash ixr, /bin/logger ixr, /bin/mktemp ixr, /bin/rm ixr, /etc/modprobe.conf r, /etc/modprobe.conf.local r, /etc/modprobe.d/ r, /etc/modprobe.d/* r, /etc/sysconfig/SuSEfirewall2 r, /etc/sysconfig/network/config r, /etc/sysconfig/network/ifcfg-* r, /etc/sysconfig/network/scripts/SuSEfirewall2 mr, /etc/sysconfig/scripts/SuSEfirewall2-batch r, /etc/sysconfig/scripts/SuSEfirewall2-rpcinfo r, /lib/modules//kernel/net/ipv4/netfilter/ip_tables.ko krw, /lib/modules//kernel/net/ipv4/netfilter/nf_conntrack_ipv4.ko krw, /lib/modules//kernel/net/ipv6/ipv6.ko krw, /lib/modules//kernel/net/ipv6/netfilter/.ko krw, /lib/modules//kernel/net/netfilter/.ko krw, /lib/modules//modules.alias r, /lib/modules//modules.dep r, /proc/meminfo r, /proc/modules r, /proc/sys/net/ipv4/* w, /proc/sys/net/ipv4/conf r, /sbin/SuSEfirewall2 ixr, /sbin/modinfo ixr, /sbin/modprobe ixr, /sys/class/net/ r, /usr/bin/getopt ixr, /usr/bin/perl ixr, /usr/bin/tty ixr, /usr/sbin/ip6tables ixr, /usr/sbin/ip6tables-batch ixr, /usr/sbin/iptables ixr, /usr/sbin/iptables-batch ixr, /var/lock/SuSEfirewall2.pid w, /var/run/nscd/services r, }	over 4 years ago	more kde4 testing	181	dominic	Edit	History
opensuse10.3	/usr/bin/manpath	#include <tunables/global> /usr/bin/manpath { #include <abstractions/base> /etc/manpath.config r, /usr/bin/manpath mr, }	over 4 years ago	none	318	cinimod	Edit	History
opensuse10.3	/usr/bin/gnome-volume-manager	#include <tunables/global> /usr/bin/gnome-volume-manager { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc/*/mounts r, /usr/bin/bug-buddy ixr, /usr/bin/gnome-volume-manager mr, /var/run/resmgr/classes/desktop/ r, }	over 4 years ago	none	307	cinimod	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox flags=(complain) { #include <abstractions/base> }	about 1 year ago	FF	45	flywheel	Edit	History
opensuse11.0	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> deny /dev/tty rw, deny /etc/ssh/ssh_config r, deny owner /home/warezwaldo/.ssh/ w, deny owner /home/warezwaldo/.ssh/known_hosts ra, deny /usr/bin/ssh r, deny /var/run/nscd/passwd r, deny /var/run/nscd/services r, deny /var/run/nscd/socket w, /usr/lib/ssh/ssh-askpass rix, }	about 1 year ago	/home/alex/.AppArmor/.changelog-alex	80	ramatevish	Edit	History
opensuse11.0	/usr/bin/xauth	#include <tunables/global> /usr/bin/xauth flags=(complain) { #include <abstractions/base> }	over 2 years ago	teaming	166	robertsonreis	Edit	History
opensuse11.0	/usr/sbin/sshd	# $Id: usr.sbin.sshd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # will need to revalidate this profile once we finish re-architecting # the change_hat patch. # #include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability audit_control, capability chown, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_ptrace, capability sys_tty_config, /bin/ash Ux, /bin/bash rUx, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/environment r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/modules.conf r, /etc/motd r, /etc/ssh/* r, /etc/ssh/moduli r, /sbin/nologin Ux, /tmp/ssh-/agent.[0-9] rwl, /tmp/ssh-[0-9]/ w, /usr/sbin/sshd mrix, /var/run w, /var/run/sshd{,.init}.pid wl, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]/fd/ r, @{PROC}/[0-9]/loginuid w, @{PROC}/[0-9]/mounts r, @{PROC}/filesystems r, ^AUTHENTICATED flags=(complain) { #include <abstractions/authentication> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/wutmp> capability setgid, capability setuid, capability sys_tty_config, /dev/log w, /dev/ptmx rw, /etc/default/passwd r, /etc/localtime r, /etc/login.defs r, /etc/motd r, /tmp/ssh-/agent.[0-9]* rwl, /tmp/ssh-[0-9]/ w, } ^EXEC flags=(complain) { #include <abstractions/base> /bin/ash Ux, /bin/bash Ux, /bin/bash2 Ux, /bin/bsh Ux, /bin/csh Ux, /bin/ksh Ux, /bin/sh Ux, /bin/tcsh Ux, /bin/zsh Ux, /sbin/nologin Ux, } ^PRIVSEP flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, } ^PRIVSEP_MONITOR flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/wutmp> capability chown, capability setgid, capability setuid, /dev/ptmx rw, /dev/pts/[0-9]* rw, /dev/urandom r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ssh/moduli r, @{HOME}/.ssh/authorized_keys{,2} r, @{PROC}/[0-9]*/mounts r, } }	over 3 years ago	test	209	KarlisBidins	Edit	History
opensuse10.3	/usr/bin/Xorg	#include <tunables/global> /usr/bin/Xorg { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability chown, capability dac_override, capability fsetid, capability ipc_owner, capability mknod, capability setgid, capability setuid, capability sys_admin, capability sys_rawio, capability sys_tty_config, /bin/bash ixr, /dev/agpgart rw, /dev/apm_bios rw, /dev/dri/ w, /dev/dri/card* rw, /dev/input/mice rw, /dev/mem mrw, /dev/tty* rw, /etc/X11/xorg.conf r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home//.gnome2/share/fonts/fonts.dir r, /proc/bus/pci/ rw, /proc/meminfo r, /proc/mtrr w, /proc/sys/kernel/modprobe r, /sbin/modprobe Px, /sys/bus/pci/devices/ r, /sys/devices//resource r, /sys/devices/*/rom rw, /usr/bin/Xorg mr, /usr/bin/xkbcomp Px, /usr/lib/xorg/modules/drivers/.so mr, /usr/lib/xorg/modules/input/.so mr, /var/lib/gdm/ r, /var/lib/xkb/compiled/.xkm rw, /var/log/Xorg..log rw, /var/log/Xorg..log.old w, /var/log/gdm/.log w, /var/run/acpid.socket w, }	over 4 years ago	none	218	cinimod	Edit	History
opensuse10.3	/sbin/ldconfig	#include <tunables/global> /sbin/ldconfig flags=(complain) { #include <abstractions/base> /etc/ld.so.cache mrw, /etc/ld.so.cache~ rw, /etc/ld.so.conf r, /etc/ld.so.conf.d/ r, /etc/ld.so.conf.d/* r, /lib/ r, /opt/kde3/lib/ r, /sbin/ldconfig mr, /usr/X11R6/lib/ r, /usr/lib/ r, /usr/local/lib/ r, /var/cache/ldconfig/aux-cache rw, /var/cache/ldconfig/aux-cache~ rw, }	over 4 years ago	flesh out the ldconfig profile a little	191	jmichael	Edit	History
opensuse10.3	/usr/local/bin/amule	#include <tunables/global> /usr/local/bin/amule { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/bash ixr, /bin/uname ixr, /dev/tty rw, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.aMule/ rw, /home//.aMule/* krw, /home//.aMule/Incoming/ rw, /home//.aMule/Incoming/* rw, /home//.aMule/Temp/ rw, /home//.aMule/Temp/.backup rw, /home//.aMule/Temp/.bak rw, /home//.aMule/Temp/.met rw, /home//.aMule/Temp/.part rw, /home//.esd_auth r, /home//.fontconfig/.cache-2 r, /home//.fonts/ r, /home//.gnome2/Totem/* rw, /home//.gnome2_private/ w, /home//.gstreamer-0.10/.xml r, /home//.gstreamer-0.10/plugins/ r, /home//.gstreamer-0.10/plugins/.so mr, /home//.icons/ r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/subclasses r, /home//.recently-used.xbel rw, /home//.recently-used.xbel.* rw, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/orbit-usr01/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/mplayer ixr, /usr/bin/totem ixr, /usr/local/bin/amule ixr, /usr/local/share/pixmaps/ r, /usr/share/applications/*.desktop r, /usr/share/gnome/autostart/.desktop r, /usr/share/locale-bundle/de/LC_MESSAGES/.mo r, /usr/share/totem/.png r, /usr/share/totem/.ui r, /usr/share/totem/.xml r, /var/cache/libx11/compose/* r, }	over 4 years ago	13	334	anonymus1	Edit	History
ubuntu-gutsy	/usr/bin/bug-buddy	#include <tunables/global> /usr/bin/bug-buddy { #include <abstractions/base> /usr/bin/bug-buddy mr, }	over 4 years ago	gnome	165	hbpteam	Edit	History
ubuntu-gutsy	/sbin/portmap	# $Id: sbin.portmap 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/portmap { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, /etc/bindresvport.blacklist r, /etc/hosts.allow r, /etc/hosts.deny r, /sbin/portmap rmix, }	over 3 years ago		248	stive	Edit	History
opensuse11.0	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox { #include <abstractions/base> #include <abstractions/bash> /bin/bash rix, owner /etc/resolv.conf r, owner /root/.beagle/ToIndex/.firefox-beagle-web-246ee772548c0b40ee205f075fb7c9cc rw, owner /root/.beagle/ToIndex/.firefox-beagle-web-b595cb69449dc7f1e52e58c08f2fa692 a, owner /root/.beagle/ToIndex/.firefox-beagle-web-c9c38438ee5df3a9b3b08e70830b5579 rw, owner /root/.beagle/ToIndex/firefox-beagle-web-246ee772548c0b40ee205f075fb7c9cc w, owner /root/.beagle/ToIndex/firefox-beagle-web-b595cb69449dc7f1e52e58c08f2fa692 a, owner /root/.beagle/ToIndex/firefox-beagle-web-c9c38438ee5df3a9b3b08e70830b5579 w, owner /root/.mozilla/firefox/ljgw8qhc.default/ r, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/ rw, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/ rw, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/Cache/ rw, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/Cache/3D0C8963d01 w, owner /root/.mozilla/firefox/ljgw8qhc.default/Cache.Trash/Trash/Cache/3D0F8963d01 w, }	over 3 years ago	egal	171	hans	Edit	History
opensuse11.0	/bin/hostname	#include <tunables/global> /bin/hostname { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability sys_admin, /bin/hostname mr, }	over 3 years ago	allow to change hostname.	232	poeml	Edit	History
opensuse11.0	/usr/bin/dircolors	#include <tunables/global> /usr/bin/dircolors { #include <abstractions/base> }	over 2 years ago	x	149	pone13	Edit	History
opensuse10.3	/usr/bin/xfs	#include <tunables/global> /usr/bin/xfs { #include <abstractions/base> capability setgid, capability setuid, network inet, network inet6, /etc/X11/fontpath.d rk, /etc/X11/fontpath.d/ rk, /etc/X11/fontpath.d/** r, /etc/X11/fs/config r, /etc/group r, /etc/ld.so.preload r, /etc/nsswitch.conf r, /etc/passwd r, /etc/services r, /home//.fontconfig r, /home//.fonts/ r, /tmp/ rw, /tmp/.font-unix rwlk, /tmp/.font-unix/ rwlk, /tmp/.font-unix/ rwlk, /usr/bin/xfs mr, /usr/share/fonts/ r, /usr/share/lilypond/2.11.40/fonts/ r, /var/db/nscd/group r, /var/db/nscd/passwd r, /var/db/nscd/services r, /var/fonts2/** r, /var/run/dbus/system_bus_socket rw, /var/run/nscd/services r, /var/run/nscd/socket rw, /var/run/xfs.pid rwl, }	over 3 years ago		353	hello	Edit	History
opensuse10.3	/usr/sbin/exim	#include <tunables/global> /usr/sbin/exim flags=(complain) { #include <abstractions/base> /usr/sbin/exim mr, }	over 3 years ago		149	webtel	Edit	History
opensuse11.0	/opt/kde3/bin/konversation	#include <tunables/global> /opt/kde3/bin/konversation flags=(complain) { #include <abstractions/base> /opt/kde3/lib64/libDCOP.so.* mr, /opt/kde3/lib64/libconnectionmanager.so.* mr, /opt/kde3/lib64/libkabc.so.* mr, /opt/kde3/lib64/libkdecore.so.* mr, /opt/kde3/lib64/libkdefx.so.* mr, /opt/kde3/lib64/libkdesu.so.* mr, /opt/kde3/lib64/libkdeui.so.* mr, /opt/kde3/lib64/libkio.so.* mr, /opt/kde3/lib64/libkresources.so.* mr, /opt/kde3/lib64/libkwalletclient.so.* mr, /opt/kde3/lib64/libnetworkstatus.so.* mr, /opt/kde3/lib64/libvcard.so.* mr, }	over 3 years ago		190	bsSalzburg	Edit	History
ubuntu-gutsy	/usr/bin/nautilus-cd-burner	#include <tunables/global> /usr/bin/nautilus-cd-burner { #include <abstractions/base> /usr/bin/nautilus-cd-burner mr, }	over 4 years ago	gnome	247	hbpteam	Edit	History
opensuse10.3	/opt/kde3/bin/kmymoney2	#include <tunables/global> /opt/kde3/bin/kmymoney2 flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kmymoney2 mr, /opt/kde3/lib64/libDCOP.so.* mr, /opt/kde3/lib64/libkabc.so.* mr, /opt/kde3/lib64/libkdchart.so.* mr, /opt/kde3/lib64/libkdecore.so.* mr, /opt/kde3/lib64/libkdefx.so.* mr, /opt/kde3/lib64/libkdeprint.so.* mr, /opt/kde3/lib64/libkdesu.so.* mr, /opt/kde3/lib64/libkdeui.so.* mr, /opt/kde3/lib64/libkhtml.so.* mr, /opt/kde3/lib64/libkio.so.* mr, /opt/kde3/lib64/libkjs.so.* mr, /opt/kde3/lib64/libkmm_mymoney.so.* mr, /opt/kde3/lib64/libkmm_plugin.so.* mr, /opt/kde3/lib64/libkparts.so.* mr, /opt/kde3/lib64/libkresources.so.* mr, /opt/kde3/lib64/libkutils.so.* mr, /opt/kde3/lib64/libkwalletclient.so.* mr, /opt/kde3/lib64/libvcard.so.* mr, }	over 4 years ago	kmymoney2	164	marstd	Edit	History
opensuse10.3	/home/dominic/bin/mycat	#include <tunables/global> /home/dominic/bin/mycat { #include <abstractions/base> /home/dominic/bin/mycat mr, /proc/mdstat r, }	over 4 years ago	stuff	280	dominic_2	Edit	History
opensuse11.0	/usr/bin/skanlite	#include <tunables/global> /usr/bin/skanlite flags=(complain) { #include <abstractions/base> }	over 2 years ago		220	gem4	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> /usr/sbin/httpd2-prefork mr, } /usr/sbin/httpd2-prefork//DEFAULT_URI { } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT { }	over 2 years ago	berthold1	118	bertholdct	Edit	History
ubuntu-gutsy	/usr/bin/mpd	#include <tunables/global> /usr/bin/mpd flags=(complain) { #include <abstractions/base> /usr/bin/mpd mr, }	over 4 years ago		291	guyome	Edit	History
opensuse10.3	/usr/sbin/zypp-checkpatches-wrapper	#include <tunables/global> /usr/sbin/zypp-checkpatches-wrapper flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, /usr/bin/zypper Px, /usr/sbin/zypp-checkpatches-wrapper mr, }	over 4 years ago	few extra changes	270	jmichael	Edit	History
opensuse10.3	/usr/lib/kde4/libexec/drkonqi	#include <tunables/global> /usr/lib/kde4/libexec/drkonqi { #include <abstractions/base> /usr/lib/kde4/libexec/drkonqi mr, }	over 4 years ago	kde4 rc2 tests	226	dominic	Edit	History
opensuse11.0	/opt/nginx-0.7.62/sbin/nginx	#include <tunables/global> /opt/nginx-0.7.62/sbin/nginx { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability setgid, capability setuid, capability sys_resource, owner /etc/ssl/openssl.cnf r, owner /opt/nginx-0.7.62/conf/fcgi.conf r, owner /opt/nginx-0.7.62/conf/mime.types r, owner /opt/nginx-0.7.62/conf/nginx.conf r, owner /opt/nginx-0.7.62/logs/error.log a, owner /opt/nginx-0.7.62/logs/nginx.pid a, owner /opt/nginx-0.7.62/sbin/nginx r, owner /srv/logs/wordpress/access.log a, owner /srv/www/** r, }	over 2 years ago		154	fbtech	Edit	History
opensuse11.0	/bin/echo	#include <tunables/global> /bin/echo flags=(complain) { #include <abstractions/base> }	over 3 years ago		121	teuvo	Edit	History
opensuse11.0	/root/ventsrv/ventrilo_srv	#include <tunables/global> /root/ventsrv/ventrilo_srv flags=(complain) { #include <abstractions/base> capability dac_override, network inet stream, owner /root/ventsrv/ventrilo_srv r, /root/ventsrv/ventrilo_srv.ini r, /root/ventsrv/ventrilo_srv.log a, owner /root/ventsrv/ventrilo_srv.pid w, }	over 3 years ago		146	tRuTrIx	Edit	History
opensuse10.3	/usr/sbin/squid	# $Id: usr.sbin.squid 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/squid { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> capability setgid, capability setuid, network inet raw, /dev/tty rw, /etc/mtab r, /etc/squid/* r, /usr/lib/squid/* rmix, /usr/sbin/digest_pw_auth rmix, /usr/sbin/diskd rmix, /usr/sbin/getpwname_auth rmix, /usr/sbin/ip_user_check rmix, /usr/sbin/msnt_auth rmix, /usr/sbin/ncsa_auth rmix, /usr/sbin/no_check.pl rmix, /usr/sbin/ntlm_auth rmix, /usr/sbin/pam_auth rmix, /usr/sbin/pinger ixr, /usr/sbin/rcsquid rmix, /usr/sbin/smb_auth rmix, /usr/sbin/smb_auth.pl rmix, /usr/sbin/smb_auth.sh rmix, /usr/sbin/squid rmix, /usr/sbin/squid_ldap_auth rmix, /usr/sbin/squid_ldap_group rmix, /usr/sbin/squid_ldapauth rmix, /usr/sbin/squid_unix_group rmix, /usr/sbin/squidclient rmix, /usr/sbin/unlinkd rmix, /usr/sbin/wbinfo_group.pl rmix, /usr/sbin/yp_auth rmix, /usr/share/squid/ r, /var/cache/squid/ lrw, /var/log/squid/access.log w, /var/log/squid/cache.log rw, /var/log/squid/store.log w, /var/run/nscd/services r, /var/run/squid.pid lrw, @{PROC}/[0-9]*/mounts r, @{PROC}/mounts r, }	over 4 years ago	d	280	kaizer	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	#include <tunables/global> /usr/lib/firefox/firefox-bin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/grep ixr, /bin/netstat Px, /bin/ps Px, /etc/gai.conf r, /etc/gconf/2/path r, /etc/gnome-vfs-2.0/modules/ r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.adobe/Flash_Player/* r, /home//.beagle/ToIndex/.firefox-beagle-1b7aaaa74afc162f83a8893145441e40.html w, /home//.beagle/ToIndex/firefox-beagle-058f68d99a8a2c8cc613b509796a78ff.html w, /home//.beagle/ToIndex/firefox-beagle-06265edb505e1972daf0c46599e7e617.html w, /home//.beagle/ToIndex/firefox-beagle-13bef4ee5b7306ccbe56cbe1ba049465.html w, /home//.beagle/ToIndex/firefox-beagle-16011019dd2e2c96be6c5e0e7839e99e.html w, /home//.beagle/ToIndex/firefox-beagle-1b7aaaa74afc162f83a8893145441e40.html w, /home//.beagle/ToIndex/firefox-beagle-1e238e2b0cca4b3b1421a24af34a0469.html w, /home//.beagle/ToIndex/firefox-beagle-20873f88d5f4d7280dba59f2e52cea6f.html w, /home//.beagle/ToIndex/firefox-beagle-34c23cd8d767ef49028a03fcf9706ebc.html w, /home//.beagle/ToIndex/firefox-beagle-37fc1444bd61bd2db1d702f25668eb08.html w, /home//.beagle/ToIndex/firefox-beagle-39e80f13213638c10da36f231ecf62af.html w, /home//.beagle/ToIndex/firefox-beagle-415c482f64c03cfe16ad59814770fb2e.html w, /home//.beagle/ToIndex/firefox-beagle-45c2e0d6195b0d156b32655e58e6e2fe.html w, /home//.beagle/ToIndex/firefox-beagle-4b8aca5d0d18971ff7c2431bbcb5dcfd.html w, /home//.beagle/ToIndex/firefox-beagle-540dee6e767bee2ab54d6d784214bcfc.html w, /home//.beagle/ToIndex/firefox-beagle-61d6d7d3187e179e400ca5baaf79fe60.html w, /home//.beagle/ToIndex/firefox-beagle-6fcc7027e5b34964c9cec9aeecdc2694.html w, /home//.beagle/ToIndex/firefox-beagle-77698aa3731bb22b4f143646de559cd3.html w, /home//.beagle/ToIndex/firefox-beagle-7d7288931290a4bf75a5adb9eb9647cb.html w, /home//.beagle/ToIndex/firefox-beagle-7f8c0de864953671ffbb483cbe18c958.html w, /home//.beagle/ToIndex/firefox-beagle-8544ed0589250a2c769f5de1bed96a06.html w, /home//.beagle/ToIndex/firefox-beagle-8b93056381e9c2ef6472cbd166b4b023.html w, /home//.beagle/ToIndex/firefox-beagle-91fe23991706ee4bd6b3f424d565587d.html w, /home//.beagle/ToIndex/firefox-beagle-936068160232a077beb855002605a841.html w, /home//.beagle/ToIndex/firefox-beagle-9e6e2c6130f74e5218abd6c957fc27b3.html w, /home//.beagle/ToIndex/firefox-beagle-a5c2b7fc86950ec537a70b8d225842ee.html w, /home//.beagle/ToIndex/firefox-beagle-a78c31de2714905f71f8127402ab11d7.html w, /home//.beagle/ToIndex/firefox-beagle-a8694d1e44a9c6766543be2442a65e6a.html w, /home//.beagle/ToIndex/firefox-beagle-b2f14e7178187fa17e7bf482a28c7fe5.html w, /home//.beagle/ToIndex/firefox-beagle-c8f92f40baab89b06fe5e815d890323c.html w, /home//.beagle/ToIndex/firefox-beagle-d0d3fe2597f19742f701365fdf4ec636.html w, /home//.beagle/ToIndex/firefox-beagle-d482552fcc4c82aac64b488d4dd8630e.html w, /home//.beagle/ToIndex/firefox-beagle-d516025c887b6bcec8ec49879684f9c1.html w, /home//.beagle/ToIndex/firefox-beagle-d897e361e89f2e73401fbafe468a4b8e.html w, /home//.beagle/ToIndex/firefox-beagle-d9d1c57d6c8c426609ba333650f2cc45.html w, /home//.beagle/ToIndex/firefox-beagle-dad415e74101060de13afbdc4302ac4c.html w, /home//.beagle/ToIndex/firefox-beagle-db415a846a5709baedc069a6a0a5123a.html w, /home//.beagle/ToIndex/firefox-beagle-e03fb9b613e1a0ccbc7d978f8b143747.html w, /home//.beagle/ToIndex/firefox-beagle-e4ef1cc5323812775449b85a8f4a4999.html w, /home//.beagle/ToIndex/firefox-beagle-e53d9c50c42da3215e236c03d647ad4e.html w, /home//.beagle/ToIndex/firefox-beagle-f9659219743fb24d08dc4dc2c07e234c.html w, /home//.beagle/ToIndex/firefox-beagle-ff596d1e13b1320c8f1006d58c8dc1ea.html w, /home//.beagle/socket w, /home//.bookmarks.html rw, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.* rw, /home//.config/qtcurvestylerc r, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gconf/ r, /home//.gconf/.testing.writeability w, /home//.gnome2_private/ w, /home//.icons/ r, /home//.kde/share/config/gtkrc-2.0 r, /home//.kde/share/config/gtkrc-qtc rw, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.macromedia/Flash_Player/* r, /home//.mailcap r, /home//.mozilla/firefox/** krw, /home//.mozilla/plugins/ r, /home//.mozilla/plugins/libflashplayer.so mr, /home//.recently-used.xbel r, /home//.recently-used.xbel.IE516T w, /home//Desktop/ r, /home//Desktop/** rw, /home//Documents/* rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/amarok.desktop r, /opt/kde3/share/applications/kde/gwenview.desktop r, /opt/kde3/share/applications/kde/kaffeine.desktop r, /opt/kde3/share/applications/kde/realplay-kde.desktop r, /opt/kde3/share/applications/kde/showfoto.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//cmdline r, /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/** klrw, /usr/bin/acroread Px, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/file-roller Px, /usr/bin/gimp-remote-2.2 Px, /usr/bin/gvim-normal ixr, /usr/bin/mplayer Px, /usr/bin/realplay-gnome Px, /usr/lib/Acrobat7/Browser/intellinux/.so mr, /usr/lib/GConf/2/gconfd-2 ixr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/firefox.sh Px, /usr/lib/totem/totem-plugin-viewer Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/suse-help.svg r, /usr/share/gdm/applications/ r, /usr/share/locale-bundle/de/LC_MESSAGES/GConf2.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/mime/*.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	firefox	166	Holger Raade	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago	added firefox for profiling	47	Shadow569	Edit	History
opensuse11.0	/usr/bin/kaffeine	#include <tunables/global> /usr/bin/kaffeine { #include <abstractions/base> }	about 1 year ago	kaffeine	71	gdaa	Edit	History
ubuntu-gutsy	/usr/lib/postfix/lmtp	# $Id: usr.lib.postfix.lmtp 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/lmtp { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/lmtp rmix, }	over 3 years ago		115	stive	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gai.conf r, /home//.Skype/ rw, /home//.Skype/** krw, /home//.config/Trolltech.conf kr, /home//.fontconfig/** r, /home//.kde/share/config/kioslaverc r, /proc/interrupts r, /usr/bin/skype mr, /usr/share/skype/* kr, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, }	over 4 years ago	Skype	163	foxwood	Edit	History
ubuntu-gutsy	/usr/bin/streamtuner	#include <tunables/global> /usr/bin/streamtuner { #include <abstractions/base> /usr/bin/streamtuner mr, }	over 4 years ago	gnome	229	hbpteam	Edit	History
opensuse10.3	/usr/lib/postfix/master	# $Id: usr.lib.postfix.master 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/master flags=(complain) { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability kill, capability net_bind_service, /etc/postfix/master.cf r, /usr/lib/postfix/anvil Px, /usr/lib/postfix/bounce Px, /usr/lib/postfix/cleanup Px, /usr/lib/postfix/flush Px, /usr/lib/postfix/local Px, /usr/lib/postfix/master rmix, /usr/lib/postfix/nqmgr Px, /usr/lib/postfix/pickup Px, /usr/lib/postfix/pipe Px, /usr/lib/postfix/proxymap Px, /usr/lib/postfix/qmgr Px, /usr/lib/postfix/scache Px, /usr/lib/postfix/showq Px, /usr/lib/postfix/smtp Px, /usr/lib/postfix/smtpd Px, /usr/lib/postfix/tlsmgr Px, /usr/lib/postfix/trivial-rewrite Px, /{var/spool/postfix/,}pid/master.pid rw, /{var/spool/postfix/,}private/* wl, /{var/spool/postfix/,}private/tlsmgr rwl, /{var/spool/postfix/,}public/{cleanup,flush,pickup,qmgr,showq,tlsmgr} rwl, }	over 4 years ago	changes 6	202	security	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	#include <tunables/global> /usr/lib/firefox/firefox-bin flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/grep ixr, /bin/netstat Px, /bin/ps Px, /etc/gai.conf r, /etc/gnome-vfs-2.0/modules/ r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.adobe/Flash_Player/* r, /home//.beagle/socket w, /home//.bookmarks.html rw, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.* rw, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.macromedia/Flash_Player/* r, /home//.mailcap r, /home//.mozilla/firefox/** rw, /home//.mozilla/firefox//.parentlock krw, /home//.mozilla/firefox//urlclassifier2.sqlite krw, /home//.mozilla/plugins/ r, /home//.mozilla/plugins/libflashplayer.so mr, /home//.recently-used.xbel r, /home//Desktop/ r, /home//Desktop/* rw, /home//Documents/* rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/acroread Px, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/file-roller Px, /usr/bin/gimp-remote-2.2 Px, /usr/bin/gvim-normal ixr, /usr/bin/mplayer Px, /usr/lib/Acrobat7/Browser/intellinux/.so mr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/firefox.sh Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/suse-help.svg r, /usr/share/gdm/applications/ r, /usr/share/mime/.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	allow -d gdb option for firefox plus other misc updates	302	jmichael	Edit	History
opensuse10.3	/usr/bin/gconftool-2	#include <tunables/global> /usr/bin/gconftool-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability kill, capability sys_ptrace, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.defaults/.testing.writeability w, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/ rw, /etc/gconf/schema-install-source r, /etc/gconf/schemas/.schemas r, /etc/gconf/schemas/.entries r, /proc/ r, /proc//cmdline r, /proc/*/stat r, /usr/bin/gconftool-2 mr, /usr/bin/killall ixr, /usr/lib/GConf/2/gconfd-2 Px, }	over 4 years ago	none	268	cinimod	Edit	History
opensuse10.3	/usr/bin/Azureus.sh	#include <tunables/global> /usr/bin/Azureus.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/Azureus.sh mr, }	over 4 years ago	/usr/bin/apparmor.log	209	danny	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_ptrace, owner /etc/apache2/conf.d/ r, owner /etc/apache2/conf.d/mod_security2.conf r, owner /etc/apache2/conf.d/php5.conf r, owner /etc/apache2/default-server.conf r, owner /etc/apache2/errors.conf r, owner /etc/apache2/httpd.conf r, owner /etc/apache2/listen.conf r, owner /etc/apache2/mod_log_config.conf r, owner /etc/apache2/mod_mime-defaults.conf r, owner /etc/apache2/modsecurity.d/ r, /etc/apache2/modsecurity.d/* r, owner /etc/apache2/server-tuning.conf r, owner /etc/apache2/ssl-global.conf r, /etc/apache2/ssl.crt/ca-bundle1.crt r, /etc/apache2/ssl.crt/server.crt r, /etc/apache2/ssl.key/server.key r, owner /etc/apache2/sysconfig.d/global.conf r, owner /etc/apache2/sysconfig.d/include.conf r, owner /etc/apache2/sysconfig.d/loadmodule.conf r, owner /etc/apache2/uid.conf r, owner /etc/apache2/vhosts.d/ r, /etc/apache2/vhosts.d/vhost-ssl.conf r, /etc/apache2/vhosts.d/vhost.conf r, owner /etc/mime.types r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/bz2.ini r, owner /etc/php5/conf.d/calendar.ini r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/curl.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/ftp.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/gettext.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pspell.ini r, owner /etc/php5/conf.d/soap.ini r, owner /etc/php5/conf.d/suhosin.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/xsl.ini r, owner /etc/php5/conf.d/zip.ini r, owner /etc/php5/conf.d/zlib.ini r, /proc//attr/current w, /srv/www/htdocs/* rw, /srv/www/htdocs/domains/nik.pl/exec/* px, /tmp/ rw, owner /usr/lib64/ m, /usr/lib64/** r, owner /usr/sbin/httpd2-prefork r, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/log/apache2/* rw, owner /var/run/httpd2.pid w, owner /var/run/nscd/services r, ^DEFAULT_URI { #include <abstractions/nameservice> /dev/urandom r, /etc/localtime r, /proc//attr/current w, /proc/meminfo r, owner /srv/www/htdocs/* ak, /srv/www/htdocs/** rw, owner /tmp/* w, /usr/lib/locale/ r, /usr/lib64/gconv/gconv-modules r, /usr/lib64/gconv/gconv-modules.cache r, /usr/share/apache2/error/ r, /usr/share/locale/ r, /usr/share/mysql/charsets/Index.xml r, /usr/share/zoneinfo/ r, /usr/share/zoneinfo/ r, /var/lib/mysql/mysql.sock w, /var/log/apache2/* w, } ^HANDLING_UNTRUSTED_INPUT { network inet stream, /proc//attr/current w, /srv/www/htdocs/domains/* r, /usr/share/apache2/error/* r, /var/log/apache2/* w, } }	over 2 years ago	9	127	camellot	Edit	History
opensuse11.0	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/basename px, /bin/bash ix, /usr/bin/file px, }	over 3 years ago		245	philodoxia	Edit	History
ubuntu-gutsy	/sbin/syslogd	# $Id: sbin.syslogd 559 2007-04-10 23:05:33Z agruen $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslogd { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability setgid, capability setuid, capability sys_tty_config, /dev/log wl, /dev/tty* w, /dev/xconsole rw, /etc/group m, /etc/passwd m, /etc/syslog.conf r, /sbin/syslogd rmix, /var/lib//dev/log wl, /var/log/* rw, /var/run/syslogd.pid rwlk, /var/run/utmp krw, /var/spool/compaq/nic/messages_fifo rw, }	over 3 years ago		241	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/discard	# $Id: usr.lib.postfix.discard 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/discard { #include <abstractions/base> /usr/lib/postfix/discard rmix, }	over 3 years ago		245	stive	Edit	History
opensuse10.3	/usr/bin/sudo	#include <tunables/global> /usr/bin/sudo flags=(complain) { #include <abstractions/base> /usr/bin/sudo mr, }	over 4 years ago		296	overwrite	Edit	History
opensuse10.3	/opt/kde3/bin/kmplayer	#include <tunables/global> /opt/kde3/bin/kmplayer flags=(complain) { #include <abstractions/base> /opt/kde3/bin/kmplayer mr, /opt/kde3/lib/libso mr, }	over 4 years ago	kmplayer	289	Falko_Gehde	Edit	History
opensuse11.0	/usr/local/bin/noip2	#include <tunables/global> /usr/local/bin/noip2 { #include <abstractions/base> capability kill, capability setgid, capability setuid, /etc/resolv.conf r, owner /usr/local/etc/NO-IPazyPwx rw, owner /usr/local/etc/NO-IPglKCto rw, owner /usr/local/etc/no-ip2.conf rw, }	about 1 year ago		87	markgard	Edit	History
opensuse11.0	/usr/bin/file	#include <tunables/global> /usr/bin/file flags=(complain) { #include <abstractions/base> }	over 3 years ago		223	philodoxia	Edit	History
opensuse11.0	/usr/bin/aoss	#include <tunables/global> /usr/bin/aoss flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/kde> deny /etc/gnome-vfs-2.0/modules/ r, deny /etc/gnome-vfs-2.0/modules/default-modules.conf r, deny /etc/gnome-vfs-2.0/modules/font-method.conf r, deny /etc/gnome-vfs-2.0/modules/obex-module.conf r, deny /etc/gnome-vfs-2.0/modules/smb-module.conf r, deny /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, deny /etc/gnome-vfs-2.0/modules/theme-method.conf r, deny /etc/gtk-2.0/gdk-pixbuf.loaders r, deny /etc/gtk-2.0/gtk.immodules r, deny /etc/gtk-2.0/gtkrc r, deny /etc/pango/pango.modules r, deny /etc/passwd r, deny /etc/resolv.conf r, deny owner /home/martin/.thunderbird/94dmte60.default/compreg.dat r, /bin/bash mrix, /dev/tty rw, owner /home/martin/.Xauthority r, owner /home/martin/.config/Trolltech.conf r, owner /home/martin/.config/qtcurve.gtk-colors rw, owner /home/martin/.config/qtcurve.gtk-icons rw, owner /home/martin/.fontconfig/e3bb02e0ec69e5a09c14fd8bd998996d-x86.cache-2 r, owner /home/martin/.fonts.conf r, owner /home/martin/.kde/share/config/kdeglobals r, owner /home/martin/.kde4/share/config/gtkrc-2.0 r, owner /home/martin/.thunderbird/94dmte60.default/.parentlock wk, owner /home/martin/.thunderbird/94dmte60.default/ImapMail/imap.gmail.com/ r, owner /home/martin/.thunderbird/94dmte60.default/ImapMail/imap.gmail.com/Templates.msf w, owner /home/martin/.thunderbird/94dmte60.default/ImapMail/imap.gmail.com/UTILS.sbd/ r, owner /home/martin/.thunderbird/94dmte60.default/ImapMail/imap.gmail.com/\[Gmail\].sbd/ r, owner "/home/martin/.thunderbird/94dmte60.default/Mail/Local Folders/" r, owner /home/martin/.thunderbird/94dmte60.default/WebmailData/HotmailDomains.txt r, owner /home/martin/.thunderbird/94dmte60.default/WebmailData/domains.db3 rw, owner /home/martin/.thunderbird/94dmte60.default/WebmailData/imapdata.db3 rw, owner /home/martin/.thunderbird/94dmte60.default/XPC.mfasl r, owner /home/martin/.thunderbird/94dmte60.default/XUL.mfasl r, owner /home/martin/.thunderbird/94dmte60.default/cert8.db rw, owner /home/martin/.thunderbird/94dmte60.default/compatibility.ini r, owner /home/martin/.thunderbird/94dmte60.default/extensions.cache r, owner /home/martin/.thunderbird/94dmte60.default/extensions.ini r, owner /home/martin/.thunderbird/94dmte60.default/extensions/ r, owner /home/martin/.thunderbird/94dmte60.default/extensions/\{3c8e8390-2cf6-11d9-9669-0800200c9a66\}/chrome.manifest r, owner /home/martin/.thunderbird/94dmte60.default/extensions/\{3c8e8390-2cf6-11d9-9669-0800200c9a66\}/chrome/web-mail.jar r, owner /home/martin/.thunderbird/94dmte60.default/extensions/\{3c8e8390-2cf6-11d9-9669-0800200c9a66\}/components/nsIDomainManager.xpt r, owner /home/martin/.thunderbird/94dmte60.default/extensions/\{3c8e8390-2cf6-11d9-9669-0800200c9a66\}/components/nsIIMAPConnectionManager.xpt r, owner /home/martin/.thunderbird/94dmte60.default/extensions/\{3c8e8390-2cf6-11d9-9669-0800200c9a66\}/components/nsIPOPConnectionManager.xpt r, owner /home/martin/.thunderbird/94dmte60.default/extensions/\{3c8e8390-2cf6-11d9-9669-0800200c9a66\}/components/nsISMTPConnectionManager.xpt r, /usr/lib/thunderbird/thunderbird-bin rix, /usr/lib/thunderbird/thunderbird.sh cx -> /usr/lib/thunderbird/thunderbird.sh, profile /usr/lib/thunderbird/thunderbird.sh { } }	over 3 years ago	/var/log/thunderaosslog.log	192	mhjzimmerman	Edit	History
opensuse10.3	/usr/local/bin/transmission-gtk	#include <tunables/global> /usr/local/bin/transmission-gtk flags=(complain) { #include <abstractions/base> /usr/local/bin/transmission-gtk mr, }	over 4 years ago	2	267	anonymus1	Edit	History
ubuntu-gutsy	/usr/NX/bin/nxclient	# $Id: usr.NX.bin.nxclient 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/NX/bin/nxclient flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash mix, /bin/dash ixr, /dev/dsp w, /home//.Xauthority rw, /home//.Xauthority-c w, /home//.Xauthority-l lw, /home//.nx/** rw, /home//.qt/.qtrc.lock k, /usr/NX/ r, /usr/NX/bin/nxclient rmix, /usr/NX/bin/nxesd ixr, /usr/NX/bin/nxproxy mix, /usr/NX/bin/nxservice ixr, /usr/NX/bin/nxssh ixmr, /usr/NX/lib/* mr, /usr/NX/share/ r, /usr/X11R6/bin/xauth rmix, /usr/bin/cut ixmr, /usr/bin/xauth ixr, /usr/share/locale-langpack/sv/LC_MESSAGES/libc.mo r, @{HOME}/.Xauthority-c rwl, @{HOME}/.Xauthority-l rwl, @{HOME}/.nx rwl, @{HOME}/.nx/ rwl, @{HOME}/.ssh/config r, @{HOME}/.ssh/known_hosts rw, }	over 4 years ago		221	vektor	Edit	History
opensuse10.3	/usr/bin/gconftool-2	#include <tunables/global> /usr/bin/gconftool-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability kill, capability sys_ptrace, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.defaults/.testing.writeability w, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/ rw, /etc/gconf/schema-install-source r, /etc/gconf/schemas/.schemas r, /etc/gconf/schemas/.entries r, /proc/ r, /proc//cmdline r, /proc/*/stat r, /usr/bin/gconftool-2 mr, /usr/bin/killall ixr, /usr/lib/GConf/2/gconfd-2 Px, }	over 4 years ago	Import of jmichaels profiles	282	dominic	Edit	History
opensuse10.3	/usr/bin/totem-video-indexer	#include <tunables/global> /usr/bin/totem-video-indexer { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home/*/.gstreamer-0.10/registry.i686.xml mr, /usr/bin/totem-video-indexer mr, /var/cache/beagle/.gstreamer-0.10/registry.i686.xml mr, }	over 4 years ago	Import of jmichaels profiles	168	dominic	Edit	History
opensuse11.0	/usr/sbin/iptables	#include <tunables/global> /usr/sbin/iptables flags=(complain) { #include <abstractions/base> }	over 2 years ago	armor_iptables_change	148	luboc	Edit	History
opensuse11.0	/usr/lib64/amanda/amidxtaped	#include <tunables/global> /usr/lib64/amanda/amidxtaped { #include <abstractions/base> }	over 2 years ago		221	shimingzhou	Edit	History
opensuse10.3	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/basename ixr, /bin/bash ixr, /bin/grep ixr, /dev/tty rw, /etc/magic r, /usr/bin/file ixr, /usr/lib64/firefox/firefox-bin Px, /usr/lib64/firefox/firefox.sh mr, /usr/share/misc/magic r, /usr/share/misc/magic.mgc r, }	over 4 years ago	firefox2	157	mmm	Edit	History
opensuse10.3	/usr/sbin/traceroute	# $Id: usr.sbin.traceroute 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/traceroute { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability net_raw, /usr/sbin/traceroute rmix, @{PROC}/net/route r, }	over 4 years ago	Initial Revision	398	novell	Edit	History
ubuntu-gutsy	/usr/lib/command-not-found	#include <tunables/global> /usr/lib/command-not-found flags=(complain) { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/lib/command-not-found mr, }	over 4 years ago	gnome	291	hbpteam	Edit	History
opensuse10.3	/usr/lib/evolution/2.12/evolution-alarm-notify	#include <tunables/global> /usr/lib/evolution/2.12/evolution-alarm-notify { #include <abstractions/base> /usr/lib/evolution/2.12/evolution-alarm-notify mr, }	over 4 years ago	none	340	cinimod	Edit	History
ubuntu-gutsy	/usr/bin/aplay	#include <tunables/global> /usr/bin/aplay { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> /proc/cpuinfo r, /usr/bin/aplay mr, }	over 4 years ago	gnome	237	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/cddb-slave2-properties	#include <tunables/global> /usr/bin/cddb-slave2-properties { #include <abstractions/base> /usr/bin/cddb-slave2-properties mr, }	over 4 years ago	gnome	299	hbpteam	Edit	History
opensuse11.0	/usr/lib/postfix/bounce	# $Id: usr.lib.postfix.bounce 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/bounce { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, network stream, /etc/postfix/main.cf r, owner /proc/sys/kernel/ngroups_max r, /usr/lib/postfix/bounce mrix, owner /var/spool/postfix/active/* rwk, owner /var/spool/postfix/defer/** rwk, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}bounce/[0-9A-F]/ rwl, /{var/spool/postfix/,}bounce/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}bounce/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}pid/unix.bounce rw, /{var/spool/postfix/,}pid/unix.defer rwk, /{var/spool/postfix/,}pid/unix.trace rw, /{var/spool/postfix/,}public/cleanup w, /{var/spool/postfix/,}trace/[0-9A-F]/ rwl, /{var/spool/postfix/,}trace/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}trace/[0-9A-F]/[0-9A-F]/* rwl, @{PROC}/net/if_inet6 r, }	over 3 years ago	several small additions	150	cboltz-server	Edit	History
opensuse11.0	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd { #include <abstractions/base> }	over 3 years ago		114	techtopia	Edit	History
opensuse10.3	/usr/bin/nautilus	#include <tunables/global> /usr/bin/nautilus { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> / r, /bin/mount Ux, /boot/ r, /dev/ r, /dev/ptmx rw, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/opt/kde3/share/icons/ r, /etc/opt/kde3/share/icons// r, /etc/sound/events/gtk-events-2.soundlist r, /home/ r, /home/ rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/** r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/evince-thumbnailer Px, /usr/bin/file-roller Px, /usr/bin/gnome-appearance-properties Px, /usr/bin/gnome-terminal Px, /usr/bin/mplayer Px, /usr/bin/nautilus mr, /usr/bin/net Px, /usr/bin/totem-video-thumbnailer Px, /usr/lib/nautilus-cd-burner/mapping-daemon Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/.svg r, /usr/share/gdm/applications/ r, /usr/share/ghostscript/fonts/ r, /usr/share/mime/*.xml r, /usr/share/nautilus/ui/.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, }	over 4 years ago	Import of jmichaels profiles	171	dominic	Edit	History
opensuse10.3	/usr/lib/gnome-main-menu/main-menu	#include <tunables/global> /usr/lib/gnome-main-menu/main-menu { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.config/ w, /home//.config/gnome-main-menu/ w, /home//.config/gnome-main-menu/showable_files_migrated w, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/subclasses r, /home//.recently-used.xbel r, /home//.recently-used.xbel.* rw, /home//.thumbnails/ w, /home//.thumbnails/** rw, /home//Desktop/* r, /home//Documents/ rw, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//mounts r, /proc/meminfo r, /proc/net/dev r, /proc/partitions r, /proc/stat r, /sys/block//stat r, /sys/devices//net//statistics/* r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/beagle-search Px, /usr/bin/bug-buddy ixr, /usr/bin/evince-thumbnailer Px, /usr/bin/gnome-screensaver-command Px, /usr/bin/gsf-office-thumbnailer Px, /usr/bin/package-manager Px, /usr/bin/totem-video-thumbnailer Px, /usr/lib/gnome-main-menu/main-menu mr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/f-spot/icons/.png r, /usr/share/gdm/applications/ r, /usr/share/gnome-2.0/ui/.xml r, /usr/share/gnome-main-menu/ r, /usr/share/gnome-main-menu/.glade r, /usr/share/gnome-main-menu/.xbel r, /usr/share/gnome-main-menu/empty.ods r, /usr/share/mime/*.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	Import of jmichaels profiles	243	dominic	Edit	History
opensuse10.3	/usr/bin/totem-video-indexer	#include <tunables/global> /usr/bin/totem-video-indexer { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home/*/.gstreamer-0.10/registry.i686.xml mr, /usr/bin/totem-video-indexer mr, /var/cache/beagle/.gstreamer-0.10/registry.i686.xml mr, }	over 4 years ago	none	151	cinimod	Edit	History
opensuse10.3	/bin/dbus-send	#include <tunables/global> /bin/dbus-send flags=(complain) { #include <abstractions/base> /bin/dbus-send mr, /var/run/dbus/system_bus_socket w, }	over 4 years ago	dbus-send_changelog	190	security	Edit	History
opensuse10.3	/usr/bin/tor	#include <tunables/global> /usr/bin/tor { #include <abstractions/base> #include <abstractions/nameservice> /etc/tor/torrc r, /usr/bin/tor mr, /var/lib/tor/* rw, /var/lib/tor// r, /var/lib/tor/cached-status/* rw, /var/log/tor/* a, /var/run/tor/tor.pid w, }	over 3 years ago		234	shimingzhou	Edit	History
opensuse10.3	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> /proc/interrupts r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/qt4/plugins/** r, /usr/lib/qt4/plugins/imageformats/.so mr, /usr/share/X11/locale/* r, /usr/share/icons/** r, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ r, @{HOME}/.ICEauthority r, @{HOME}/.Skype/ rw, @{HOME}/.Skype/** rwk, @{HOME}/.Xauthority r, @{HOME}/.config/Trolltech.conf rk, @{HOME}/.fontconfig/* r, @{HOME}/.mozilla/ r, @{HOME}/.mozilla/ r, @{HOME}/.opera/ r, @{HOME}/.opera/ r, }	over 3 years ago	test profile - please don't use	143	jjohansen	Edit	History
opensuse10.3	/usr/lib/Acrobat7/Reader/intellinux/bin/acroread	#include <tunables/global> /usr/lib/Acrobat7/Reader/intellinux/bin/acroread flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /home// r, /home//.Xauthority r, /home//.adobe/* krw, /home//.beagle/socket w, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini. rw, /home//.fontconfig/ mr, /home//.fonts/ r, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel r, /home//Desktop/ r, /home//Desktop/*.pdf w, /home//Desktop/.desktop r, /proc/meminfo r, /usr/lib/Acrobat7/Reader/intellinux/bin/acroread mr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Accessibility.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/AcroForm.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Annots.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/DigSig.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/EFS.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/EScript.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/LegalPDF.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/MakeAccessible.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/PDDom.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/PPKLite.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SOAP.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SaveAsRTF.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SearchFind.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/SendMail.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/Spelling.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/checkers.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/ewh.api ixr, /usr/lib/Acrobat7/Reader/intellinux/plug_ins/wwwlink.api ixr, /usr/lib/Acrobat7/Resource/* mr, /usr/share/dist/icons/suse-help.svg r, /usr/share/fonts/ r, /usr/share/fonts/ mr, /usr/share/mime/.xml r, /var/cache/libx11/compose/* mr, }	over 4 years ago	initial acroread profile	234	jmichael	Edit	History
opensuse10.3	/usr/bin/gnome-screensaver-preferences	#include <tunables/global> /usr/bin/gnome-screensaver-preferences flags=(complain) { #include <abstractions/base> /usr/bin/gnome-screensaver-preferences mr, }	over 4 years ago	argh, switch things back to complain for a while	265	jmichael	Edit	History
opensuse10.3	/usr/bin/gnome-open	#include <tunables/global> /usr/bin/gnome-open flags=(complain) { #include <abstractions/base> /usr/bin/gnome-open mr, }	over 4 years ago	argh, switch things back to complain for a while	226	jmichael	Edit	History
opensuse10.3	/usr/bin/nautilus	#include <tunables/global> /usr/bin/nautilus { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> / r, /bin/mount Ux, /boot/ r, /dev/ r, /dev/ptmx rw, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/opt/kde3/share/icons/ r, /etc/opt/kde3/share/icons// r, /etc/sound/events/gtk-events-2.soundlist r, /home/ r, /home/ rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/** r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/evince-thumbnailer Px, /usr/bin/file-roller Px, /usr/bin/gnome-appearance-properties Px, /usr/bin/gnome-terminal Px, /usr/bin/mplayer Px, /usr/bin/nautilus mr, /usr/bin/net Px, /usr/bin/totem-video-thumbnailer Px, /usr/lib/nautilus-cd-burner/mapping-daemon Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/.svg r, /usr/share/gdm/applications/ r, /usr/share/ghostscript/fonts/ r, /usr/share/mime/*.xml r, /usr/share/nautilus/ui/.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/* r, }	over 4 years ago	none	157	cinimod	Edit	History
opensuse10.3	/usr/lib/gnome-main-menu/main-menu	#include <tunables/global> /usr/lib/gnome-main-menu/main-menu { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.config/ w, /home//.config/gnome-main-menu/ w, /home//.config/gnome-main-menu/showable_files_migrated w, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/subclasses r, /home//.recently-used.xbel r, /home//.recently-used.xbel.* rw, /home//.thumbnails/ w, /home//.thumbnails/** rw, /home//Desktop/* r, /home//Documents/ rw, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//mounts r, /proc/meminfo r, /proc/net/dev r, /proc/partitions r, /proc/stat r, /sys/block//stat r, /sys/devices//net//statistics/* r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/beagle-search Px, /usr/bin/bug-buddy ixr, /usr/bin/evince-thumbnailer Px, /usr/bin/gnome-screensaver-command Px, /usr/bin/gsf-office-thumbnailer Px, /usr/bin/package-manager Px, /usr/bin/totem-video-thumbnailer Px, /usr/lib/gnome-main-menu/main-menu mr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/f-spot/icons/.png r, /usr/share/gdm/applications/ r, /usr/share/gnome-2.0/ui/.xml r, /usr/share/gnome-main-menu/ r, /usr/share/gnome-main-menu/.glade r, /usr/share/gnome-main-menu/.xbel r, /usr/share/gnome-main-menu/empty.ods r, /usr/share/mime/*.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	none	224	cinimod	Edit	History
opensuse10.3	/usr/bin/gconftool-2	#include <tunables/global> /usr/bin/gconftool-2 flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability kill, capability sys_ptrace, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.defaults/.testing.writeability w, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/ rw, /etc/gconf/schema-install-source r, /etc/gconf/schemas/.schemas r, /etc/gconf/schemas/.entries r, /proc/ r, /proc//cmdline r, /proc/*/stat r, /usr/bin/gconftool-2 mr, /usr/bin/killall ixr, /usr/lib/GConf/2/gconfd-2 Px, /usr/share/locale-bundle/de/LC_MESSAGES/GConf2.mo r, }	over 4 years ago		264	overwrite	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/perl> capability chown, capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_resource, capability sys_tty_config, / r, owner /Signatures/ r, owner /attach rwlk, /attach/ r, /attach/ rwlk, /bin/bash rix, /bin/cat rix, /bin/chgrp rix, /bin/chmod rix, /bin/chown rix, /bin/cp rix, /bin/date rix, /bin/echo rix, /bin/gawk rix, /bin/grep rix, /bin/mkdir rix, /bin/mount rix, /bin/mv rix, /bin/ps rix, /bin/rm rix, /bin/sed rix, /bin/uname rix, /dev/null r, /dev/random rPx, /dev/tty rw, /dev/urandom Px, owner /etc/apache2/* r, owner /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, owner /etc/apache2/ssl.crt/www_lydora_com.crt r, /etc/apache2/ssl.key/.key r, owner /etc/apache2/ssl.key/www_lydora_com.key r, owner /etc/apache2/sysconfig.d/global.conf r, owner /etc/apache2/sysconfig.d/include.conf r, owner /etc/apache2/sysconfig.d/loadmodule.conf r, owner /etc/apache2/uid.conf r, owner /etc/apache2/vhosts.d/www.lydora.com-ssl.conf r, owner /etc/apache2/vhosts.d/www.lydora.com.conf r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, owner /etc/environment r, /etc/fstab r, owner /etc/login.defs r, /etc/mail.rc r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, owner /etc/pam.d/* r, /etc/php.d/ r, /etc/php.d/ r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/ r, /etc/postfix r, /etc/postfix/* r, /etc/postfix/dynamicmaps.cf r, /etc/postfix/main.cf r, owner /etc/security/limits.conf r, owner /etc/security/pam_env.conf r, owner /etc/ssh/ssh_config r, /etc/ssl/certs/Verisign_RSA_Secure_Server_CA.pem r, /etc/sudoers r, /home_01 rw, /home_01/ rw, /home_02 rw, /home_02/ rw, /home_03 rw, /home_03/ rw, /home_04 rw, /home_04/ rw, /home_05 rw, /home_05/ rw, /home_06 rw, /home_06/ rw, /home_07 rw, /home_07/ rw, /home_08 rw, /home_08/ rw, /home_09 rw, /home_09/ rw, /home_10 rw, /home_10/ rw, /home_11 rw, /home_11/ rw, /home_12 rw, /home_12/ rw, /home_13 rw, /home_13/ rw, /home_14 rw, /home_14/ rw, /home_15 rw, /home_15/ rw, /home_16 rw, /home_17/ rw, /home_18 rw, /home_18/ rw, /home_19 rw, /home_19/ rw, /home_20 rw, /home_20/** rw, /lib/ast/bin/ksh rix, owner /lib/security/pam_.so mr, /log rwl, /log/* rwl, /log/apache a, /log/apache_access_log a, /log/messages a, /proc/ r, /proc//cmdline r, owner /proc//fd/ r, owner /proc//mounts r, /proc//stat r, /proc//status r, /proc/filesystems r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, owner /root/.ssh/id_dsa r, owner /root/.ssh/id_dsa.pub r, owner /root/.ssh/known_hosts r, /srv/ r, /srv/www/ r, /srv/www/cgi-bin rix, /srv/www/cgi-bin/ r, /srv/www/cgi-bin/ rix, /srv/www/htdocs r, /srv/www/htdocs/ r, owner /srv/www/html/ r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, owner /tmp/* rw, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, /usr/bin/awk rix, /usr/bin/find rix, /usr/bin/grep rix, /usr/bin/head rix, /usr/bin/ksh rix, /usr/bin/mail rix, /usr/bin/mailx rix, /usr/bin/passwd rix, /usr/bin/perl rix, /usr/bin/scp rix, /usr/bin/ssh rix, /usr/bin/sudo rix, /usr/bin/touch rix, owner /usr/lib/ m, /usr/lib/ r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/popauth rix, /usr/sbin/postdrop mrkix, /usr/sbin/postmap rix, /usr/sbin/sendmail mrix, /usr/sbin/suexec2 mrix, /usr/sbin/useradd rix, /usr/sbin/userdel rix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/mysql/charsets/Index.xml r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, /var/lib/php/sess_ rwl, owner /var/lib/php5/session_mm_apache2handler0.sem wk, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, owner /var/run/httpd2.pid a, /var/run/httpd2.pid wl, /var/spool/postfix rwl, /var/spool/postfix/* rwl, /var/spool/postfix/** rwl, owner /var/spool/postfix/maildrop/* rw, /var/spool/postfix/public/pickup w, owner /var/tmp/* w, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /*.htaccess r, /var/log/apache2/ w, } }	over 2 years ago		153	axanka	Edit	History
opensuse10.3	/bin/ls	#include <tunables/global> /bin/ls flags=(complain) { #include <abstractions/base> /bin/ls mr, }	over 3 years ago		165	max	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	neu	152	nfalk	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago		130	susanne	Edit	History
opensuse10.3	/usr/sbin/traceroute	# $Id: usr.sbin.traceroute 933 2007-08-17 22:46:56Z DominicReynolds_ $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/traceroute { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability net_raw, /usr/sbin/traceroute rmix, @{PROC}/net/route r, }	over 4 years ago	none	221	cinimod	Edit	History
opensuse11.0	/usr/lib/postfix/master	# $Id: usr.lib.postfix.master 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/master { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability kill, capability net_bind_service, capability sys_ptrace, /etc/postfix/master.cf r, owner /proc/sys/kernel/ngroups_max r, owner /usr/lib/ m, /usr/lib/ rPx, /usr/lib/postfix/master mrix, owner /var/lib/postfix/master.lock rwk, owner /var/run/nscd/services r, owner /var/spool/postfix/active/ r, owner /var/spool/postfix/deferred/ r, owner /var/spool/postfix/incoming/ r, owner /var/spool/postfix/maildrop/ r, owner /{var/spool/postfix/,}pid/master.pid k, /{var/spool/postfix/,}pid/master.pid rw, /{var/spool/postfix/,}private/* wl, /{var/spool/postfix/,}private/tlsmgr rwl, /{var/spool/postfix/,}public/{cleanup,flush,pickup,qmgr,showq,tlsmgr} rwl, }	about 1 year ago		108	usera	Edit	History
opensuse10.3	/usr/bin/cedega	#include <tunables/global> /usr/bin/cedega { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/cedega mr, }	over 4 years ago	cedega	213	darkufo	Edit	History
ubuntu-gutsy	/usr/bin/serpentine	#include <tunables/global> /usr/bin/serpentine { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/serpentine mr, }	over 4 years ago	gnome	264	hbpteam	Edit	History
opensuse11.0	/usr/bin/skype	#include <tunables/global> /usr/bin/skype { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/nameservice> /dev/ r, /dev/* r, /dev/shm/ r, owner /dev/shm/pulse-shm-2020399764 mrw, owner /dev/shm/pulse-shm-3061324294 mrw, /dev/snd/* mrw, /dev/video0 mrw, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/ld.so.preload mr, /etc/pulse/client.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* rwk, /home//.Xauthority r, /home//.config/Trolltech.conf rk, /home//.fontconfig/ r, owner /home//.kde4/share/config/kdeglobals rk, /home//.mozilla/ r, owner /home//.mozilla/extensions/ r, owner /home//.mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox// r, /home//.mozilla/firefox//bookmarkbackups/ r, /home//.mozilla/firefox//chrome/ r, /home//.mozilla/firefox//extensions/ r, /home//.mozilla/firefox//prefs.js r, owner /home//.pulse-cookie rwk, /opt/eset/esets/lib/libso mr, owner /proc//fd/ r, /proc//net/route r, /proc/interrupts r, /sys/devices/system/cpu/ r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/lib/ mr, /usr/share/X11/locale/ r, /usr/share/fonts/ mr, /usr/share/ghostscript/fonts/ mr, /usr/share/icons/** r, /usr/share/skype/lang/skype_ru.qm mr, /usr/share/skype/sounds/.wav rk, /var/cache/libx11/compose/ mr, /var/lib/dbus/machine-id r, }	over 2 years ago	/usr/bin/skype	130	sandman	Edit	History
opensuse11.0	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> network dgram, network stream, deny r, deny owner /home/enrico/Desktop/LeakTest.exe rw, deny /usr/bin/bug-buddy x, /bin/bash rix, /bin/grep rix, /bin/ps cx, /dev/shm/ r, owner /dev/shm/pulse-shm-1749745776 r, owner /dev/shm/pulse-shm-3438575809 rw, /dev/tty rw, /etc/cups/client.conf r, /etc/cups/lpoptions r, /etc/gai.conf r, /etc/gconf/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gre.d/ r, /etc/gre.d/* r, /etc/mailcap r, /etc/mime.types r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pulse/client.conf r, /etc/sound/events/gtk-events-2.soundlist r, owner /home// r, owner /home//** a, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.adobe/Flash_Player// w, owner /home//.adobe/Flash_Player/AssetCache/ r, owner /home//.config/Trolltech.conf r, owner /home//.config/gtk-2.0/gtkfilechooser.ini r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.cups/lpoptions r, owner /home//.esd_auth r, owner /home//.fontconfig/ r, owner /home//.gconf/ r, owner /home//.gconf/* w, owner /home//.gconfd/ rw, owner /home//.kde/share/config/kdeglobals r, owner /home//.kde4/share/config/gtkrc-2.0 r, owner /home//.local/share/mime/mime.cache r, owner /home//.macromedia/Flash_Player/** ra, owner /home//.macromedia/Flash_Player// w, owner /home//.mozilla/extensions// r, owner /home//.mozilla/firefox/.default/ wk, owner /home//.mozilla/firefox/.default/** rw, owner /home//.mozilla/firefox// r, owner /home//.mozilla/firefox/profiles.ini r, owner /home//Desktop/ r, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/* r, owner /proc//cmdline r, owner /proc//fd/ r, owner /proc//maps r, /proc/meminfo r, owner /tmp/* rwl, /usr/lib/** mr, /usr/lib/GConf/2/gconfd-2 rix, /usr/lib/firefox/firefox rix, /usr/share/applications/ r, /usr/share/applications/* r, /usr/share/applications/kde4/* r, /usr/share/locale-bundle//LC_MESSAGES/ r, /usr/share/mime/** r, /usr/share/myspell/* r, /var/cache/gio-2.0/defaults.list r, /var/cache/libx11/** r, /var/run/cups/* w, profile /bin/ps { /bin/ps mr, /etc/* r, /lib/ld-2.8.so rix, /lib/libso r, /usr/share/locale/** r, } }	over 3 years ago	Permit access to user's HOME	207	Drommy	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /bin/grep ixr, /bin/mktemp ixr, /etc/magic r, /home//.gdbinit r, /home//.inputrc r, /proc//auxv r, /proc//mem r, /proc/*/status r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/file ixr, /usr/bin/gdb ixr, /usr/lib/firefox/firefox-bin Pxr, /usr/lib/firefox/firefox.sh mr, /usr/share/misc/magic.mgc r, }	over 4 years ago	firefox	233	vojta	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	# $Id: usr.sbin.httpd2-prefork 706 2007-05-31 06:58:22Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/httpd2-prefork flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/perl> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, capability sys_tty_config, /dev/random r, /etc/apache2/.conf r, /etc/apache2/magic r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/.crt r, /etc/apache2/ssl.key/.key r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/apache2/{conf,sysconfig,vhosts}.d/ r, /etc/fstab r, /etc/mime.types r, /etc/mtab r, /etc/odbcinst.ini r, /etc/php.d/ r, /etc/php.d/** r, /etc/php.ini r, owner /etc/php5/apache2/php.ini r, owner /etc/php5/conf.d/ r, owner /etc/php5/conf.d/bcmath.ini r, owner /etc/php5/conf.d/bz2.ini r, owner /etc/php5/conf.d/cairo.ini r, owner /etc/php5/conf.d/calendar.ini r, owner /etc/php5/conf.d/ctype.ini r, owner /etc/php5/conf.d/curl.ini r, owner /etc/php5/conf.d/dba.ini r, owner /etc/php5/conf.d/dom.ini r, owner /etc/php5/conf.d/enchant.ini r, owner /etc/php5/conf.d/exif.ini r, owner /etc/php5/conf.d/fileinfo.ini r, owner /etc/php5/conf.d/ftp.ini r, owner /etc/php5/conf.d/gd.ini r, owner /etc/php5/conf.d/gettext.ini r, owner /etc/php5/conf.d/gmp.ini r, owner /etc/php5/conf.d/hash.ini r, owner /etc/php5/conf.d/http.ini r, owner /etc/php5/conf.d/iconv.ini r, owner /etc/php5/conf.d/imap.ini r, owner /etc/php5/conf.d/intl.ini r, owner /etc/php5/conf.d/json.ini r, owner /etc/php5/conf.d/ldap.ini r, owner /etc/php5/conf.d/mbstring.ini r, owner /etc/php5/conf.d/mcrypt.ini r, owner /etc/php5/conf.d/mysql.ini r, owner /etc/php5/conf.d/mysqli.ini r, owner /etc/php5/conf.d/odbc.ini r, owner /etc/php5/conf.d/openssl.ini r, owner /etc/php5/conf.d/pcntl.ini r, owner /etc/php5/conf.d/pdo.ini r, owner /etc/php5/conf.d/pdo_mysql.ini r, owner /etc/php5/conf.d/pdo_odbc.ini r, owner /etc/php5/conf.d/pdo_pgsql.ini r, owner /etc/php5/conf.d/pdo_sqlite.ini r, owner /etc/php5/conf.d/pgsql.ini r, owner /etc/php5/conf.d/phar.ini r, owner /etc/php5/conf.d/posix.ini r, owner /etc/php5/conf.d/pspell.ini r, owner /etc/php5/conf.d/readline.ini r, owner /etc/php5/conf.d/shmop.ini r, owner /etc/php5/conf.d/snmp.ini r, owner /etc/php5/conf.d/soap.ini r, owner /etc/php5/conf.d/sockets.ini r, owner /etc/php5/conf.d/sqlite.ini r, owner /etc/php5/conf.d/sqlite3.ini r, owner /etc/php5/conf.d/suhosin.ini r, owner /etc/php5/conf.d/sysvmsg.ini r, owner /etc/php5/conf.d/sysvsem.ini r, owner /etc/php5/conf.d/sysvshm.ini r, owner /etc/php5/conf.d/tidy.ini r, owner /etc/php5/conf.d/tokenizer.ini r, owner /etc/php5/conf.d/wddx.ini r, owner /etc/php5/conf.d/xcache.ini r, owner /etc/php5/conf.d/xmlreader.ini r, owner /etc/php5/conf.d/xmlrpc.ini r, owner /etc/php5/conf.d/xmlwriter.ini r, owner /etc/php5/conf.d/xsl.ini r, owner /etc/php5/conf.d/zip.ini r, owner /etc/php5/conf.d/zlib.ini r, /proc//attr/current w, owner /session_mm_apache2handler0.sem wk, /srv/www/htdocs r, /srv/www/htdocs/* r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /tmp/auth_ldap_cache.sem wl, owner /tmp/mod_mono_dashboard_XXGLOBAL_1 w, /tmp/mod_mono_dashboard_XXGLOBAL_1 r, /tmp/session_mm_apache0.sem wl, /tmp/session_mm_apache2handler0.sem wl, owner /tmp/xcache rw, /usr/X11R6/lib/lib.so mr, /usr/X11R6/lib64/lib.so mr, /usr/apache2/error/* r, owner /usr/lib/ m, /usr/lib/ r, /usr/lib/apache2-leader/{lib,mod_}.so mr, /usr/lib/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib/apache2-prefork/{lib,mod_}.so mr, /usr/lib/apache2-worker/{lib,mod_}.so mr, /usr/lib/apache2/modules/{lib,mod_}.so mr, /usr/lib/apache2/{lib,mod_}.so mr, /usr/lib/mysql/libmysql.so* mr, /usr/lib/php/extensions/.so mr, /usr/lib/php4/.so mr, /usr/lib/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib/qt3/lib/lib.so* mr, /usr/lib64/apache2-leader/{lib,mod_}.so mr, /usr/lib64/apache2-metuxmpm/{lib,mod_}.so mr, /usr/lib64/apache2-prefork/{lib,mod_}.so mr, /usr/lib64/apache2-worker/{lib,mod_}.so mr, /usr/lib64/apache2/modules/{lib,mod_}.so mr, /usr/lib64/apache2/{lib,mod_}.so mr, /usr/lib64/mysql/libmysql.so mr, /usr/lib64/php/extensions/.so mr, /usr/lib64/php4/.so mr, /usr/lib64/python[12].[0-9]/*.{py,pyc,pth,so} mr, /usr/lib64/python[12].[0-9]/site-packages r, /usr/lib64/qt3/lib/lib.so* mr, /usr/local/tomcat/conf/mod_jk.conf r, /usr/local/tomcat/conf/workers-ajp12.properties r, /usr/sbin/httpd2-prefork r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/misc/magic.mime r, /usr/share/snmp/mibs r, /usr/share/snmp/mibs/.{txt,mib} r, /usr/share/snmp/mibs/.index rw, /usr/share/ssl/openssl.cnf r, owner /usr/share/terminfo/x/xterm r, /var/lib/php/sess_ rwl, /var/lock/httpd2.lock.* wl, /var/log/apache2/* rwl, /var/log/apache2/** rwl, /var/log/httpd/ssl_scache.dir r, /var/log/httpd/ssl_scache.pag r, /var/run/httpd2.mm.* wl, /var/run/httpd2.pid wl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, ^DEFAULT_URI flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /srv/www/htdocs r, /srv/www/htdocs/** r, /srv/www/icons/.{gif,jpg,png} r, /srv/www/vhosts r, /srv/www/vhosts/* r, /usr/sbin/suexec2 mrix, /usr/share/apache2/** r, /var/lib/php/sess_* rwl, /var/log/apache2/** rwl, /var/www/error/* r, /var/www/html/** r, /var/www/icons/.{gif,jpg,png} r, @{HOME}/public_html r, @{HOME}/public_html/* r, } ^HANDLING_UNTRUSTED_INPUT flags=(complain) { #include <abstractions/nameservice> /*.htaccess r, /proc//attr/current w, /var/log/apache2/* w, } ^null-83b { /dev/shm/ r, owner /dev/shm/mono.18881 mrw, /etc/ld.so.cache mr, /etc/mono/2.0/machine.config r, /etc/mono/config r, /lib/libso mr, owner /proc//fd/ r, owner /proc//maps r, /proc/meminfo r, /proc/stat r, owner /tmp/.wapi/shared_data-yorerocray-Linux-i686-312-12-0 mrw, owner /tmp/.wapi/shared_fileshare-yorerocray-Linux-i686-36-12-0 mrw, /usr/bin/mod-mono-server r, /usr/lib/gconv/gconv-modules.cache mr, /usr/lib/libso mr, /usr/lib/mono/2.0/mscorlib.dll mr, /usr/lib/mono/gac/Mono.WebServer2/0.2.0.0__0738eb9f132ed756/Mono.WebServer2.dll mr, /usr/lib/mono/gac/System.Configuration/2.0.0.0__b03f5f7f11d50a3a/System.Configuration.dll mr, /usr/lib/mono/gac/System.Xml/2.0.0.0__b77a5c561934e089/System.Xml.dll mr, /usr/lib/mono/gac/System/2.0.0.0__b77a5c561934e089/System.dll mr, /usr/lib/mono/gac/mod-mono-server2/2.4.2.0__0738eb9f132ed756/mod-mono-server2.exe mr, /usr/share/locale/** r, } ^null-83f { /dev/bus/usb/ r, /dev/bus/usb/001/001 r, /dev/bus/usb/002/001 r, /etc/SuSE-release r, /etc/ld.so.cache r, /etc/lsb-release r, /etc/lsb-release.d/ r, /etc/mtab r, /lib/libso mr, /proc//attr/current w, owner /proc//mounts r, /proc//net/dev r, /proc/cpuinfo r, /proc/ide/ r, /proc/loadavg r, /proc/meminfo r, /proc/swaps r, /proc/sys/kernel/hostname r, /proc/uptime r, /proc/version r, /srv/www/htdocs/phpsysinfo/config.php r, /srv/www/htdocs/phpsysinfo/distros.ini r, /srv/www/htdocs/phpsysinfo/includes/XPath.class.php r, /srv/www/htdocs/phpsysinfo/includes/class.Template.inc.php r, /srv/www/htdocs/phpsysinfo/includes/class.error.inc.php r, /srv/www/htdocs/phpsysinfo/includes/common_functions.php r, /srv/www/htdocs/phpsysinfo/includes/lang/ r, /srv/www/htdocs/phpsysinfo/includes/lang/es.php r, /srv/www/htdocs/phpsysinfo/includes/os/class.BSD.common.inc.php r, /srv/www/htdocs/phpsysinfo/includes/os/class.Linux.inc.php r, /srv/www/htdocs/phpsysinfo/includes/os/class.parseProgs.inc.php r, /srv/www/htdocs/phpsysinfo/includes/system_footer.php r, /srv/www/htdocs/phpsysinfo/includes/system_header.php r, /srv/www/htdocs/phpsysinfo/includes/xml/filesystems.php r, /srv/www/htdocs/phpsysinfo/includes/xml/hardware.php r, /srv/www/htdocs/phpsysinfo/includes/xml/hddtemp.php r, /srv/www/htdocs/phpsysinfo/includes/xml/mbinfo.php r, /srv/www/htdocs/phpsysinfo/includes/xml/memory.php r, /srv/www/htdocs/phpsysinfo/includes/xml/network.php r, /srv/www/htdocs/phpsysinfo/includes/xml/vitals.php r, /srv/www/htdocs/phpsysinfo/index.php r, /srv/www/htdocs/phpsysinfo/templates/ r, /srv/www/htdocs/phpsysinfo/templates/classic/box.tpl r, /srv/www/htdocs/phpsysinfo/templates/classic/form.tpl r, /srv/www/htdocs/phpsysinfo/templates/classic/images/bar_middle.gif r, /sys/bus/pci/devices/ r, /sys/bus/pci/slots/ r, /sys/bus/scsi/devices/ r, /sys/bus/usb/devices/ r, /sys/devices/pci0000:00/0000:00:00.0/class r, /sys/devices/pci0000:00/0000:00:00.0/config r, /sys/devices/pci0000:00/0000:00:00.0/device r, /sys/devices/pci0000:00/0000:00:00.0/irq r, /sys/devices/pci0000:00/0000:00:00.0/resource r, /sys/devices/pci0000:00/0000:00:00.0/vendor r, /sys/devices/pci0000:00/0000:00:01.0/0000:01:00.0/class r, /sys/devices/pci0000:00/0000:00:01.0/0000:01:00.0/config r, /sys/devices/pci0000:00/0000:00:01.0/0000:01:00.0/device r, /sys/devices/pci0000:00/0000:00:01.0/0000:01:00.0/irq r, /sys/devices/pci0000:00/0000:00:01.0/0000:01:00.0/resource r, /sys/devices/pci0000:00/0000:00:01.0/0000:01:00.0/vendor r, /sys/devices/pci0000:00/0000:00:01.0/class r, /sys/devices/pci0000:00/0000:00:01.0/config r, /sys/devices/pci0000:00/0000:00:01.0/device r, /sys/devices/pci0000:00/0000:00:01.0/irq r, /sys/devices/pci0000:00/0000:00:01.0/resource r, /sys/devices/pci0000:00/0000:00:01.0/vendor r, /sys/devices/pci0000:00/0000:00:07.0/class r, /sys/devices/pci0000:00/0000:00:07.0/config r, /sys/devices/pci0000:00/0000:00:07.0/device r, /sys/devices/pci0000:00/0000:00:07.0/irq r, /sys/devices/pci0000:00/0000:00:07.0/resource r, /sys/devices/pci0000:00/0000:00:07.0/vendor r, /sys/devices/pci0000:00/0000:00:07.1/class r, /sys/devices/pci0000:00/0000:00:07.1/config r, /sys/devices/pci0000:00/0000:00:07.1/device r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:0/0:0:0:0/model r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:0/0:0:0:0/rev r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:0/0:0:0:0/scsi_level r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:0/0:0:0:0/type r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:0/0:0:0:0/vendor r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:1/0:0:1:0/model r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:1/0:0:1:0/rev r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:1/0:0:1:0/scsi_level r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:1/0:0:1:0/type r, /sys/devices/pci0000:00/0000:00:07.1/host0/target0:0:1/0:0:1:0/vendor r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:0/1:0:0:0/model r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:0/1:0:0:0/rev r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:0/1:0:0:0/scsi_level r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:0/1:0:0:0/type r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:0/1:0:0:0/vendor r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:1/1:0:1:0/model r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:1/1:0:1:0/rev r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:1/1:0:1:0/scsi_level r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:1/1:0:1:0/type r, /sys/devices/pci0000:00/0000:00:07.1/host1/target1:0:1/1:0:1:0/vendor r, /sys/devices/pci0000:00/0000:00:07.1/irq r, /sys/devices/pci0000:00/0000:00:07.1/resource r, /sys/devices/pci0000:00/0000:00:07.1/vendor r, /sys/devices/pci0000:00/0000:00:07.2/class r, /sys/devices/pci0000:00/0000:00:07.2/config r, /sys/devices/pci0000:00/0000:00:07.2/device r, /sys/devices/pci0000:00/0000:00:07.2/irq r, /sys/devices/pci0000:00/0000:00:07.2/resource r, /sys/devices/pci0000:00/0000:00:07.2/usb1/busnum r, /sys/devices/pci0000:00/0000:00:07.2/usb1/descriptors r, /sys/devices/pci0000:00/0000:00:07.2/usb1/devnum r, /sys/devices/pci0000:00/0000:00:07.2/vendor r, /sys/devices/pci0000:00/0000:00:07.3/class r, /sys/devices/pci0000:00/0000:00:07.3/config r, /sys/devices/pci0000:00/0000:00:07.3/device r, /sys/devices/pci0000:00/0000:00:07.3/irq r, /sys/devices/pci0000:00/0000:00:07.3/resource r, /sys/devices/pci0000:00/0000:00:07.3/usb2/busnum r, /sys/devices/pci0000:00/0000:00:07.3/usb2/descriptors r, /sys/devices/pci0000:00/0000:00:07.3/usb2/devnum r, /sys/devices/pci0000:00/0000:00:07.3/vendor r, /sys/devices/pci0000:00/0000:00:07.4/class r, /sys/devices/pci0000:00/0000:00:07.4/config r, /sys/devices/pci0000:00/0000:00:07.4/device r, /sys/devices/pci0000:00/0000:00:07.4/irq r, /sys/devices/pci0000:00/0000:00:07.4/resource r, /sys/devices/pci0000:00/0000:00:07.4/vendor r, /sys/devices/pci0000:00/0000:00:07.5/class r, /sys/devices/pci0000:00/0000:00:07.5/config r, /sys/devices/pci0000:00/0000:00:07.5/device r, /sys/devices/pci0000:00/0000:00:07.5/irq r, /sys/devices/pci0000:00/0000:00:07.5/resource r, /sys/devices/pci0000:00/0000:00:07.5/vendor r, /sys/devices/pci0000:00/0000:00:0c.0/class r, /sys/devices/pci0000:00/0000:00:0c.0/config r, /sys/devices/pci0000:00/0000:00:0c.0/device r, /sys/devices/pci0000:00/0000:00:0c.0/irq r, /sys/devices/pci0000:00/0000:00:0c.0/resource r, /sys/devices/pci0000:00/0000:00:0c.0/vendor r, /sys/devices/pci0000:00/0000:00:0d.0/class r, /sys/devices/pci0000:00/0000:00:0d.0/config r, /sys/devices/pci0000:00/0000:00:0d.0/device r, /sys/devices/pci0000:00/0000:00:0d.0/irq r, /sys/devices/pci0000:00/0000:00:0d.0/resource r, /sys/devices/pci0000:00/0000:00:0d.0/vendor r, /usr/bin/lsb_release r, /usr/lib/libso* mr, /usr/lib/locale/ r, /usr/share/locale/ r, /usr/share/pci.ids r, /usr/share/usb.ids r, /usr/share/zoneinfo/ r, /usr/share/zoneinfo/** r, /var/log/apache2/access_log w, /var/run/utmp rk, } ^null-87f { /proc//attr/current w, /var/log/apache2/access_log w, } ^null-881 { /proc//attr/current w, /var/log/apache2/access_log w, } ^null-883 { /proc//attr/current w, /var/log/apache2/access_log w, } ^null-885 { /proc//attr/current w, /var/log/apache2/access_log w, } ^null-887 { /proc/*/attr/current w, /var/log/apache2/access_log w, } }	over 2 years ago		159	ehv80	Edit	History
ubuntu-gutsy	/etc/cron.daily/standard	#include <tunables/global> /etc/cron.daily/standard { #include <abstractions/base> /bin/chmod ixr, /bin/cp ixr, /bin/dash ixr, /bin/date ixr, /bin/df ixr, /bin/grep ixr, /bin/gzip ixr, /bin/ls ixr, /bin/mv ixr, /bin/rm ixr, /bin/sed ixr, /bin/which ixr, /boot/lost\+found/ r, /etc/cron.daily/standard mr, /etc/group r, /etc/gshadow r, /etc/mtab r, /etc/passwd r, /etc/shadow r, /home// r, /lost\+found/ r, /proc//mounts r, /proc/filesystems r, /usr/bin/basename ixr, /usr/bin/cmp ixr, /usr/bin/dirname ixr, /usr/bin/mawk ixr, /usr/bin/savelog ixr, /var/backups/* rw, /var/lib/dpkg/status r, }	over 3 years ago		121	stive	Edit	History
opensuse10.3	/root/JChat/newfile.sh	#include <tunables/global> /root/JChat/newfile.sh { #include <abstractions/base> #include <abstractions/bash> network security dccp, /bin/bash mrux, /dev/tty rw, /proc/*/maps r, /root/ rw, /root/JChat/newfile.sh mr, /tmp/.X11-unix/X0 rw, /tmp/hsperfdata_root/16159 mrw, /tmp/hsperfdata_root/16895 mrw, /tmp/hsperfdata_root/17182 mrw, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update12/bin/javac ux, /usr/lib/jvm/java-1.5.0-sun-1.5.0_update12/jre/bin/java ux, }	over 4 years ago	99	142	FYPJ	Edit	History
opensuse10.3	/opt/SecondLife_i686_1_19_0_5/secondlife	#include <tunables/global> /opt/SecondLife_i686_1_19_0_5/secondlife { #include <abstractions/base> #include <abstractions/bash> /bin/arch ixr, /bin/bash ixr, /bin/cat ixr, /opt/SecondLife_i686_1_19_0_5/secondlife mr, /usr/bin/dirname ixr, /usr/bin/readlink ixr, }	over 4 years ago		249	angel832	Edit	History
opensuse11.0	/usr/bin/totem	#include <tunables/global> /usr/bin/totem { #include <abstractions/base> /dev/shm/ r, owner /dev/shm/pulse-shm-1579451937 r, owner /dev/shm/pulse-shm-2903800023 r, owner /dev/shm/pulse-shm-2933723921 rw, owner /dev/shm/pulse-shm-4283548248 r, /etc/fonts/** r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtkrc r, /etc/pango/pango.modules r, /etc/pulse/client.conf r, owner /home//.ICEauthority r, owner /home//.config/gtk-2.0/gtkfilechooser.ini r, owner /home//.config/gtk-2.0/gtkfilechooser.ini.6XUP7U w, owner /home//.config/totem/state.ini r, owner /home/*/.config/user-dirs.dirs r, }	over 2 years ago		144	vladyshka	Edit	History
ubuntu-gutsy	/usr/sbin/oinkmaster	#include <tunables/global> /usr/sbin/oinkmaster { #include <abstractions/base> #include <abstractions/perl> /usr/bin/perl ix, /usr/sbin/oinkmaster mr, }	over 3 years ago		185	stive	Edit	History
opensuse11.0	/usr/bin/gpg2	#include <tunables/global> /usr/bin/gpg2 { #include <abstractions/base> #include <abstractions/nvidia> capability ipc_lock, owner /usr/bin/gpg2 mr, owner /var/tmp/** rw, }	over 3 years ago	...	228	knotwurk	Edit	History
opensuse11.0	/usr/bin/dc	#include <tunables/global> /usr/bin/dc flags=(complain) { #include <abstractions/base> }	over 3 years ago	DC	204	vojtaeus	Edit	History
opensuse10.3	/usr/bin/gnome	#include <tunables/global> /usr/bin/gnome { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/cp ixr, /bin/mkdir ixr, /bin/touch ixr, /home//.skel/ w, /home//.skel/* w, /home//Desktop/ w, /home//Desktop/GnomeOnlineHelp.desktop w, /home//Desktop/SuSE.desktop w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/gconftool-2 Px, /usr/bin/gnome mr, /usr/bin/gnome-session Px, /usr/share/dist/desktop-files/.desktop r, }	over 4 years ago	none	204	cinimod	Edit	History
opensuse10.3	/usr/bin/gsf-office-thumbnailer	#include <tunables/global> /usr/bin/gsf-office-thumbnailer { #include <abstractions/base> /home//Documents/* r, /usr/bin/gsf-office-thumbnailer mr, }	over 4 years ago	Import of jmichaels profiles	256	dominic	Edit	History
ubuntu-gutsy	/usr/bin/dvdrip	#include <tunables/global> /usr/bin/dvdrip { #include <abstractions/base> #include <abstractions/perl> /usr/bin/dvdrip mr, /usr/bin/perl ix, }	over 4 years ago	gnome	245	hbpteam	Edit	History
opensuse10.3	/usr/bin/ssh-agent	#include <tunables/global> /usr/bin/ssh-agent { #include <abstractions/base> /tmp/** w, /usr/bin/ssh-agent mr, }	over 4 years ago	changes-3	260	security	Edit	History
opensuse10.3	/sbin/dhclient-script	#include <tunables/global> /sbin/dhclient-script { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /bin/dbus-send Px, /bin/egrep Px, /bin/grep ixr, /sbin/dhclient-script mr, /usr/bin/env Px, }	over 4 years ago	changes 4	236	security	Edit	History
opensuse10.3	/opt/kde3/bin/kmail	#include <tunables/global> /opt/kde3/bin/kmail flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> / r, /bin/bash ixr, /cur/tmp/ lrw, /dat/dMisc/KMail/ w, /dat/dMisc/KMail/ lrw, /etc/* r, /etc/X11/* r, /home//* rw, /home//.gnupg/pubring.kbx.lock lrw, /home//.kde/share/** lrw, /home//.qt/ krw, /opt/kde3/ r, /opt/kde3/bin/kaddressbook Ux, /opt/kde3/bin/kioexec px, /opt/kde3/bin/kleopatra Px, /opt/kde3/bin/kmail mr, /opt/kde3/bin/kmailcvt Px, /opt/kde3/bin/kwatchgnupg Px, /opt/kde3/lib/ mr, /proc/ r, /usr/bin/aspell Ux, /usr/bin/gpg2 Px, /usr/bin/gpgsm mpxr, /usr/share/ r, /var/cache/** r, }	over 3 years ago	internet radio u.a.	333	shivver-fox	Edit	History
opensuse10.3	/usr/lib/evolution-data-server/evolution-data-server-1.12	#include <tunables/global> /usr/lib/evolution-data-server/evolution-data-server-1.12 { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home//.evolution/.db rw, /home//.evolution/*.ics rw, /home//.evolution/*.ics~ rw, /home//.evolution/addressbook/local/system/addressbook.db.summary r, /home//.gnome2_private/ w, /proc/stat r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/lib/evolution-data-server/evolution-data-server-1.12 mr, }	over 4 years ago	none	212	cinimod	Edit	History
opensuse11.0	/bin/cbash	#include <tunables/global> /bin/cbash { #include <abstractions/base> /bin/cat rix, /bin/cbash r, /bin/gawk rix, /bin/ls rix, /bin/sed rix, /bin/uname rix, /dev/tty rw, /etc/DIR_COLORS r, /etc/bash.bashrc r, /etc/group r, /etc/inputrc r, /etc/manpath.config r, /etc/nsswitch.conf r, /etc/opt/ r, /etc/passwd r, /etc/profile r, /etc/profile.d/ r, /etc/profile.d/.sh r, /etc/profile.d/sh.ssh r, /etc/sysconfig/console r, /etc/sysconfig/mail r, /etc/sysconfig/mpi-selector r, /etc/sysconfig/news r, /etc/sysconfig/proxy r, /etc/sysconfig/suseconfig r, /etc/sysconfig/windowmanager r, owner /home//.bash_history r, owner /home//.inputrc r, owner /home//.profile r, /opt/ r, owner /proc//exe r, owner /proc//mounts r, /usr/bin/dircolors rix, /usr/bin/less rix, /usr/bin/manpath rix, /usr/bin/tty rix, /usr/bin/which rix, /usr/lib64/jvm/java-1.6.0-sun-1.6.0/bin/java rix, /usr/lib64/jvm/java-1.6.0-sun-1.6.0/bin/javac rix, /usr/lib64/jvm/java-1.6.0-sun-1.6.0/jre/bin/java rix, /usr/share/X11/XKeysymDB r, /usr/share/modules/init/.modulespath r, /usr/share/modules/init/sh r, /usr/share/terminfo/x/xterm r, /var/mpi-selector/data/openmpi-1.2.8.sh r, }	over 2 years ago		110	student	Edit	History
opensuse10.3	/usr/bin/evince	#include <tunables/global> /usr/bin/evince { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> capability dac_override, capability setgid, capability setuid, / r, /Archiv/ r, /Archiv/** rw, /etc/gai.conf r, /etc/ghostscript/8.15/Fontmap r, /etc/ghostscript/8.15/Fontmap.X11-auto r, /etc/ghostscript/8.15/cidfmap r, /etc/ghostscript/8.15/xlatmap r, /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xpdfrc r, /etc/xpdfrc-cjk r, /etc/xpdfrc-cjk-auto r, /etc/xpdfrc-cjk.sjis r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.bash_history r, /home//.bashrc r, /home//.beagle/socket w, /home//.cedegarc r, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.0S3G2T rw, /home//.config/gtk-2.0/gtkfilechooser.ini.66SB2T rw, /home//.config/gtk-2.0/gtkfilechooser.ini.9HHL1T rw, /home//.config/gtk-2.0/gtkfilechooser.ini.Q0VH2T rw, /home//.config/gtk-2.0/gtkfilechooser.ini.UPEH2T rw, /home//.dmrc r, /home//.dvipsrc r, /home//.emacs r, /home//.esd_auth r, /home//.exrc r, /home//.fontconfig/ r, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2/evince/print-settings rw, /home//.gnome2/evince/print-settings.* rw, /home//.gnome2_private/ w, /home//.gpilotd.pid r, /home//.gtkrc-1.2-gnome2 r, /home//.icons/ r, /home//.inputrc r, /home//.kermrc r, /home//.local/share/icons/ r, /home//.local/share/mime/aliases r, /home//.local/share/mime/globs r, /home//.local/share/mime/magic r, /home//.local/share/mime/mime.cache r, /home//.local/share/mime/subclasses r, /home//.mailcap r, /home//.muttrc r, /home//.opensuse-updater-gnome r, /home//.profile r, /home//.realplayerrc r, /home//.recently-used r, /home//.recently-used.xbel rw, /home//.recently-used.xbel.* rw, /home//.urlview r, /home//.viminfo r, /home//.windows-label r, /home//.xcoralrc r, /home//.xim.template r, /home//.xinitrc.template r, /home//.xsession-errors r, /home//.xtalkrc r, /home//Desktop/ rw, /home//Desktop/*.pdf rw, /proc//mounts r, /proc/meminfo r, /root/.esd_auth r, /root/.gnome2/accels/evince rw, /root/.gnome2/evince/ w, /root/.gnome2_private/ w, /root/.local/share/mime/aliases r, /root/.local/share/mime/globs r, /root/.local/share/mime/magic r, /root/.local/share/mime/mime.cache r, /root/.local/share/mime/subclasses r, /root/.recently-used.xbel.FXVN3T rw, /root/.recently-used.xbel.WCCU3T rw, /root/.recently-used.xbel.X1XL3T rw, /root/.recently-used.xbel.XLCN3T rw, /root/.xauthQESsMm r, /usr/bin/bug-buddy ixr, /usr/bin/evince mr, /usr/bin/gs ixr, /usr/lib/ mr, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/ r, /usr/share/ghostscript/8.15/Resource/CMap/ r, /usr/share/ghostscript/8.15/lib/.ps r, /usr/share/ghostscript/8.15/lib/Fontmap.GS r, /usr/share/ghostscript/8.15/lib/Fontmap.rus r, /usr/share/ghostscript/8.15/lib/cjkv/.ps r, /usr/share/ghostscript/8.15/lib/escp_24.src r, /usr/share/locale-bundle/de/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/evince.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gnome-vfs-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/libgnomeui-2.0.mo r, /usr/share/mime/application/octet-stream.xml r, /usr/share/mime/application/pdf.xml r, /usr/share/mime/application/vnd.oasis.opendocument.spreadsheet.xml r, /usr/share/mime/application/vnd.oasis.opendocument.text.xml r, /usr/share/mime/application/x-compressed-tar.xml r, /usr/share/mime/application/x-deb.xml r, /usr/share/mime/application/x-mozilla-bookmarks.xml r, /usr/share/mime/application/x-shellscript.xml r, /usr/share/mime/application/x-xbel.xml r, /usr/share/mime/application/xml.xml r, /usr/share/mime/application/zip.xml r, /usr/share/mime/inode/directory.xml r, /usr/share/mime/text/plain.xml r, /usr/share/mime/text/x-csrc.xml r, /usr/share/mime/text/x-log.xml r, /usr/share/xpdf/** r, /var/cache/libx11/compose/* r, /var/run/cups/cups.sock w, /var/run/nscd/services r, }	over 4 years ago		397	overwrite	Edit	History
opensuse10.3	/usr/bin/gnome	#include <tunables/global> /usr/bin/gnome { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/cp ixr, /bin/mkdir ixr, /bin/touch ixr, /home//.skel/ w, /home//.skel/* w, /home//Desktop/ w, /home//Desktop/GnomeOnlineHelp.desktop w, /home//Desktop/SuSE.desktop w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/gconftool-2 Px, /usr/bin/gnome mr, /usr/bin/gnome-session Px, /usr/share/dist/desktop-files/.desktop r, }	over 4 years ago	Import of jmichaels profiles	248	dominic	Edit	History
opensuse10.3	/usr/bin/gsf-office-thumbnailer	#include <tunables/global> /usr/bin/gsf-office-thumbnailer { #include <abstractions/base> /home//Documents/* r, /usr/bin/gsf-office-thumbnailer mr, }	over 4 years ago	none	208	cinimod	Edit	History
opensuse10.3	/opt/eclipse-3.3.0/eclipse	#include <tunables/global> /opt/eclipse-3.3.0/eclipse { #include <abstractions/base> /opt/eclipse-3.3.0/eclipse mr, }	over 4 years ago	20071015	170	davepl	Edit	History
opensuse11.0	/usr/lib64/thunderbird/thunderbird.sh	#include <tunables/global> /usr/lib64/thunderbird/thunderbird.sh { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		66	beznosenko_sa	Edit	History
opensuse10.3	/usr/bin/ncftp	#include <tunables/global> /usr/bin/ncftp { #include <abstractions/base> /usr/bin/ncftp mr, }	over 3 years ago	ncftp2	289	SamCurt	Edit	History
opensuse10.3	/usr/bin/esd	#include <tunables/global> /usr/bin/esd flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /proc/cpuinfo r, /usr/bin/esd mr, }	over 4 years ago	argh, switch things back to complain for a while	209	jmichael	Edit	History
opensuse10.3	/usr/sbin/lisa	#include <tunables/global> /usr/sbin/lisa { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/winbind> capability net_raw, capability setuid, network inet raw, /bin/bash ixr, /etc/lisarc r, /proc/meminfo r, /usr/bin/nmblookup ixr, /usr/sbin/lisa mr, /var/lib/samba/unexpected.tdb r, }	over 4 years ago		470	JaMm	Edit	History
opensuse10.3	/usr/sbin/gdm	#include <tunables/global> /usr/sbin/gdm flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> capability audit_control, capability chown, capability dac_override, capability fsetid, capability kill, capability setgid, capability setuid, capability sys_tty_config, /bin/bash ixr, /dev/tty* rw, /etc/environment r, /etc/gdm/Init/Default Pxr, /etc/gdm/PostLogin/Default Pxr, /etc/gdm/PostSession/Default Pxr, /etc/gdm/PreSession/Default Pxr, /etc/gdm/Xsession Px, /etc/gdm/custom.conf r, /home//.Xauthority w, /home//.Xauthority-c w, /home//.Xauthority-l lw, /home//.dmrc rw, /home//.dmrc. rw, /home//.xsession-errors w, /proc//fd/ r, /proc//loginuid w, /proc/meminfo r, /sbin/runlevel Px, /usr/bin/Xgl Px, /usr/lib/gdm/gdmgreeter Px, /usr/sbin/gdm mr, /usr/share/gdm/defaults.conf r, /usr/share/xsessions/.desktop r, /var/lib/gdm/ w, /var/lib/gdm/* w, /var/lib/gdm/.gdmfifo rw, /var/log/gdm/* lw, /var/log/wtmp kw, /var/run/.resmgr_socket w, /var/run/gdm.pid w, /var/run/gdm_socket w, /var/run/utmp krw, }	over 4 years ago	few extra changes	202	jmichael	Edit	History
opensuse10.3	/sbin/runlevel	#include <tunables/global> /sbin/runlevel flags=(complain) { #include <abstractions/base> /sbin/runlevel mr, /var/run/utmp krw, }	over 4 years ago	argh, switch things back to complain for a while	182	jmichael	Edit	History
opensuse10.3	/usr/lib/evolution-data-server/evolution-data-server-1.12	#include <tunables/global> /usr/lib/evolution-data-server/evolution-data-server-1.12 { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /home//.evolution/.db rw, /home//.evolution/*.ics rw, /home//.evolution/*.ics~ rw, /home//.evolution/addressbook/local/system/addressbook.db.summary r, /home//.gnome2_private/ w, /proc/stat r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/lib/evolution-data-server/evolution-data-server-1.12 mr, }	over 4 years ago	Import of jmichaels profiles	224	dominic	Edit	History
opensuse10.3	/usr/bin/evince-thumbnailer	#include <tunables/global> /usr/bin/evince-thumbnailer flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/xpdfrc r, /etc/xpdfrc-cjk r, /etc/xpdfrc-cjk-auto r, /etc/xpdfrc-cjk.sjis r, /home//.fontconfig/ lrw, /home//Desktop/.pdf r, /opt/kde3/share/fonts/ r, /proc/meminfo r, /usr/bin/evince-thumbnailer mr, /usr/share/ghostscript/fonts/ r, /usr/share/xpdf/* r, }	over 4 years ago	argh, switch things back to complain for a while	285	jmichael	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/php5> /bin/bash rix, owner /etc/apache2/httpd.conf r, owner /etc/apache2/server-tuning.conf r, owner /etc/apache2/uid.conf r, /etc/nagios/htpasswd.users r, owner /etc/php5/apache2/php.ini r, /proc/*/attr/current w, owner /session_mm_apache2handler0.sem a, owner /usr/sbin/httpd2-prefork r, /usr/share/zoneinfo/ r, ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	about 1 year ago	zz	52	mskobal	Edit	History
opensuse11.0	/home/tony/.wine/drive_c/Program Files/World of Warcraft/Wow.exe	#include <tunables/global> profile "/home/tony/.wine/drive_c/Program Files/World of Warcraft/Wow.exe" flags=(complain) { #include <abstractions/base> }	over 3 years ago	WoW	130	rinias	Edit	History
opensuse10.3	/usr/lib/cups/backend/pipe	#include <tunables/global> /usr/lib/cups/backend/pipe flags=(complain) { #include <abstractions/base> #include <abstractions/perl> /usr/bin/perl ix, /usr/lib/cups/backend/pipe mr, }	over 4 years ago	cups testing	277	dominic	Edit	History
ubuntu-gutsy	/usr/bin/python2.5	#include <tunables/global> /usr/bin/python2.5 flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> capability dac_override, /etc/apt/apt.conf.d/ r, /etc/apt/apt.conf.d/* r, /etc/apt/sources.list r, /etc/apt/sources.list.d/ r, /etc/apt/sources.list.d/.list r, /proc/meminfo r, /proc/stat r, /usr/bin/python2.5 mr, /usr/share/command-not-found/programs.d/ r, /usr/share/command-not-found/programs.d/.db r, /usr/share/python-apt/templates/ r, /usr/share/python-apt/templates/.info r, /usr/share/python-apt/templates/.mirrors r, }	over 4 years ago	gnome	285	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gnome-keyboard-properties	#include <tunables/global> /usr/bin/gnome-keyboard-properties { #include <abstractions/base> /usr/bin/gnome-keyboard-properties mr, }	over 4 years ago	gnome	306	hbpteam	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	9 months ago		48	rgag	Edit	History
opensuse11.0	/bin/arch	#include <tunables/global> /bin/arch flags=(complain) { #include <abstractions/base> }	about 1 year ago		87	MONGRANDUC	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 2 years ago		93	lxiuz9	Edit	History
opensuse11.0	/usr/sbin/cupsd	#include <tunables/global> /usr/sbin/cupsd flags=(complain) { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/nameservice> #include <abstractions/nis> capability chown, capability dac_override, capability fowner, capability fsetid, capability kill, capability net_bind_service, capability setgid, capability setuid, owner /dev/tty a, owner /etc/cups/ r, /etc/cups/* rw, owner /etc/cups/** rw, owner /etc/hosts.allow r, owner /etc/hosts.deny r, owner /etc/krb5.conf w, /etc/krb5.conf r, owner /etc/printcap w, owner /proc//mounts r, /proc/meminfo r, /usr/lib64/cups/backend/socket rix, /usr/lib64/cups/backend/usb rix, /usr/lib64/cups/cgi-bin/admin.cgi rix, /usr/lib64/cups/cgi-bin/printers.cgi rix, owner /usr/lib64/cups/daemon/cups-deviced m, /usr/lib64/cups/daemon/cups-deviced rpx, /usr/lib64/cups/daemon/cups-driverd mrpx, /usr/local/Brother/Printer/mfc9840cdw/cupswrapper/brlpdwrapper_mfc9840cdw rix, owner /usr/sbin/cupsd r, /usr/share/cups/* r, owner /usr/share/doc/packages/cups/ r, /usr/share/ppd/ r, /usr/share/ppd/ r, owner /var/log/cups/ rw, owner /var/run/cups/ ra, /var/run/cups/ w, owner /var/spool/cups/ w, /var/spool/cups/** r, }	over 3 years ago	CUPS-Grundkonfiguration	251	estellnb	Edit	History
opensuse10.3	/etc/X11/xsetup.d/70draklive-resize.xsetup	#include <tunables/global> /etc/X11/xsetup.d/70draklive-resize.xsetup { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /etc/X11/xsetup.d/70draklive-resize.xsetup mr, }	over 3 years ago		152	hello	Edit	History
opensuse10.3	/usr/lib/firefox/firefox-bin	#include <tunables/global> /usr/lib/firefox/firefox-bin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ix, /bin/grep ixr, /bin/netstat Px, /bin/ps Px, /etc/gai.conf r, /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.schemas/ r, /etc/gconf/gconf.xml.schemas/desktop/ r, /etc/gconf/gconf.xml.schemas/desktop/gnome/ r, /etc/gconf/gconf.xml.schemas/desktop/gnome/interface/%gconf.xml r, /etc/gconf/gconf.xml.schemas/desktop/gnome/sound/%gconf.xml r, /etc/gconf/gconf.xml.schemas/schemas/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/ r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/interface/%gconf.xml r, /etc/gconf/gconf.xml.schemas/schemas/desktop/gnome/sound/%gconf.xml r, /etc/gnome-vfs-2.0/modules/ r, /etc/mailcap r, /etc/mime.types r, /etc/mtab r, /etc/opt/kde3/share/applications/ r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/sound/events/gtk-events-2.soundlist r, /home//.conf r, /home//.ICEauthority r, /home//.Xauthority r, /home//.adobe/Flash_Player/* r, /home//.beagle/ToIndex/ rw, /home//.beagle/socket w, /home//.bookmarks.html rw, /home//.config/.gtk-icons rw, /home//.config/gtk-2.0/gtkfilechooser.ini rw, /home//.config/gtk-2.0/gtkfilechooser.ini.* rw, /home//.config/qtcurve.gtk-colors rw, /home//.config/qtcurvestylerc r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gconf/ r, /home//.gconf/.writeability w, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.kde/share/config/gtkrc-2.0 r, /home//.kde/share/config/kdeglobals r, /home//.local/share/applications/ r, /home//.local/share/applications/.desktop r, /home//.local/share/applications/defaults.list r, /home//.local/share/applications/mimeinfo.cache r, /home//.local/share/icons/ r, /home//.macromedia/Flash_Player/* r, /home//.mailcap r, /home//.mozilla/firefox/** krw, /home//.mozilla/plugins/ r, /home//.mozilla/plugins/libflashplayer.so mr, /home//.qt/qtrc r, /home//.recently-used.xbel r, /home//Desktop/ r, /home//Desktop/** rw, /home//Documents/* rw, /opt/kde3/bin/gwenview Px, /opt/kde3/share/applications/ r, /opt/kde3/share/applications/kde/.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//cmdline r, /proc//maps r, /proc/cpuinfo r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /tmp/* klrw, /usr/bin/acroread Px, /usr/bin/eog Px, /usr/bin/evince Px, /usr/bin/file-roller Px, /usr/bin/gimp-remote-2.2 Px, /usr/bin/gvim-normal ixr, /usr/bin/mplayer Px, /usr/bin/oowriter ixr, /usr/lib/** mr, /usr/lib/GConf/2/gconfd-2 ixr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/firefox.sh Px, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/mimeinfo.cache r, /usr/share/dist/icons/suse-help.svg r, /usr/share/gdm/applications/ r, /usr/share/locale-bundle/cs/LC_MESSAGES/GConf2.mo r, /usr/share/locale-bundle/cs/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/cs/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/cs/LC_MESSAGES/libgnome-2.0.mo r, /usr/share/mime/.xml r, /var/cache/gnome-vfs/defaults.list r, /var/cache/libx11/compose/ r, }	over 4 years ago	firefox	253	vojta	Edit	History
opensuse10.3	/usr/lib/gnome-panel/mixer_applet2	#include <tunables/global> /usr/lib/gnome-panel/mixer_applet2 { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml r, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /tmp/orbit-*/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/lib/gnome-panel/mixer_applet2 mr, /usr/share/gnome-2.0/ui/GNOME_MixerApplet.xml r, }	over 4 years ago	Import of jmichaels profiles	246	dominic	Edit	History
ubuntu-gutsy	/usr/bin/gnome-wm	#include <tunables/global> /usr/bin/gnome-wm { #include <abstractions/base> /bin/dash ixr, /bin/grep ixr, /usr/bin/basename Px, /usr/bin/gconftool-2 Px, /usr/bin/gnome-wm mr, /usr/bin/metacity Px, /usr/bin/xdpyinfo Px, }	over 4 years ago	gnome	220	hbpteam	Edit	History
opensuse10.3	/usr/bin/acroread	#include <tunables/global> /usr/bin/acroread flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> /bin/basename Px, /bin/bash ixr, /bin/cat ixr, /bin/grep ixr, /bin/ls ixmr, /bin/pwd ixr, /bin/sed ixr, /bin/uname Px, /home//.adobe/* w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/ldconfig Px, /usr/bin/acroread mr, /usr/bin/dirname ixr, /usr/bin/expr ixr, /usr/bin/gconftool-2 Px, /usr/lib/Acrobat7/Reader/intellinux/bin/acroread Px, }	over 4 years ago	initial acroread profile	233	jmichael	Edit	History
opensuse11.0	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> ^DEFAULT_URI { } ^HANDLING_UNTRUSTED_INPUT { } }	about 1 year ago		47	phradecky	Edit	History
opensuse10.3	/usr/share/kolab/scripts/kolab_smtpdpolicy	#include <tunables/global> /usr/share/kolab/scripts/kolab_smtpdpolicy { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> /etc/kolab/kolab_smtpdpolicy.conf r, /usr/bin/perl ix, /usr/share/kolab/scripts/kolab_smtpdpolicy mr, }	over 4 years ago		282	arclyde	Edit	History
opensuse10.3	/usr/bin/evince	#include <tunables/global> /usr/bin/evince { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xpdfrc r, /etc/xpdfrc-cjk r, /etc/xpdfrc-cjk-auto r, /etc/xpdfrc-cjk.sjis r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//Desktop/.pdf r, /proc/meminfo r, /usr/bin/evince mr, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/* r, /usr/share/xpdf/** r, /var/cache/libx11/compose/* r, }	over 4 years ago	Import of jmichaels profiles	292	dominic	Edit	History
opensuse11.0	/usr/sbin/smbd	# $Id: usr.sbin.smbd 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/sbin/smbd { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability net_bind_service, capability setgid, capability setuid, capability sys_resource, /etc/cups/client.conf r, /etc/samba/dhcp.conf r, audit owner /etc/samba/secrets.tdb rwk, /etc/samba/smb.conf r, owner /etc/samba/smbpasswd rwk, owner /srv/dev/ r, owner /srv/shared/ r, /tmp rw, /usr/lib/samba/lowcase.dat r, /usr/lib/samba/upcase.dat r, /usr/lib/samba/valid.dat r, /usr/sbin/smbd r, /var/lib/samba/ rwk, owner /var/log/samba/cores/smbd/ w, /var/log/samba/log.smbd w, owner /var/run/cups/cups.sock w, owner /var/run/samba/smbd.pid wk, /var/tmp rw, /var/tmp/ rwl, @{HOMEDIRS} rwl, @{HOME}/** rwl, @{PROC}/[0-9]*/mounts r, }	about 1 year ago		81	rtwassa	Edit	History
opensuse11.0	/opt/kde3/bin/konqueror	#include <tunables/global> /opt/kde3/bin/konqueror flags=(complain) { #include <abstractions/base> /opt/kde3/lib64/libDCOP.so.* mr, /opt/kde3/lib64/libconnectionmanager.so.* mr, /opt/kde3/lib64/libkdecore.so.* mr, /opt/kde3/lib64/libkdefx.so.* mr, /opt/kde3/lib64/libkdesu.so.* mr, /opt/kde3/lib64/libkdeui.so.* mr, /opt/kde3/lib64/libkio.so.* mr, /opt/kde3/lib64/libkonq.so.* mr, /opt/kde3/lib64/libkparts.so.* mr, /opt/kde3/lib64/libkutils.so.* mr, /opt/kde3/lib64/libkwalletclient.so.* mr, /opt/kde3/lib64/libnetworkstatus.so.* mr, }	over 2 years ago		95	test2	Edit	History
opensuse10.3	/bin/basename	#include <tunables/global> /bin/basename { #include <abstractions/base> /bin/basename mrpx, }	over 3 years ago		181	internet2	Edit	History
opensuse10.3	/usr/bin/ekiga	#include <tunables/global> /usr/bin/ekiga { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> capability dac_override, /dev/ r, /dev/*/ r, /dev/video0 r, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.gnome2_private/ w, /root/.esd_auth r, /root/.gnome2_private/ w, /root/.xauthOUkLN5 r, /sys/class/video4linux/ r, /tmp/* klrw, /usr/bin/ekiga mr, /usr/lib/** mr, }	over 4 years ago		215	CRibeiro	Edit	History
opensuse10.3	/sbin/ifup	#include <tunables/global> /sbin/ifup flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /sbin/ifup mr, }	over 4 years ago		136	vash	Edit	History
opensuse10.3	/usr/bin/opera	# $Id: usr.bin.opera 725 2007-06-11 05:07:41Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/bin/opera flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-download> #include <abstractions/user-write> capability dac_override, / r, /bin/bash mix, /bin/sed mixr, /bin/true mixr, /etc/SuSE-release r, /etc/X11/.qt_plugins_3.3rc.lock rw, /etc/X11/.qtrc.lock rw, /etc/cups/client.conf r, /etc/cups/lpoptions r, /etc/opera6rc rw, /etc/opera6rc.fixed rw, /opt r, /opt/kde3/lib/kde3/plugins/integration/.so mr, /usr r, /usr/bin/acroread rPx, /usr/bin/opera r, /usr/lib r, /usr/lib/RealPlayer10/realplay rPx, /usr/lib/RealPlayer10/realplay.bin rPx, /usr/lib/browser-plugins r, /usr/lib/browser-plugins/ mr, /usr/lib/jvm/ mr, /usr/lib/opera/ mixr, /usr/local r, /usr/share/ r, /usr/share/opera/ r, /var/run/.resmgr_socket w, /var/spool/cups/tmp/* lrw, @{HOME} r, @{HOME}/.fonts r, @{HOME}/.fonts.cache-* r, @{HOME}/.fonts/ r, @{HOME}/.kde/share/ r, @{HOME}/.opera r, @{HOME}/.opera/** lrw, @{HOME}/OperaDownloads/* rw, @{PROC}/[0-9]*/stat r, @{PROC}/net/if_inet6 r, @{PROC}/sys/vm/heap-stack-gap r, }	over 4 years ago	opera1	222	mmm	Edit	History
opensuse10.3	/usr/bin/xdg-open	#include <tunables/global> /usr/bin/xdg-open flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ixr, /bin/grep ixr, /bin/sed ixr, /dev/tty rw, /etc/X11/kstylerc r, /etc/X11/qt_plugins_3.3rc r, /etc/X11/qtrc r, /etc/fonts/** r, /etc/kde3rc r, /home//.ICEauthority r, /home//.Xauthority r, /home//.fontconfig/ r, /home//.fonts.conf r, /home//.kde/share/config/kdeglobals rw, /home//.kde/share/config/kfmclientrc rw, /home//.qt/.keramikrc.lock krw, /home//.qt/.kstylerc.lock krw, /home//.qt/.qt_plugins_3.3rc.lock krw, /home//.qt/.qtrc.lock krw, /home//.qt/keramikrc r, /home//.qt/kstylerc r, /home//.qt/qt_plugins_3.3rc r, /home//.qt/qtrc r, /opt/kde3/bin/kde-config ixr, /opt/kde3/bin/kfmclient ixr, /opt/kde3/lib/kde3/plugins/styles/ r, /opt/kde3/lib64/ mr, /opt/kde3/lib64/kde3/plugins/styles/ r, /opt/kde3/lib64/kde3/plugins/styles/* mr, /opt/kde3/share/config/kdeglobals r, /opt/kde3/share/locale-bundle/en_US/LC_MESSAGES/* r, /tmp/.ICE-unix/* w, /tmp/.X11-unix/* w, /usr/bin/xdg-open mr, /usr/share/X11/locale** r, /usr/share/desktop-data/qtrc r, /var/cache/fontconfig/* r, /var/run/nscd/passwd r, /var/run/nscd/socket w, /var/tmp/kdecache-Athila/* r, }	over 4 years ago		146	Rhaddamant	Edit	History
opensuse10.3	/usr/lib/gnome-panel/mixer_applet2	#include <tunables/global> /usr/lib/gnome-panel/mixer_applet2 { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml r, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /tmp/orbit-*/bonobo-activation-register.lock klrw, /usr/bin/bug-buddy ixr, /usr/lib/gnome-panel/mixer_applet2 mr, /usr/share/gnome-2.0/ui/GNOME_MixerApplet.xml r, }	over 4 years ago	none	225	cinimod	Edit	History
opensuse10.3	/usr/bin/xkbcomp	#include <tunables/global> /usr/bin/xkbcomp { #include <abstractions/X> #include <abstractions/base> /usr/bin/xkbcomp mr, /var/lib/xkb/compiled/*.xkm w, }	over 4 years ago	none	198	cinimod	Edit	History
opensuse10.3	/sbin/dhclient-script	#include <tunables/global> /sbin/dhclient-script flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability sys_ptrace, /bin/bash ixr, /bin/cat ixr, /bin/chmod ixr, /bin/dbus-send Px, /bin/egrep ixr, /bin/grep ixr, /bin/mv ixr, /bin/sed ixr, /bin/sleep Px, /bin/uname Px, /etc/resolv.conf rw, /etc/resolv.conf.saved.by.dhclient w, /etc/sysconfig/network/config r, /etc/sysconfig/network/dhcp r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc/*/stat r, /proc/meminfo r, /sbin/dhclient-script mr, /sbin/ifconfig Px, /sbin/killall5 ixr, /sbin/route Px, /tmp/ w, /usr/bin/env ixr, /usr/bin/expr ixr, }	over 4 years ago	argh, switch things back to complain for a while	215	jmichael	Edit	History
opensuse11.0	/usr/bin/amule	#include <tunables/global> /usr/bin/amule flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> deny owner /home/usr01/Downloads/Sprachen/ r, deny owner "/home/usr01/Videos/Serien/Downloads - Serien/" r, deny owner /var/run/gdm/auth-for-usr01-DQxIQv/database r, /etc/scim/global r, owner /home//.aMule/ rwk, owner /home//.aMule/Incoming/ r, owner /home//.aMule/Temp/ rw, owner /home//.icons/ r, owner /home//.local/share/icons/ r, owner /home//.local/share/mime/mime.cache r, owner /proc//mounts r, /usr/lib64/** mr, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/* r, /usr/share/locale-bundle/de/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/de/LC_MESSAGES/gtk20.mo r, /var/lib/GeoIP/GeoIP.dat r, ^null-12 { #include <abstractions/base> /proc/meminfo r, } ^null-16 { #include <abstractions/base> /proc/meminfo r, } ^null-1a { #include <abstractions/base> /proc/meminfo r, } ^null-1e { #include <abstractions/base> /proc/meminfo r, } ^null-22 { #include <abstractions/base> /proc/meminfo r, } ^null-26 { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> /dev/shm/ r, owner /dev/shm/* rw, /etc/pulse/client.conf r, /etc/scim/global r, owner /home//.ICEauthority r, owner /home//.aMule/Temp/* r, owner /home//.config/totem/state.ini r, owner /home//.config/totem/state.ini.YI7O4U w, owner /home//.fontconfig/ r, owner /home//.gstreamer-0.10/plugins/ r, owner /home//.gstreamer-0.10/registry.x86_64.bin r, owner /home//.icons/ r, owner /home//.local/share/icons/ r, owner /home//.local/share/mime/mime.cache r, owner /home//.pulse-cookie rwk, owner /home//.recently-used.xbel r, owner /home//.recently-used.xbel.39J74U w, owner /proc//mounts r, /proc/meminfo r, /usr/lib64/* mr, /usr/share/applications/totem.desktop r, /usr/share/gvfs/remote-volume-monitors/ r, /usr/share/gvfs/remote-volume-monitors/* r, /usr/share/locale-bundle/de/LC_MESSAGES/*.mo r, /usr/share/totem/fullscreen.ui r, /usr/share/totem/playlist.ui r, /usr/share/totem/properties.ui r, /usr/share/totem/totem.ui r, /usr/share/totem/video-list.ui r, /var/lib/dbus/machine-id r, owner /var/run/gdm/auth-for-usr01-DQxIQv/database r, } ^null-d flags=(complain) { #include <abstractions/gnome> /proc/meminfo r, } }	over 2 years ago	eet	139	jager	Edit	History
opensuse11.0	/usr/bin/evolution	#include <tunables/global> /usr/bin/evolution flags=(complain) { #include <abstractions/base> network dgram, network inet dgram, network inet stream, network stream, deny owner /home/maku/.evolution/.running w, deny owner /home/maku/.evolution/camel-cert.db~ a, deny owner /home/maku/.evolution/mail/.#searches.xml a, deny owner /home/maku/.evolution/mail/config/.#et-expanded-mbox:_home_maku_.evolution_mail_local_Inbox a, deny owner /home/maku/.evolution/mail/local/Outbox rw, deny owner /tmp/orbit-maku/linc-20bd-0-513de79c96411 w, deny /usr/share/evolution/2.22/errors/ r, deny /usr/share/evolution/2.22/images/ r, deny /usr/share/icons/Tango/16x16/status/dialog-warning.png r, /etc/fonts/** r, /etc/gnome-vfs-2.0/modules/ r, /etc/gnome-vfs-2.0/modules/default-modules.conf r, /etc/gnome-vfs-2.0/modules/font-method.conf r, /etc/gnome-vfs-2.0/modules/smb-module.conf r, /etc/gnome-vfs-2.0/modules/ssl-modules.conf r, /etc/gnome-vfs-2.0/modules/theme-method.conf r, /etc/gtk-2.0/gdk-pixbuf.loaders r, /etc/gtk-2.0/gtk.immodules r, /etc/gtk-2.0/gtkrc r, /etc/hosts r, /etc/nsswitch.conf r, /etc/opt/kde3/share/icons/ r, /etc/opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /etc/pango/pango.modules r, /etc/passwd r, /etc/resolv.conf r, /etc/services r, owner /home//.ICEauthority r, owner /home//.Xauthority r, owner /home//.config/qtcurve.gtk-colors rw, owner /home//.config/qtcurve.gtk-icons rw, owner /home//.config/qtcurvestylerc r, owner /home//.evolution/ r, owner /home//.evolution/.running a, owner /home//.evolution/cache/http/01/http:%2f%2frynekpracy.pl%2fgrafika_nowa%2fnewsletter%2fstopka_2.gif rw, owner /home//.evolution/cache/http/04/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2fnic.gif rw, owner /home//.evolution/cache/http/05/http:%2f%2frynekpracy.pl%2fgrafika_nowa%2fnewsletter%2fstopka_1.gif rw, owner /home//.evolution/cache/http/06/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_gora2.gif rw, owner /home//.evolution/cache/http/0f/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2flinia_niebieska.gif rw, owner /home//.evolution/cache/http/11/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fhumor.jpg rw, owner /home//.evolution/cache/http/16/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fanalizy.jpg rw, owner /home//.evolution/cache/http/16/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fzapytanie.jpg rw, owner /home//.evolution/cache/http/1d/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2fsonda_wynik.gif rw, owner /home//.evolution/cache/http/26/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fsedlak.jpg rw, owner /home//.evolution/cache/http/28/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fzyczenie.jpg rw, owner /home//.evolution/cache/http/31/http:%2f%2frynekpracy.pl%2fgrafika%2fnewsletter%2flinia_szara.gif rw, owner /home//.evolution/cache/http/31/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fbrp.jpg rw, owner /home//.evolution/cache/http/31/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fnasze_raporty.gif rw, owner /home//.evolution/cache/http/32/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2ftop_newsletter_5.jpg rw, owner /home//.evolution/cache/http/34/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_rynku.gif rw, owner /home//.evolution/cache/http/37/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2f50plus.jpg rw, owner /home//.evolution/cache/http/38/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fdzial_analiz_new.jpg rw, owner /home//.evolution/cache/http/38/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_dol_2.gif rw, owner /home//.evolution/cache/http/3a/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fbannery%2fwynagrodzenia.jpg rw, owner /home//.evolution/cache/http/3b/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fmonitor_newsletter.gif rw, owner /home//.evolution/cache/http/3c/http:%2f%2frynekpracy.pl%2fgrafika_rynek%2fprzeglad_tlo.gif rw, owner /home//.evolution/cache/tmp/ r, owner /home//.evolution/cache/tmp/mail.log.W3uvlN a, owner /home//.evolution/cache/tmp/mail.log.sYeKFr a, owner /home//.evolution/cache/tmp/mail.log.tebp9Q a, owner /home//.evolution/cache/tmp/mail.log.xOOGFz a, owner /home//.evolution/camel-cert.db r, owner /home//.evolution/cert8.db rw, owner /home//.evolution/key3.db rw, owner /home//.evolution/mail/config/.#folder-tree-expand-state.xml rw, owner /home//.evolution/mail/config/et-expanded-mbox:_home_maku_.evolution_mail_local_Inbox r, owner /home//.evolution/mail/config/folder-tree-expand-state.xml rw, owner /home//.evolution/mail/config/gtkrc-mail-fonts r, owner /home//.evolution/mail/local/ r, owner /home//.evolution/mail/local/.#Inbox.cmeta rw, owner /home//.evolution/mail/local/.#evolution.sbd/Junk.cmeta r, owner /home//.evolution/mail/local/.#evolution.sbd/Trash.cmeta r, owner /home//.evolution/mail/local/Drafts.cmeta r, owner /home//.evolution/mail/local/Drafts.ibex.index rw, owner /home//.evolution/mail/local/Drafts.ibex.index.data rw, owner /home//.evolution/mail/local/Inbox rwk, owner /home//.evolution/mail/local/Inbox.cmeta rw, owner /home//.evolution/mail/local/Inbox.ev-summary r, owner /home//.evolution/mail/local/Inbox.ibex.index rw, owner /home//.evolution/mail/local/Inbox.ibex.index.data rw, owner /home//.evolution/mail/local/Inbox.lock w, owner /home//.evolution/mail/local/InboxBEIULU w, owner /home//.evolution/mail/local/InboxBO0GLU w, owner /home//.evolution/mail/local/InboxRNDCLU w, owner /home//.evolution/mail/local/Outbox.cmeta r, owner /home//.evolution/mail/local/Outbox.ev-summary r, owner /home//.evolution/mail/local/Outbox.ibex.index rw, owner /home//.evolution/mail/local/Outbox.ibex.index.data rw, owner /home//.evolution/mail/local/Sent.cmeta r, owner /home//.evolution/mail/local/Sent.ev-summary r, owner /home//.evolution/mail/local/Sent.ibex.index rw, owner /home//.evolution/mail/local/Sent.ibex.index.data rw, owner /home//.evolution/mail/searches.xml r, owner /home//.evolution/secmod.db r, owner /home//.fontconfig/a8d626dfaa99cb0ebf0eba05ac19f7aa-x86.cache-2 r, owner /home//.kde/share/config/gtkrc-2.0 r, owner /home//.kde/share/config/kdeglobals r, owner /home//.qt/qtrc r, /opt/kde3/share/icons/ r, /opt/kde3/share/icons/crystalsvg/16x16/actions/editclear.png r, /opt/kde3/share/icons/crystalsvg/16x16/actions/find.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/button_cancel.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/button_ok.png r, /opt/kde3/share/icons/crystalsvg/22x22/actions/stop.png r, /opt/kde3/share/icons/crystalsvg/32x32/actions/help.png r, /opt/kde3/share/icons/crystalsvg/icon-theme.cache r, /opt/kde3/share/icons/crystalsvg/index.theme r, /opt/kde3/share/icons/hicolor/icon-theme.cache r, owner /proc//cmdline r, /tmp/ r, /tmp/.X11-unix/X0 w, owner /tmp/gconfd-maku/lock/ior r, owner /tmp/keyring-YM1CDw/socket w, owner /tmp/orbit-maku/ w, owner /tmp/orbit-maku/bonobo-activation-register.lock rwk, owner /tmp/orbit-maku/bonobo-activation-server-ior r, owner /tmp/orbit-maku/linc-2079-0-2cb716f66cc74 w, owner /tmp/orbit-maku/linc-2154-0-333383bd9eab3 w, owner /tmp/orbit-maku/linc-21b2-0-3ebd92beb302f w, owner /tmp/orbit-maku/linc-d49-0-6537b2556b93e w, owner /tmp/orbit-maku/linc-d4c-0-40ea262e565ab w, owner /tmp/orbit-maku/linc-d74-0-10998b88392cf w, owner /tmp/orbit-maku/linc-d79-0-25d6a80353e6b w, /usr/bin/dbus-launch rix, /usr/bin/evolution r, /usr/lib/ mr, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/Compose r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/evolution/2.22/etspec/message-list.etspec r, /usr/share/evolution/2.22/filtertypes.xml r, /usr/share/evolution/2.22/icons/ r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/ r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/folder-copy.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/folder-move.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/mail-copy.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/actions/mail-move.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/ r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/mail-inbox.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/mail-outbox.png r, /usr/share/evolution/2.22/icons/hicolor/16x16/places/mail-sent.png r, /usr/share/evolution/2.22/icons/hicolor/22x22/actions/ r, /usr/share/evolution/2.22/icons/hicolor/22x22/places/ r, /usr/share/evolution/2.22/icons/hicolor/24x24/actions/ r, /usr/share/evolution/2.22/icons/hicolor/24x24/places/ r, /usr/share/evolution/2.22/icons/hicolor/24x24/places/mail-inbox.png r, /usr/share/evolution/2.22/icons/hicolor/24x24/places/mail-outbox.png r, /usr/share/evolution/2.22/icons/hicolor/32x32/actions/ r, /usr/share/evolution/2.22/icons/hicolor/48x48/categories/ r, /usr/share/evolution/2.22/icons/hicolor/scalable/actions/ r, /usr/share/evolution/2.22/images/online.png r, /usr/share/evolution/2.22/searchtypes.xml r, /usr/share/evolution/2.22/ui/evolution-mail-global.xml r, /usr/share/evolution/2.22/ui/evolution-mail-list.xml r, /usr/share/evolution/2.22/ui/evolution-mail-message.xml r, /usr/share/evolution/2.22/ui/evolution.xml r, /usr/share/evolution/2.22/vfoldertypes.xml r, /usr/share/evolution/2.22/views/mail/As_Sent_Folder.galview r, /usr/share/evolution/2.22/views/mail/By_Follow_Up_Flag.galview r, /usr/share/evolution/2.22/views/mail/By_Sender.galview r, /usr/share/evolution/2.22/views/mail/By_Status.galview r, /usr/share/evolution/2.22/views/mail/By_Subject.galview r, /usr/share/evolution/2.22/views/mail/Messages.galview r, /usr/share/evolution/2.22/views/mail/Wide_View_Normal.galview r, /usr/share/evolution/2.22/views/mail/Wide_View_Sent.galview r, /usr/share/evolution/2.22/views/mail/galview.xml r, /usr/share/fonts/ r, /usr/share/gtkhtml-3.14/keybindingsrc.emacs r, /usr/share/icons/ r, /usr/share/icons/DMZ/cursors/bottom_right_corner r, /usr/share/icons/DMZ/cursors/crosshair r, /usr/share/icons/DMZ/cursors/grabbing r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/sb_h_double_arrow r, /usr/share/icons/DMZ/cursors/sb_v_double_arrow r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/DMZ/index.theme r, /usr/share/icons/Gilouche/16x16/actions/folder-new.png r, /usr/share/icons/Gilouche/16x16/places/folder-saved-search.png r, /usr/share/icons/Gilouche/16x16/places/folder.png r, /usr/share/icons/Gilouche/icon-theme.cache r, /usr/share/icons/Gilouche/index.theme r, /usr/share/icons/Tango/16x16/actions/address-book-new.png r, /usr/share/icons/Tango/16x16/actions/appointment-new.png r, /usr/share/icons/Tango/16x16/actions/contact-new.png r, /usr/share/icons/Tango/16x16/actions/document-print-preview.png r, /usr/share/icons/Tango/16x16/actions/document-print.png r, /usr/share/icons/Tango/16x16/actions/document-properties.png r, /usr/share/icons/Tango/16x16/actions/document-save-as.png r, /usr/share/icons/Tango/16x16/actions/edit-copy.png r, /usr/share/icons/Tango/16x16/actions/edit-cut.png r, /usr/share/icons/Tango/16x16/actions/edit-find.png r, /usr/share/icons/Tango/16x16/actions/edit-paste.png r, /usr/share/icons/Tango/16x16/actions/go-jump.png r, /usr/share/icons/Tango/16x16/actions/mail-forward.png r, /usr/share/icons/Tango/16x16/actions/mail-mark-junk.png r, /usr/share/icons/Tango/16x16/actions/mail-message-new.png r, /usr/share/icons/Tango/16x16/actions/mail-reply-all.png r, /usr/share/icons/Tango/16x16/actions/mail-reply-sender.png r, /usr/share/icons/Tango/16x16/actions/mail-send-receive.png r, /usr/share/icons/Tango/16x16/actions/process-stop.png r, /usr/share/icons/Tango/16x16/actions/window-new.png r, /usr/share/icons/Tango/16x16/animations/process-working.png r, /usr/share/icons/Tango/16x16/categories/preferences-desktop.png r, /usr/share/icons/Tango/16x16/emblems/emblem-important.png r, /usr/share/icons/Tango/16x16/mimetypes/image-x-generic.png r, /usr/share/icons/Tango/16x16/mimetypes/x-office-address-book.png r, /usr/share/icons/Tango/16x16/mimetypes/x-office-calendar.png r, /usr/share/icons/Tango/16x16/places/user-trash.png r, /usr/share/icons/Tango/16x16/status/mail-attachment.png r, /usr/share/icons/Tango/24x24/actions/document-print.png r, /usr/share/icons/Tango/24x24/actions/edit-delete.png r, /usr/share/icons/Tango/24x24/actions/go-next.png r, /usr/share/icons/Tango/24x24/actions/go-previous.png r, /usr/share/icons/Tango/24x24/actions/mail-forward.png r, /usr/share/icons/Tango/24x24/actions/mail-mark-junk.png r, /usr/share/icons/Tango/24x24/actions/mail-reply-all.png r, /usr/share/icons/Tango/24x24/actions/mail-reply-sender.png r, /usr/share/icons/Tango/24x24/actions/mail-send-receive.png r, /usr/share/icons/Tango/24x24/mimetypes/x-office-address-book.png r, /usr/share/icons/Tango/24x24/mimetypes/x-office-calendar.png r, /usr/share/icons/Tango/32x32/actions/mail-send-receive.png r, /usr/share/icons/Tango/icon-theme.cache r, /usr/share/icons/Tango/index.theme r, /usr/share/icons/Tango/scalable/actions/mail-send-receive.svg r, /usr/share/icons/crystalsvg/128x128/actions/ r, /usr/share/icons/crystalsvg/128x128/apps/ r, /usr/share/icons/crystalsvg/128x128/devices/ r, /usr/share/icons/crystalsvg/128x128/filesystems/ r, /usr/share/icons/crystalsvg/128x128/mimetypes/ r, /usr/share/icons/crystalsvg/16x16/actions/ r, /usr/share/icons/crystalsvg/16x16/apps/ r, /usr/share/icons/crystalsvg/16x16/devices/ r, /usr/share/icons/crystalsvg/16x16/filesystems/ r, /usr/share/icons/crystalsvg/16x16/mimetypes/ r, /usr/share/icons/crystalsvg/22x22/actions/ r, /usr/share/icons/crystalsvg/22x22/apps/ r, /usr/share/icons/crystalsvg/22x22/devices/ r, /usr/share/icons/crystalsvg/22x22/filesystems/ r, /usr/share/icons/crystalsvg/22x22/mimetypes/ r, /usr/share/icons/crystalsvg/32x32/actions/ r, /usr/share/icons/crystalsvg/32x32/apps/ r, /usr/share/icons/crystalsvg/32x32/devices/ r, /usr/share/icons/crystalsvg/32x32/filesystems/ r, /usr/share/icons/crystalsvg/32x32/mimetypes/ r, /usr/share/icons/crystalsvg/48x48/actions/ r, /usr/share/icons/crystalsvg/48x48/apps/ r, /usr/share/icons/crystalsvg/48x48/devices/ r, /usr/share/icons/crystalsvg/48x48/filesystems/ r, /usr/share/icons/crystalsvg/48x48/mimetypes/ r, /usr/share/icons/crystalsvg/64x64/actions/ r, /usr/share/icons/crystalsvg/64x64/apps/ r, /usr/share/icons/crystalsvg/64x64/devices/ r, /usr/share/icons/crystalsvg/64x64/filesystems/ r, /usr/share/icons/crystalsvg/64x64/mimetypes/ r, /usr/share/icons/crystalsvg/scalable/actions/ r, /usr/share/icons/crystalsvg/scalable/apps/ r, /usr/share/icons/crystalsvg/scalable/devices/ r, /usr/share/icons/crystalsvg/scalable/filesystems/ r, /usr/share/icons/crystalsvg/scalable/mimetypes/ r, /usr/share/icons/gnome/16x16/actions/application-exit.png r, /usr/share/icons/gnome/16x16/actions/document-page-setup.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-important.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-notjunk.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-read.png r, /usr/share/icons/gnome/16x16/actions/mail-mark-unread.png r, /usr/share/icons/gnome/16x16/actions/window-close.png r, /usr/share/icons/gnome/16x16/actions/zoom-in.png r, /usr/share/icons/gnome/16x16/actions/zoom-original.png r, /usr/share/icons/gnome/16x16/actions/zoom-out.png r, /usr/share/icons/gnome/16x16/status/mail-read.png r, /usr/share/icons/gnome/16x16/status/mail-replied.png r, /usr/share/icons/gnome/16x16/status/mail-unread.png r, /usr/share/icons/gnome/16x16/stock/document/stock_task.png r, /usr/share/icons/gnome/16x16/stock/document/stock_todo.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_new-24h-appointment.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_new-meeting.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_notes.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-high.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-higher.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-highest.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-low.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-lower.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-lowest.png r, /usr/share/icons/gnome/16x16/stock/generic/stock_score-normal.png r, /usr/share/icons/gnome/16x16/stock/net/stock_contact-list.png r, /usr/share/icons/gnome/16x16/stock/net/stock_disconnect.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-filters-apply.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-flag-for-followup-done.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-flag-for-followup.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-import.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-open-multiple.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail-unread-multiple.png r, /usr/share/icons/gnome/16x16/stock/net/stock_mail.png r, /usr/share/icons/gnome/16x16/stock/net/stock_shared-by-me.png r, /usr/share/icons/gnome/16x16/stock/net/stock_shared-to-me.png r, /usr/share/icons/gnome/16x16/stock/object/stock_insert-note.png r, /usr/share/icons/gnome/24x24/actions/mail-mark-notjunk.png r, /usr/share/icons/gnome/24x24/stock/document/stock_todo.png r, /usr/share/icons/gnome/24x24/stock/generic/stock_notes.png r, /usr/share/icons/gnome/24x24/stock/net/stock_mail.png r, /usr/share/icons/gnome/icon-theme.cache r, /usr/share/icons/gnome/index.theme r, /usr/share/icons/hicolor/icon-theme.cache r, /usr/share/icons/hicolor/index.theme r, /usr/share/locale-bundle/pl/LC_MESSAGES/atk10.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/evolution-2.22.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/evolution-data-server-2.22.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/glib20.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtk20-properties.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtk20.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/gtkhtml-3.14.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libbonobo-2.0.mo r, /usr/share/locale-bundle/pl/LC_MESSAGES/libbonoboui-2.0.mo r, /usr/share/pixmaps/ r, /usr/share/themes/Gilouche/gtk-2.0/gtkrc r, /usr/share/themes/QtCurve/gtk-2.0/gtkrc r, /var/cache/fontconfig/0c42b92420913fbcd7539015ba025a31-x86.cache-2 r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4b172ca7f111e3cffadc3636415fead9-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/82263fb4001171a9d4b2e27da14be10b-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/b6bbb9f898b73777cfe763014a8c08d3-x86.cache-2 r, /var/cache/fontconfig/c938cb1e82ff5ba1829a2dab18b1c8a9-x86.cache-2 r, /var/cache/fontconfig/cf6c88e680607f2ab796171745f068a4-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, /var/lib/dbus/machine-id r, /var/run/dbus/system_bus_socket w, /var/run/nscd/socket w, /var/tmp/ r, }	over 2 years ago	Initial import	216	thomasrjones	Edit	History
opensuse11.0	/bin/basename	#include <tunables/global> /bin/basename { deny /dev/urandom r, deny /etc/ld.so.cache r, /bin/basename mr, /lib/ld-.so mrcx, /lib/libc-2.8.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/locale/* r, /usr/share/locale/locale.alias r, profile /lib/ld-2.8.so { } }	over 3 years ago	/var/log/aoss.log	162	mhjzimmerman	Edit	History
opensuse10.3	/usr/bin/evince	#include <tunables/global> /usr/bin/evince { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/mtab r, /etc/sound/events/gtk-events-2.soundlist r, /etc/xpdfrc r, /etc/xpdfrc-cjk r, /etc/xpdfrc-cjk-auto r, /etc/xpdfrc-cjk.sjis r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /home//.recently-used.xbel rw, /home//.recently-used.xbel. rw, /home//Desktop/.pdf r, /proc/meminfo r, /usr/bin/evince mr, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/* r, /usr/share/xpdf/** r, /var/cache/libx11/compose/* r, }	over 4 years ago	none	256	cinimod	Edit	History
opensuse10.3	/usr/lib/firefox/firefox.sh	#include <tunables/global> /usr/lib/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/user-tmp> /bin/basename Px, /bin/bash ixr, /bin/grep ixr, /bin/mktemp ixr, /etc/magic r, /home//.gdbinit r, /home//.inputrc r, /proc//auxv r, /proc//mem r, /proc/*/status r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/file ixr, /usr/bin/gdb ixr, /usr/lib/firefox/firefox-bin Pxr, /usr/lib/firefox/firefox.sh mr, /usr/share/misc/magic.mgc r, }	over 4 years ago	allow -d gdb option for firefox plus other misc updates	361	jmichael	Edit	History
opensuse11.0	/usr/share/amsn/amsn	#include <tunables/global> /usr/share/amsn/amsn flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/share/amsn/amsn r, ^null-7a { deny owner /home/guille/.amsn/contactoguille_hotmail_com/displaypic/roaming-7682-2004-11-19t14-31-0.png r, deny owner /home/guille/.amsn/contactoguille_hotmail_com/plugins.xml rw, deny owner /home/guille/.amsn/contactoguille_hotmail_com/states.xml r, /dev/ r, /dev/urandom r, /etc/fonts/** r, /etc/gai.conf r, /etc/ld.so.cache r, /etc/localtime r, /etc/resolv.conf r, owner /home//.amsn/abook.xml r, owner /home//.amsn/config.xml r, owner /home//.amsn/config.xml.temp w, owner /home//.amsn/contactoguille_hotmail_com/config.xml r, owner /home//.amsn/displaypic/ r, owner /home//.amsn/displaypic/cache/ r, owner /home//.amsn/gconfig.xml rw, owner /home//.amsn/langlist.xml r, owner /home//.amsn/plugins/ r, owner /home//.amsn/profiles rw, owner /home//.amsn/states.xml r, owner /home//.cache/farsight/codecs.audio.i686.cache r, owner /home//.fontconfig/39430c2bdd5190fd574d5f38df416402-x86.cache-2 r, owner /home//.gstreamer-0.10/registry.i686.bin r, /lib/libso mr, owner /proc//mounts r, /proc/meminfo r, owner /tmp/tcliMvFaW r, owner /tmp/tclmo6BlR r, /usr/lib/farsight2-0.0/libnice-transmitter.so mr, /usr/lib/gconv/gconv-modules.cache r, /usr/lib/gstreamer-0.10/ r, /usr/lib/gstreamer-0.10/libfsfunnel.so mr, /usr/lib/gstreamer-0.10/libfsrtcpfilter.so mr, /usr/lib/gstreamer-0.10/libfsrtpconference.so mr, /usr/lib/gstreamer-0.10/libgstcoreelements.so mr, /usr/lib/gstreamer-0.10/libgstnice.so mr, /usr/lib/gstreamer-0.10/libgstrtpmanager.so mr, /usr/lib/gstreamer-0.10/libgstrtpmux.so mr, /usr/lib/gstreamer-0.10/libgstvalve.so mr, /usr/lib/libso* mr, /usr/lib/locale/** r, /usr/lib/tcl/ r, /usr/lib/tcl/tcl8.5/ r, /usr/lib/tcl/tcl8.5/auto.tcl r, /usr/lib/tcl/tcl8.5/clock.tcl r, /usr/lib/tcl/tcl8.5/encoding/ r, /usr/lib/tcl/tcl8.5/encoding/ascii.enc r, /usr/lib/tcl/tcl8.5/http1.0/pkgIndex.tcl r, /usr/lib/tcl/tcl8.5/init.tcl r, /usr/lib/tcl/tcl8.5/opt0.4/pkgIndex.tcl r, /usr/lib/tcl/tcl8.5/package.tcl r, /usr/lib/tcl/tcl8.5/tclIndex r, /usr/lib/tcl/tcl8.5/tm.tcl r, /usr/lib/tcl/tcl8/8.3/ r, /usr/lib/tcl/tcl8/8.4/ r, /usr/lib/tcl/tcl8/8.5/ r, /usr/lib/tcl/tcl8/8.5/msgcat-1.4.2.tm r, /usr/lib/tcl/tk8.5/ r, /usr/lib/tcl/tk8.5/button.tcl r, /usr/lib/tcl/tk8.5/comdlg.tcl r, /usr/lib/tcl/tk8.5/entry.tcl r, /usr/lib/tcl/tk8.5/listbox.tcl r, /usr/lib/tcl/tk8.5/menu.tcl r, /usr/lib/tcl/tk8.5/msgs/es.msg r, /usr/lib/tcl/tk8.5/palette.tcl r, /usr/lib/tcl/tk8.5/panedwindow.tcl r, /usr/lib/tcl/tk8.5/pkgIndex.tcl r, /usr/lib/tcl/tk8.5/scale.tcl r, /usr/lib/tcl/tk8.5/scrlbar.tcl r, /usr/lib/tcl/tk8.5/spinbox.tcl r, /usr/lib/tcl/tk8.5/tclIndex r, /usr/lib/tcl/tk8.5/tearoff.tcl r, /usr/lib/tcl/tk8.5/text.tcl r, /usr/lib/tcl/tk8.5/tk.tcl r, /usr/lib/tcl/tk8.5/tkfbox.tcl r, /usr/lib/tcl/tk8.5/ttk/ r, /usr/lib/tcl/tk8.5/ttk/altTheme.tcl r, /usr/lib/tcl/tk8.5/ttk/button.tcl r, /usr/lib/tcl/tk8.5/ttk/clamTheme.tcl r, /usr/lib/tcl/tk8.5/ttk/classicTheme.tcl r, /usr/lib/tcl/tk8.5/ttk/combobox.tcl r, /usr/lib/tcl/tk8.5/ttk/cursors.tcl r, /usr/lib/tcl/tk8.5/ttk/defaults.tcl r, /usr/lib/tcl/tk8.5/ttk/entry.tcl r, /usr/lib/tcl/tk8.5/ttk/fonts.tcl r, /usr/lib/tcl/tk8.5/ttk/menubutton.tcl r, /usr/lib/tcl/tk8.5/ttk/notebook.tcl r, /usr/lib/tcl/tk8.5/ttk/panedwindow.tcl r, /usr/lib/tcl/tk8.5/ttk/progress.tcl r, /usr/lib/tcl/tk8.5/ttk/scale.tcl r, /usr/lib/tcl/tk8.5/ttk/scrollbar.tcl r, /usr/lib/tcl/tk8.5/ttk/sizegrip.tcl r, /usr/lib/tcl/tk8.5/ttk/treeview.tcl r, /usr/lib/tcl/tk8.5/ttk/ttk.tcl r, /usr/lib/tcl/tk8.5/ttk/utils.tcl r, /usr/lib/tcl/tls1.6/libtls.so mr, /usr/lib/tcl/tls1.6/pkgIndex.tcl r, /usr/lib/tcl/tls1.6/tls.tcl r, /usr/share/X11/XKeysymDB r, /usr/share/X11/Xcms.txt r, /usr/share/X11/locale/compose.dir r, /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r, /usr/share/X11/locale/locale.alias r, /usr/share/X11/locale/locale.dir r, /usr/share/amsn/BWidget_mods.tcl r, /usr/share/amsn/abook.tcl r, /usr/share/amsn/addressbook.tcl r, /usr/share/amsn/alarm.tcl r, /usr/share/amsn/amsn r, /usr/share/amsn/amsncore.tcl r, /usr/share/amsn/assistant.tcl r, /usr/share/amsn/audio.tcl r, /usr/share/amsn/auth.tcl r, /usr/share/amsn/automsg.tcl r, /usr/share/amsn/autoupdate.tcl r, /usr/share/amsn/balloon.tcl r, /usr/share/amsn/bugs.tcl r, /usr/share/amsn/chatwindow.tcl r, /usr/share/amsn/config.tcl r, /usr/share/amsn/ctthemes.tcl r, /usr/share/amsn/dock.tcl r, /usr/share/amsn/groups.tcl r, /usr/share/amsn/gui.tcl r, /usr/share/amsn/guicontactlist.tcl r, /usr/share/amsn/hotmail.tcl r, /usr/share/amsn/lang.tcl r, /usr/share/amsn/lang/langen r, /usr/share/amsn/lang/langes r, /usr/share/amsn/login_screen.tcl r, /usr/share/amsn/loging.tcl r, /usr/share/amsn/migmd5.tcl r, /usr/share/amsn/msncam.tcl r, /usr/share/amsn/msngames.tcl r, /usr/share/amsn/msnp2p.tcl r, /usr/share/amsn/mutex.tcl r, /usr/share/amsn/picture.tcl r, /usr/share/amsn/plugins.tcl r, /usr/share/amsn/plugins/ r, /usr/share/amsn/plugins/AvatarAutoChange/plugininfo.xml r, /usr/share/amsn/plugins/ColoredNicks/colorednicks.tcl r, /usr/share/amsn/plugins/ColoredNicks/lang/langen r, /usr/share/amsn/plugins/ColoredNicks/lang/langes r, /usr/share/amsn/plugins/ColoredNicks/plugininfo.xml r, /usr/share/amsn/plugins/MSNGameTTT/plugininfo.xml r, /usr/share/amsn/plugins/Notes/notes.tcl r, /usr/share/amsn/plugins/Notes/plugininfo.xml r, /usr/share/amsn/plugins/Nudge/Nudge.tcl r, /usr/share/amsn/plugins/Nudge/lang/langen r, /usr/share/amsn/plugins/Nudge/lang/langes r, owner /usr/share/amsn/plugins/Nudge/plugininfo.xml r, /usr/share/amsn/plugins/SearchContact/plugininfo.xml r, /usr/share/amsn/plugins/WebcamShooter/camshoot.tcl r, /usr/share/amsn/plugins/WebcamShooter/lang/langen r, /usr/share/amsn/plugins/WebcamShooter/lang/langes r, /usr/share/amsn/plugins/WebcamShooter/plugininfo.xml r, /usr/share/amsn/plugins/bigsmileys/plugininfo.xml r, /usr/share/amsn/plugins/dbusviewer/plugininfo.xml r, /usr/share/amsn/plugins/emotes/plugininfo.xml r, /usr/share/amsn/plugins/inkdraw/plugininfo.xml r, owner /usr/share/amsn/plugins/music/plugininfo.xml r, /usr/share/amsn/plugins/remind/lang/langen r, /usr/share/amsn/plugins/remind/lang/langes r, /usr/share/amsn/plugins/remind/plugininfo.xml r, /usr/share/amsn/plugins/remind/remind.tcl r, /usr/share/amsn/plugins/winks/lang/langen r, /usr/share/amsn/plugins/winks/lang/langes r, /usr/share/amsn/plugins/winks/plugininfo.xml r, /usr/share/amsn/plugins/winks/winks.tcl r, /usr/share/amsn/pluginslog.tcl r, /usr/share/amsn/preferences.tcl r, /usr/share/amsn/progressbar.tcl r, /usr/share/amsn/protocol.tcl r, /usr/share/amsn/proxy.tcl r, /usr/share/amsn/remote.tcl r, /usr/share/amsn/roaming.tcl r, /usr/share/amsn/searchdialog.tcl r, /usr/share/amsn/sip.tcl r, /usr/share/amsn/skins.tcl r, /usr/share/amsn/skins/default/displaypic/amsn.png r, /usr/share/amsn/skins/default/displaypic/nopic.png r, /usr/share/amsn/skins/default/pixmaps/amsnicon.png r, /usr/share/amsn/skins/default/pixmaps/arrow.png r, /usr/share/amsn/skins/default/pixmaps/back.png r, /usr/share/amsn/skins/default/pixmaps/checkbox.png r, /usr/share/amsn/skins/default/pixmaps/checkbox_on.png r, /usr/share/amsn/skins/default/pixmaps/doffline.png r, /usr/share/amsn/skins/default/pixmaps/download.png r, /usr/share/amsn/skins/default/pixmaps/globe.png r, /usr/share/amsn/skins/default/pixmaps/loganim.gif r, /usr/share/amsn/skins/default/pixmaps/loginbut.png r, /usr/share/amsn/skins/default/pixmaps/loginbut_hover.png r, /usr/share/amsn/skins/default/pixmaps/logolinmsn.png r, /usr/share/amsn/skins/default/pixmaps/null r, /usr/share/amsn/skins/default/settings.xml r, /usr/share/amsn/skins/default/smileys/ r, /usr/share/amsn/smileys.tcl r, /usr/share/amsn/soap.tcl r, /usr/share/amsn/socks.tcl r, /usr/share/amsn/spaces.tcl r, /usr/share/amsn/sxml.tcl r, /usr/share/amsn/trayicon.tcl r, /usr/share/amsn/utils/ r, /usr/share/amsn/utils/BWidget-1.9.0/init.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/lang/en.rc r, audit /usr/share/amsn/utils/BWidget-1.9.0/lang/es.rc r, /usr/share/amsn/utils/BWidget-1.9.0/pkgIndex.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/scrollframe.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/utils.tcl r, /usr/share/amsn/utils/BWidget-1.9.0/widget.tcl r, /usr/share/amsn/utils/TkCximage/TkCximage.so mr, /usr/share/amsn/utils/TkCximage/pkgIndex.tcl r, /usr/share/amsn/utils/asyncresolver/asyncresolver.tcl r, /usr/share/amsn/utils/asyncresolver/libasyncresolver.so mr, /usr/share/amsn/utils/asyncresolver/pkgIndex.tcl r, /usr/share/amsn/utils/base64/base64.tcl r, /usr/share/amsn/utils/base64/pkgIndex.tcl r, /usr/share/amsn/utils/combobox/combobox.tcl r, /usr/share/amsn/utils/combobox/pkgIndex.tcl r, /usr/share/amsn/utils/contentmanager/contentmanager.tcl r, /usr/share/amsn/utils/contentmanager/pkgIndex.tcl r, /usr/share/amsn/utils/des/des.tcl r, /usr/share/amsn/utils/des/pkgIndex.tcl r, /usr/share/amsn/utils/des/tcldes.tcl r, /usr/share/amsn/utils/dpbrowser/pkgIndex.tcl r, /usr/share/amsn/utils/drawboard/pkgIndex.tcl r, /usr/share/amsn/utils/farsight/pkgIndex.tcl r, /usr/share/amsn/utils/farsight/tcl_farsight.so mr, /usr/share/amsn/utils/framec/framec.tcl r, /usr/share/amsn/utils/framec/pkgIndex.tcl r, /usr/share/amsn/utils/gupnp/gupnp.so mr, /usr/share/amsn/utils/gupnp/pkgIndex.tcl r, /usr/share/amsn/utils/http/http.tcl r, /usr/share/amsn/utils/http/pkgIndex.tcl r, /usr/share/amsn/utils/linux/ r, /usr/share/amsn/utils/linux/capture/pkgIndex.tcl r, /usr/share/amsn/utils/linux/linflash/pkgIndex.tcl r, /usr/share/amsn/utils/linux/traydock/libtray.so mr, /usr/share/amsn/utils/linux/traydock/pkgIndex.tcl r, /usr/share/amsn/utils/log/pkgIndex.tcl r, /usr/share/amsn/utils/pixmapmenu/pkgIndex.tcl r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow1_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/arrow2_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbody_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/sliderbottom_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidergrip_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop_disabled.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop_hover.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/slidertop_pressed.png r, /usr/share/amsn/utils/pixmapscroll/horizontal/trough.png r, /usr/share/amsn/utils/pixmapscroll/pixmapscroll.tcl r, /usr/share/amsn/utils/pixmapscroll/pkgIndex.tcl r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow1_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/arrow2_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbody_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/sliderbottom_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidergrip.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidergrip_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidergrip_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidergrip_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop_disabled.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop_hover.png r, /usr/share/amsn/utils/pixmapscroll/vertical/slidertop_pressed.png r, /usr/share/amsn/utils/pixmapscroll/vertical/trough.png r, /usr/share/amsn/utils/scalable-bg/pkgIndex.tcl r, /usr/share/amsn/utils/scalable-bg/scalable-bg.tcl r, /usr/share/amsn/utils/sexytile/pkgIndex.tcl r, /usr/share/amsn/utils/sha1/pkgIndex.tcl r, /usr/share/amsn/utils/sha1/sha1.tcl r, /usr/share/amsn/utils/snit/main2.tcl r, /usr/share/amsn/utils/snit/pkgIndex.tcl r, /usr/share/amsn/utils/snit/snit2.tcl r, /usr/share/amsn/utils/snit/validate.tcl r, /usr/share/amsn/utils/tclISF/.tcl r, /usr/share/amsn/utils/tcl_siren/pkgIndex.tcl r, /usr/share/amsn/utils/tkdnd/libtkdnd.so mr, /usr/share/amsn/utils/tkdnd/pkgIndex.tcl r, /usr/share/amsn/utils/tkdnd/tkdnd.tcl r, /usr/share/amsn/utils/uri/pkgIndex.tcl r, /usr/share/amsn/utils/voipcontrols/pkgIndex.tcl r, /usr/share/amsn/utils/webcamsn/pkgIndex.tcl r, /usr/share/fonts/ r, /usr/share/ghostscript/fonts/ r, /usr/share/icons/DMZ/cursors/crossed_circle r, /usr/share/icons/DMZ/cursors/hand2 r, /usr/share/icons/DMZ/cursors/left_ptr r, /usr/share/icons/DMZ/cursors/xterm r, /usr/share/icons/DMZ/index.theme r, /usr/share/locale/** r, /usr/share/tcl/ r, /usr/share/tcl/snack2.2/pkgIndex.tcl r, /usr/share/tcl/snack2.2/snack.tcl r, /var/cache/fontconfig/17090aa38d5c6f09fb8c5c354938f1d7-x86.cache-2 r, /var/cache/fontconfig/2d31a572ce6667f6a0da9c8dc611898b-x86.cache-2 r, /var/cache/fontconfig/30786aca7a961ef9f9799e540455831d-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/5ca8086aeacc9c68e81a71e7ef846b3b-x86.cache-2 r, /var/cache/fontconfig/77e41c5059666d75f92e318d4be8c21e-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-2 r, /var/cache/fontconfig/a1c95d6dfc9a7b34f44445cf81166004-x86.cache-2 r, /var/cache/fontconfig/d62e99ef547d1d24cdb1bd22ec1a2976-x86.cache-2 r, /var/cache/fontconfig/df311e82a1a24c41a75c2c930223552e-x86.cache-2 r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, owner /var/run/gdm/auth-for-guille-ntIQhd/database r, } }	over 2 years ago	amsn	129	guillotex	Edit	History
opensuse10.3	/usr/bin/xkbcomp	#include <tunables/global> /usr/bin/xkbcomp { #include <abstractions/X> #include <abstractions/base> /usr/bin/xkbcomp mr, /var/lib/xkb/compiled/*.xkm w, }	over 4 years ago	Import of jmichaels profiles	218	dominic	Edit	History
opensuse10.3	/usr/sbin/httpd2-prefork	#include <tunables/global> /usr/sbin/httpd2-prefork { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability kill, capability net_bind_service, capability setgid, capability setuid, /bin/bash ixr, /data1/mysql/mysql.sock w, /data1/srv/www/htdocs/favicon.ico r, /data1/srv/www/htdocs/fileadmin/ r, /data1/srv/www/htdocs/index.php r, /data1/srv/www/htdocs/t3lib/ r, /data1/srv/www/htdocs/typo3/ r, /data1/srv/www/htdocs/typo3conf/ rw, /data1/srv/www/htdocs/typo3temp/ rw, /data1/srv/www/htdocs/uploads/ r, /dev/tty rw, /etc/apache2/.conf r, /etc/apache2/conf.d/ r, /etc/apache2/conf.d/.conf r, /etc/apache2/mod_perl-startup.pl r, /etc/apache2/ssl.crt/myour.cert.crt r, /etc/apache2/ssl.key/myour.cert.key r, /etc/apache2/sysconfig.d/global.conf r, /etc/apache2/sysconfig.d/include.conf r, /etc/apache2/sysconfig.d/loadmodule.conf r, /etc/apache2/vhosts.d/ r, /etc/apache2/vhosts.d/.conf r, /etc/gai.conf r, /etc/mime.types r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/ r, /etc/php5/conf.d/.ini r, /proc//attr/current w, /tmp/ w, /usr/bin/convert ixr, /usr/lib64/** mr, /usr/sbin/httpd2-prefork mr, /usr/sbin/sendmail ixr, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/mysql/charsets/Index.xml r, /usr/share/snmp/mibs/.txt r, /usr/share/snmp/mibs/.index r, /var/lib/php5/sess_ krw, /var/lib/php5/session_mm_apache2handler0.sem kw, /var/log/apache2/access_log w, /var/log/apache2/error_log w, /var/run/httpd2.pid w, /var/run/nscd/services r, } /usr/sbin/httpd2-prefork//DEFAULT_URI { #include <abstractions/bash> #include <abstractions/nameservice> /bin/bash ixr, /data1/mysql/mysql.sock w, /data1/srv/www/htdocs/clear.gif r, /data1/srv/www/htdocs/favicon.ico r, /data1/srv/www/htdocs/fileadmin/ rw, /data1/srv/www/htdocs/fileadmin/ rw, /data1/srv/www/htdocs/horizontal.gif r, /data1/srv/www/htdocs/index.php r, /data1/srv/www/htdocs/t3lib/ r, /data1/srv/www/htdocs/typo3/ r, /data1/srv/www/htdocs/typo3conf/ r, /data1/srv/www/htdocs/typo3temp/ rw, /data1/srv/www/htdocs/uploads/ rw, /dev/tty rw, /dev/urandom r, /etc/ld.so.cache r, /lib64/ld-2.6.1.so ixr, /lib64/libbz2.so.* mr, /lib64/libc-.so mr, /lib64/libdl-.so mr, /lib64/libexpat.so.* mr, /lib64/libhistory.so.* mr, /lib64/libm-.so mr, /lib64/libncurses.so. mr, /lib64/libpthread-.so mr, /lib64/libreadline.so. mr, /lib64/libz.so.* mr, /proc//attr/current w, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/convert ixr, /usr/lib/locale/* r, /usr/lib64/ImageMagick-6.3.5/config/coder.xml r, /usr/lib64/ImageMagick-6.3.5/config/delegates.xml r, /usr/lib64/ImageMagick-6.3.5/config/english.xml r, /usr/lib64/ImageMagick-6.3.5/config/locale.xml r, /usr/lib64/ImageMagick-6.3.5/config/magic.xml r, /usr/lib64/ImageMagick-6.3.5/modules-Q16/coders/gif.la r, /usr/lib64/ImageMagick-6.3.5/modules-Q16/coders/jpeg.la r, /usr/lib64/ImageMagick-6.3.5/modules-Q16/coders/jpeg.so mr, /usr/lib64/gconv/ISO8859-.so mr, /usr/lib64/gconv/gconv-modules.cache r, /usr/lib64/libICE.so. mr, /usr/lib64/libMagick.so.* mr, /usr/lib64/libSM.so.* mr, /usr/lib64/libWand.so.* mr, /usr/lib64/libX11.so.* mr, /usr/lib64/libXau.so.* mr, /usr/lib64/libXext.so.* mr, /usr/lib64/libXt.so.* mr, /usr/lib64/libfontconfig.so.* mr, /usr/lib64/libfreetype.so.* mr, /usr/lib64/libjpeg.so.* mr, /usr/lib64/liblcms.so.* mr, /usr/lib64/libpostfix-global.so.* mr, /usr/lib64/libtiff.so.* mr, /usr/lib64/libxcb-xlib.so.* mr, /usr/lib64/libxcb.so.* mr, /usr/sbin/sendmail ixr, /usr/share/apache2/error/* r, /usr/share/apache2/error/include/* r, /usr/share/locale/** r, /usr/share/mysql/charsets/Index.xml r, /var/lib/php5/sess_* krw, /var/log/apache2/access_log w, /var/log/apache2/error_log w, } /usr/sbin/httpd2-prefork//HANDLING_UNTRUSTED_INPUT { #include <abstractions/nameservice> /proc/*/attr/current w, /var/log/apache2/access_log w, /var/log/apache2/error_log w, }	over 4 years ago		194	purple	Edit	History
opensuse10.3	/bin/netstat	# $Id: bin.netstat 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # evolution, amongst other things, calls this program. I didn't want to # give evolution access to significant chunks of /proc # #include <tunables/global> /bin/netstat { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, /bin/netstat rmix, /etc/networks r, @{PROC} r, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/fd r, @{PROC}/net r, @{PROC}/net/* r, }	over 4 years ago	20071015	261	davepl	Edit	History
opensuse10.3	/usr/bin/opensuse-updater-gnome-applet	#include <tunables/global> /usr/bin/opensuse-updater-gnome-applet { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /home//.Xauthority r, /home//.fontconfig/* r, /home//.opensuse-updater-gnome rw, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/opensuse-updater-gnome-applet mr, /usr/sbin/zypp-checkpatches-wrapper Px, /usr/share/opensuse-updater-gnome/glade/.glade r, /usr/share/opensuse-updater-gnome/images/** r, }	over 4 years ago	none	194	cinimod	Edit	History
opensuse11.0	/usr/bin/tor	#include <tunables/global> /usr/bin/tor { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, /etc/tor/torrc r, /usr/bin/tor mr, /var/db/nscd/* r, /var/lib/tor/* rw, /var/lib/tor// r, /var/lib/tor/cached-status/* rw, owner /var/log/tor/* w, /var/log/tor/* a, /var/run/tor/tor.pid w, }	over 2 years ago		205	shimingzhou	Edit	History
opensuse11.0	/usr/local/temp/install	#include <tunables/global> /usr/local/temp/install { #include <abstractions/base> #include <abstractions/bash> capability chown, capability fowner, capability fsetid, /bin/basename cx, owner /bin/bash ix, owner /bin/cat cx, /bin/chmod cx, /bin/date px, owner /bin/gawk cx, /bin/grep cx, owner /bin/ls mix, owner /bin/mv cx, /bin/pwd cx, owner /bin/rm cx, owner /bin/sed cx, owner /bin/tar cx, owner /bin/uname cx, owner /dev/tty rw, owner /etc/group r, owner /etc/nsswitch.conf r, owner /etc/passwd r, /lib64/libc-2.8.so cx, owner /tmp/9721a rw, owner /tmp/9721a_cleaned rw, owner /tmp/9721b rw, owner /tmp/9721svfile rw, owner /tmp/9902a rw, owner /usr/bin/dirname cx, owner /usr/bin/expr cx, /usr/bin/head cx, owner /usr/bin/wc cx, owner /usr/local/temp/ r, /usr/local/temp/install r, owner /usr/local/temp/licenses/license.dat rw, owner /usr/local/temp/licenses/old/ r, owner /usr/local/temp/matlab.common rw, owner /usr/local/temp/matlab.glnx86 rw, /usr/local/temp/stu_control.dat rw, owner /usr/local/temp/stu_dspblks.dat rw, owner /usr/local/temp/stu_dspblks_glnx86.tar r, owner /usr/local/temp/stu_images.dat rw, owner /usr/local/temp/stu_images_glnx86.tar r, owner /usr/local/temp/stu_matlab.dat rw, owner /usr/local/temp/stu_matlab_glnx86.tar r, owner /usr/local/temp/stu_optim.dat rw, owner /usr/local/temp/stu_optim_glnx86.tar r, owner /usr/local/temp/stu_signal.dat rw, owner /usr/local/temp/stu_signal_glnx86.tar r, owner /usr/local/temp/stu_simulink.dat rw, owner /usr/local/temp/stu_simulink_glnx86.tar r, owner /usr/local/temp/stu_stats.dat rw, owner /usr/local/temp/stu_stats_glnx86.tar r, owner /usr/local/temp/stu_symbolic.dat rw, owner /usr/local/temp/stu_symbolic_glnx86.tar r, /usr/local/temp/tbx.control.common r, /usr/local/temp/tbx.control.glnx86 r, owner /usr/local/temp/tbx.dspblks.common rw, owner /usr/local/temp/tbx.dspblks.glnx86 rw, owner /usr/local/temp/tbx.images.common rw, owner /usr/local/temp/tbx.images.glnx86 rw, owner /usr/local/temp/tbx.optim.common rw, owner /usr/local/temp/tbx.optim.glnx86 rw, owner /usr/local/temp/tbx.signal.common rw, owner /usr/local/temp/tbx.signal.glnx86 rw, owner /usr/local/temp/tbx.simulink.common rw, owner /usr/local/temp/tbx.simulink.glnx86 rw, owner /usr/local/temp/tbx.stats.common rw, owner /usr/local/temp/tbx.stats.glnx86 rw, owner /usr/local/temp/tbx.symbolic.common rw, owner /usr/local/temp/tbx.symbolic.glnx86 rw, /usr/local/temp/update/data/piece.map r, /usr/local/temp/update/install/abort.sh r, /usr/local/temp/update/install/cleanup.sh r, /usr/local/temp/update/install/ftpfiles.sh r, /usr/local/temp/update/install/main.sh r, /usr/local/temp/update/install/mapname.sh r, /usr/local/temp/update/install/options.sh r, /usr/local/temp/update/install/util.sh r, owner /usr/local/temp/update/pd/lm/b w, owner /usr/local/temp/update/pd/lm/glnx86/b w, owner /usr/local/temp/update/pd/lm/glnx86/tar.cmp w, owner /usr/local/temp/update/pd/lm/tar.cmp w, owner /usr/local/temp/update/pd/matlab/b w, owner /usr/local/temp/update/pd/matlab/glnx86/b w, owner /usr/local/temp/update/pd/matlab/glnx86/tar.enc w, owner /usr/local/temp/update/pd/matlab/tar.enc w, owner /usr/local/temp/update/pd/toolbox/control/b w, owner /usr/local/temp/update/pd/toolbox/control/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/control/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/control/tar.enc w, owner /usr/local/temp/update/pd/toolbox/dspblks/b w, owner /usr/local/temp/update/pd/toolbox/dspblks/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/dspblks/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/dspblks/tar.enc w, owner /usr/local/temp/update/pd/toolbox/images/b w, owner /usr/local/temp/update/pd/toolbox/images/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/images/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/images/tar.enc w, owner /usr/local/temp/update/pd/toolbox/optim/b w, owner /usr/local/temp/update/pd/toolbox/optim/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/optim/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/optim/tar.enc w, owner /usr/local/temp/update/pd/toolbox/signal/b w, owner /usr/local/temp/update/pd/toolbox/signal/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/signal/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/signal/tar.enc w, owner /usr/local/temp/update/pd/toolbox/simulink/b w, owner /usr/local/temp/update/pd/toolbox/simulink/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/simulink/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/simulink/tar.enc w, owner /usr/local/temp/update/pd/toolbox/stats/b w, owner /usr/local/temp/update/pd/toolbox/stats/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/stats/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/stats/tar.enc w, owner /usr/local/temp/update/pd/toolbox/symbolic/b w, owner /usr/local/temp/update/pd/toolbox/symbolic/glnx86/b w, owner /usr/local/temp/update/pd/toolbox/symbolic/glnx86/tar.enc w, owner /usr/local/temp/update/pd/toolbox/symbolic/tar.enc w, owner /usr/share/locale-bundle/it/LC_MESSAGES/coreutils.mo r, owner /var/run/nscd/socket w, profile /bin/basename { owner /bin/basename mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /bin/cat { owner /bin/cat mr, owner /dev/null r, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /bin/chmod { owner /bin/chmod mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/local/temp/licenses/license.dat w, owner /usr/share/locale/ r, } profile /bin/gawk { owner /bin/gawk mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /lib64/libdl-.so mr, owner /lib64/libm-.so mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /bin/grep { owner /bin/grep mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/lib/locale/** r, owner /usr/lib64/gconv/ISO8859-.so mr, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/local/temp/licenses/license.dat r, owner /usr/share/locale/* r, } profile /bin/mv { owner /bin/mv mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libacl.so. mr, owner /lib64/libattr.so.* mr, owner /lib64/libc-.so mr, owner /usr/lib/locale/* r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/local/temp/licenses/license.dat rw, owner /usr/local/temp/licenses/old/license.dat.feb42009.3 w, owner /usr/share/locale/** r, } profile /bin/pwd { owner /bin/pwd mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /bin/rm { owner /bin/rm mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /tmp/9721a w, owner /tmp/9902a w, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale-bundle/it/LC_MESSAGES/coreutils.mo r, owner /usr/share/locale/ r, } profile /bin/sed { owner /bin/sed mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /bin/tar { capability chown, capability fowner, capability fsetid, owner /bin/tar mr, owner /dev/urandom r, owner /etc/group r, owner /etc/ld.so.cache r, owner /etc/nsswitch.conf r, owner /etc/passwd r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /lib64/libnsl-.so mr, owner /lib64/libnss_compat-.so mr, owner /lib64/libnss_files-.so mr, owner /lib64/libnss_nis-.so mr, owner /lib64/libpthread-.so mr, owner /lib64/librt-.so mr, owner /usr/lib/locale/** r, owner /usr/lib64/gconv/ISO8859-.so r, owner /usr/lib64/gconv/gconv-modules.cache r, /usr/local/temp/stu_control.dat w, owner /usr/local/temp/stu_control_glnx86.tar r, /usr/local/temp/tbx.control.common w, /usr/local/temp/tbx.control.glnx86 w, owner /usr/share/locale/* r, owner /var/run/nscd/socket w, } profile /bin/uname { owner /bin/uname mr, owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /lib64/libc-2.8.so { owner /dev/urandom r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, } profile /usr/bin/dirname { owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/bin/dirname mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /usr/bin/expr { owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/bin/expr mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } profile /usr/bin/head { owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /usr/bin/head mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale-bundle/it/LC_MESSAGES/coreutils.mo r, owner /usr/share/locale/ r, } profile /usr/bin/wc { owner /dev/urandom r, owner /etc/ld.so.cache r, owner /lib64/ld-.so px, owner /lib64/libc-.so mr, owner /tmp/9721a r, owner /tmp/9902a r, owner /usr/bin/wc mr, owner /usr/lib/locale/ r, owner /usr/lib64/gconv/gconv-modules.cache r, owner /usr/share/locale/ r, } }	over 3 years ago	install	154	install	Edit	History
opensuse10.3	/bin/uname	#include <tunables/global> /bin/uname flags=(complain) { #include <abstractions/base> /bin/uname mr, /proc/cpuinfo r, }	over 3 years ago		243	arturk	Edit	History
ubuntu-gutsy	/usr/bin/tvtime	#include <tunables/global> /usr/bin/tvtime { #include <abstractions/base> /usr/bin/tvtime mr, }	over 4 years ago	gnome	255	hbpteam	Edit	History
opensuse10.3	/usr/bin/numlockx	#include <tunables/global> /usr/bin/numlockx flags=(complain) { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/numlockx mr, }	over 4 years ago	few more changes to get gnome session working elsewhere	222	jmichael	Edit	History
opensuse11.0	/usr/bin/svi	#include <tunables/global> /usr/bin/svi flags=(complain) { #include <abstractions/base> deny owner /etc/audit/ r, deny owner /etc/audit/.swp w, deny owner /etc/audit/.swpx w, deny owner /lib64/ast/bin/ksh mr, deny owner /lib64/ast/bin/ksh x, deny owner /proc/sys/kernel/ngroups_max r, deny owner /root/ r, deny owner /root/.exrc r, deny owner /root/.kshrc_history ra, deny owner /root/.profile r, deny owner /root/.swp w, deny owner /root/.swpx w, deny owner /root/.viminfo rw, deny owner /root/.viminfo.tmp rw, deny owner /usr/share/terminfo/x/xterm r, owner /etc/bash.bashrc r, owner /etc/nsswitch.conf r, owner /etc/passwd r, owner /etc/vimrc r, owner /tmp/ w, owner /tmp/sf30.9iq w, owner /tmp/sfa0v.165 w, owner /tmp/sfgql.687 w, owner /tmp/sfpb7.hm4 w, owner /tmp/sfqo9.68j w, owner /usr/bin/svi r, owner /usr/share/vim/site/ftdetect/ r, owner /usr/share/vim/vim71/filetype.vim r, owner /usr/share/vim/vim71/plugin/ r, owner /usr/share/vim/vim71/plugin/getscriptPlugin.vim r, owner /usr/share/vim/vim71/plugin/gzip.vim r, owner /usr/share/vim/vim71/plugin/matchparen.vim r, owner /usr/share/vim/vim71/plugin/netrwPlugin.vim r, owner /usr/share/vim/vim71/plugin/rrhelper.vim r, owner /usr/share/vim/vim71/plugin/spellfile.vim r, owner /usr/share/vim/vim71/plugin/tarPlugin.vim r, owner /usr/share/vim/vim71/plugin/tohtml.vim r, owner /usr/share/vim/vim71/plugin/vimballPlugin.vim r, owner /usr/share/vim/vim71/plugin/zipPlugin.vim r, owner /usr/share/vim/vim71/syntax/syncolor.vim r, owner /usr/share/vim/vim71/syntax/synload.vim r, owner /usr/share/vim/vim71/syntax/syntax.vim r, owner /var/run/nscd/socket w, }	over 3 years ago	svi create	158	mraix	Edit	History
opensuse10.3	/usr/bin/opensuse-updater-gnome-applet	#include <tunables/global> /usr/bin/opensuse-updater-gnome-applet { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /home//.Xauthority r, /home//.fontconfig/* r, /home//.opensuse-updater-gnome rw, /proc/meminfo r, /usr/bin/bug-buddy ixr, /usr/bin/opensuse-updater-gnome-applet mr, /usr/sbin/zypp-checkpatches-wrapper Px, /usr/share/opensuse-updater-gnome/glade/.glade r, /usr/share/opensuse-updater-gnome/images/** r, }	over 4 years ago	Import of jmichaels profiles	212	dominic	Edit	History
opensuse11.0	/usr/sbin/dovecot	#include <tunables/global> /usr/sbin/dovecot { #include <abstractions/base> }	about 1 year ago		57	olivereales	Edit	History
opensuse11.0	/usr/lib/thunderbird3/thunderbird3.sh	#include <tunables/global> /usr/lib/thunderbird3/thunderbird3.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	over 3 years ago	Added by Don	133	gnome	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c rw, /dev/snd/pcmC0D0p rw, /dev/snd/pcmC0D1c rw, /dev/snd/pcmC0D1p rw, /dev/snd/pcmC0D2c rw, /dev/snd/pcmC0D2p rw, /dev/snd/pcmC0D3c rw, /dev/snd/pcmC0D4p rw, /dev/snd/pcmC1D0c rw, /dev/snd/timer r, /etc/fonts/** r, /etc/gai.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.mozilla/ r, /home//.mozilla/eclipse/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox/m8t3ehuc.default/ r, /home//.mozilla/firefox/m8t3ehuc.default/adblockplus/ r, /home//.mozilla/firefox/m8t3ehuc.default/bookmarkbackups/ r, /home//.mozilla/firefox/m8t3ehuc.default/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{07b2a769-ed19-4483-87ce-c643914c81bb\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{07b2a769-ed19-4483-87ce-c643914c81bb\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/components/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/preferences/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/m8t3ehuc.default/prefs.js r, /home//.mozilla/firefox/wl87hxn7.default/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/favicons/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/images/ r, /home//.mozilla/firefox/wl87hxn7.default/adblockplus/ r, /home//.mozilla/firefox/wl87hxn7.default/bookmarkbackups/ r, /home//.mozilla/firefox/wl87hxn7.default/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/images/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/skin/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/prefs.js r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5393 w, /tmp/.ICE-unix/7163 w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/ICH4.conf r, /usr/share/alsa/cards/VIA8233.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/fonts/* r, /usr/share/icons/DMZ-White/cursor.theme r, /usr/share/icons/DMZ-White/cursors/arrow r, /usr/share/icons/DMZ-White/cursors/double_arrow r, /usr/share/icons/DMZ-White/cursors/xterm r, /usr/share/icons/DMZ-White/index.theme r, /usr/share/icons/Human/index.theme r, /usr/share/icons/Tangerine/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/locale-langpack/hu/LC_MESSAGES/libc.mo r, /usr/share/skype/** kr, /var/cache/fontconfig/059138ec877db160474b4d5de1248d14-x86.cache-2 r, /var/cache/fontconfig/089dead882dea3570ffc31a9898cfb69-x86.cache-2 r, /var/cache/fontconfig/0f32d3adc6a232110812e17374eaa446-x86.cache-2 r, /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2 r, /var/cache/fontconfig/102e5142c2e9e50c5e8ece26694a2dad-x86.cache-2 r, /var/cache/fontconfig/118d8d5311348bbdf5fe3b106d7c13d4-x86.cache-2 r, /var/cache/fontconfig/142ecfc435bad6f1fbc2648c1119d5eb-x86.cache-2 r, /var/cache/fontconfig/20bd79ad97094406f7d1b9654bfbd926-x86.cache-2 r, /var/cache/fontconfig/21a99156bb11811cef641abeda519a45-x86.cache-2 r, /var/cache/fontconfig/2561679576a9c7fd2ce41d281d4e00d1-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4123634e9c08547d899d0aaff05ebe69-x86.cache-2 r, /var/cache/fontconfig/4794a0821666d79190d59a36cb4f44b5-x86.cache-2 r, /var/cache/fontconfig/4c599c202bc5c08e2d34565a40eac3b2-x86.cache-2 r, /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2 r, /var/cache/fontconfig/61c830dfac3fd78a12654da5e9ba3f56-x86.cache-2 r, /var/cache/fontconfig/6330322105e0c4105d7c7a6ea2974107-x86.cache-2 r, /var/cache/fontconfig/6333f38776742d18e214673cd2c24e34-x86.cache-2 r, /var/cache/fontconfig/6386b86020ecc1ef9690bb720a13964f-x86.cache-2 r, /var/cache/fontconfig/646addb8444faa74ee138aa00ab0b6a0-x86.cache-2 r, /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2 r, /var/cache/fontconfig/707971e003b4ae6c8121c3a920e507f5-x86.cache-2 r, /var/cache/fontconfig/75a2cd575a62c63e802c11411fb87c37-x86.cache-2 r, /var/cache/fontconfig/7b4a97c10f6c0166998ddfa1cf7392fb-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8ab5f685cd6d8ba67c37c908faf08172-x86.cache-2 r, /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2 r, /var/cache/fontconfig/92a571655fb1c0ec1c4d6f496220600a-x86.cache-2 r, /var/cache/fontconfig/9404ff413c67fc2a1526fd14eb4163a8-x86.cache-2 r, /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2 r, /var/cache/fontconfig/9c0624108b9a2ae8552f664125be8356-x86.cache-2 r, /var/cache/fontconfig/a1131b7be650f9abae4907495aa5815d-x86.cache-2 r, /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86.cache-2 r, /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2 r, /var/cache/fontconfig/a960c40fc9306f090224a04585f8a963-x86.cache-2 r, /var/cache/fontconfig/b21a91cee725896328b8cee8091cf747-x86.cache-2 r, /var/cache/fontconfig/b3fedf7c409f006ca1a6fceffceb77cf-x86.cache-2 r, /var/cache/fontconfig/b5a4f3f568a71026ccdc6a3a51afa9b4-x86.cache-2 r, /var/cache/fontconfig/b8613a33de00eecd32d5a94c3c617829-x86.cache-2 r, /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2 r, /var/cache/fontconfig/c855463f699352c367813e37f3f70ea7-x86.cache-2 r, /var/cache/fontconfig/cabbd14511b9e8a55e92af97fb3a0461-x86.cache-2 r, /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2 r, /var/cache/fontconfig/d82eb4fd963d448e2fcb7d7b793b5df3-x86.cache-2 r, /var/cache/fontconfig/da1bd5ca8443ffe22927a23ce431d198-x86.cache-2 r, /var/cache/fontconfig/ddc79d3ea06a7c6ffa86ede85f3bb5df-x86.cache-2 r, /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2 r, /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2 r, /var/cache/fontconfig/e0f9e95429e756d56293ed4d63866094-x86.cache-2 r, /var/cache/fontconfig/e13b20fdb08344e0e664864cc2ede53d-x86.cache-2 r, /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2 r, /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2 r, /var/cache/fontconfig/e7071f4a29fa870f4323321c154eba04-x86.cache-2 r, /var/cache/fontconfig/e9e44584608a73233979f764b5f9dd81-x86.cache-2 r, /var/cache/fontconfig/eeebfc908bd29a90773fd860017aada4-x86.cache-2 r, /var/cache/fontconfig/f5a93ac943883aa0fd9a7bfe0f6ec3c1-x86.cache-2 r, /var/cache/fontconfig/f71c1c7b3f795e5e20ad4a8800a9d397-x86.cache-2 r, /var/cache/fontconfig/fcff1cd55d48a2c86a175e9943c3506d-x86.cache-2 r, /var/cache/fontconfig/fd9416c4b92f07c6f59a3a8cf496e9dc-x86.cache-2 r, /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86.cache-2 r, /var/cache/fontconfig/fe547fea3a41b43a38975d292a2b19c7-x86.cache-2 r, /var/lib/defoma/fontconfig.d/fonts.conf r, }	over 4 years ago		551	wylow	Edit	History
opensuse10.3	/usr/bin/xsetroot	#include <tunables/global> /usr/bin/xsetroot { #include <abstractions/X> #include <abstractions/base> #include <abstractions/freedesktop.org> /home//.Xauthority r, /usr/bin/xsetroot mr, /var/lib/gdm/ r, }	over 4 years ago	none	209	cinimod	Edit	History
opensuse10.3	/usr/bin/Xgl	#include <tunables/global> /usr/bin/Xgl { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/user-tmp> capability dac_override, capability ipc_owner, capability setgid, capability setuid, capability sys_admin, /bin/bash ixr, /dev/dri/card* rw, /etc/sysconfig/displaymanager r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home//.gnome2/share/fonts/fonts.dir r, /home/jesse/.gnome2/share/fonts/** r, /proc/meminfo r, /usr/bin/Xgl mr, /usr/bin/Xorg Px, /usr/bin/xkbcomp Px, /usr/lib/dri/.so mr, /var/lib/gdm/ r, /var/lib/xdm/authdir/authfiles/* r, /var/lib/xkb/compiled/.xkm rw, /var/log/Xgl..log rw, /var/log/Xgl..log.old w, /var/log/gdm/.log w, }	over 4 years ago	none	320	cinimod	Edit	History
opensuse11.0	/usr/bin/wine	#include <tunables/global> /usr/bin/wine flags=(complain) { #include <abstractions/base> }	over 3 years ago	add wine	332	kooleaf	Edit	History
opensuse10.3	/usr/bin/aoss	#include <tunables/global> /usr/bin/aoss { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/* ixr, /proc/* r, /usr/bin/aoss mr, /usr/lib/RealPlayer10/realplay.bin ux, /usr/lib/thunderbird/thunderbird-bin px, }	over 3 years ago	internet radio, u.a.	182	shivver-fox	Edit	History
opensuse10.3	/usr/bin/xscreensaver	#include <tunables/global> /usr/bin/xscreensaver { #include <abstractions/base> /usr/bin/xscreensaver mr, }	over 4 years ago	Import of jmichaels profiles	223	dominic	Edit	History
opensuse11.0	/usr/bin/kopete	#include <tunables/global> /usr/bin/kopete { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/kde> #include <abstractions/nameservice> deny owner /home/aleksandr/.isomaster r, deny owner /home/aleksandr/.windows-serial r, deny /home/aleksandr/1 r, deny owner /home/aleksandr/avtorizator/.directory r, deny /home/aleksandr/index.html.1 r, owner /DATA_SONY/** rw, /etc/exports r, /etc/fstab r, /etc/kde4/share/config/oxygenrc r, /etc/kde4rc r, /etc/mtab r, /etc/rpc r, /etc/security/fileshare.conf r, /home/ r, owner /home// r, owner /home//.DCOPserver_linux-3gqq__0 r, owner /home//.FuriusIsoMount/ r, owner /home//.ICEauthority r, owner /home//.Wammu r, owner /home//.Xauthority r, owner /home//.bash_history r, owner /home//.bashrc r, owner /home//.config/.directory rw, owner /home//.config/Trolltech.conf rwk, owner /home//.config/enchant/ r, owner /home//.config/enchant/ru.dic rk, owner /home//.config/enchant/ru.exc rk, owner /home//.devede r, owner /home//.directory rw, owner /home//.dmrc r, owner /home//.emacs r, owner /home//.esd_auth r, owner /home//.fontconfig/ r, owner /home//.fonts.conf r, owner /home//.gtk-bookmarks r, owner /home//.inputrc r, owner /home//.kde/share/config/kdeglobals rk, owner /home//.kde4/share/ w, owner /home//.kde4/share/apps/** rw, owner /home//.kde4/share/config/ w, owner /home//.kde4/share/config/* rw, owner /home//.kde4/share/config/kdeglobals rwk, owner /home//.kde4/share/config/kresources/contact/* rw, owner /home//.kde4/share/emoticons/ r, owner /home//.kde4/share/emoticons/** r, owner /home//.lircrc r, owner /home//.local/.directory rw, owner /home//.local/share/mime/generic-icons r, owner /home//.local/share/mime/magic r, owner /home//.local/share/user-places.xbel r, owner /home//.mtab.fuseiso r, owner /home//.nvidia-settings-rc r, owner /home//.opera/.directory r, owner /home//.part r, owner /home//.profile r, owner /home//.pulse-cookie r, owner /home//.recently-used r, owner /home//.thumbnails/normal/ ra, owner /home//.wine/.directory r, owner /home//.xim.template r, owner /home//.xinitrc.template r, owner /home//.xsession-errors r, owner /home//.y2log r, owner /home//.y2usersettings r, owner /home//Desktop/.directory rw, owner /home//bin/.directory rw, /media/ r, /opt/gnome/share/icons/hicolor/ r, /opt/gnome/share/icons/hicolor/*/ r, /opt/gnome/share/mime/generic-icons r, /opt/gnome/share/mime/magic r, /opt/kde3/bin/kdialog rix, owner /proc//net/ r, /proc//net/if_inet6 r, /proc//net/ipv6_route r, /proc//net/route r, /proc//net/unix r, /usr/bin/kdialog rix, /usr/bin/kopete r, /usr/lib/ mr, /usr/lib/kde4/libexec/drkonqi rix, /usr/share/emoticons/ r, /usr/share/enchant/enchant.ordering r, /usr/share/kde4/apps/ r, /usr/share/kde4/config/* r, /usr/share/kde4/config/ui/ui_standards.rc r, /usr/share/locale-bundle/en_US/LC_MESSAGES/kde4-openSUSE.mo r, /usr/share/locale-bundle/ru/** r, /usr/share/locale-langpack/ru/LC_MESSAGES/kde4-openSUSE.mo r, /usr/share/qca/certs/rootcerts.pem r, /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r, }	over 2 years ago		203	Aleksandr	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox	#include <tunables/global> /usr/lib64/firefox/firefox { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /** r, /etc/gre.d/ r, owner /home//.beagle/socket w, /home//.beagle/socket r, owner /home//.config/gtk-2.0/ w, /home//.config/gtk-2.0/ r, owner /home//.config/qtcurve.gtk-colors w, /home//.config/qtcurve.gtk-colors r, owner /home//.config/qtcurve.gtk-icons w, /home//.config/qtcurve.gtk-icons r, owner /home//.mozilla/firefox/* w, /home//.mozilla/firefox/* r, owner /home//.mozilla/firefox//* wk, /home//.mozilla/firefox//* r, owner /home//.mozilla/firefox//Cache.Trash/ w, owner /var/mozilla//.mozilla/firefox/* w, /var/mozilla//.mozilla/firefox/* r, owner /var/mozilla//.mozilla/firefox//* wk, /var/mozilla//.mozilla/firefox//* r, owner /var/mozilla//.mozilla/firefox//Cache.Trash/ w, }	over 3 years ago	new profiles - on suse11	225	antonomasia	Edit	History
opensuse10.3	/usr/lib/ooo-2.0/program/soffice	#include <tunables/global> /usr/lib/ooo-2.0/program/soffice { #include <abstractions/base> #include <abstractions/bash> /bin/basename Px, /bin/bash ix, /bin/uname ixr, /usr/lib/ooo-2.0/program/javaldx Px, /usr/lib/ooo-2.0/program/oosplash.bin Px, /usr/lib/ooo-2.0/program/soffice mr, }	over 3 years ago	openoffice+java	211	helsil	Edit	History
opensuse10.3	/sbin/yast2	#include <tunables/global> /sbin/yast2 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /sbin/yast2 mr, }	over 4 years ago	jlee	216	jlee	Edit	History
ubuntu-gutsy	/usr/bin/gnome-default-applications-properties	#include <tunables/global> /usr/bin/gnome-default-applications-properties { #include <abstractions/base> /usr/bin/gnome-default-applications-properties mr, }	over 4 years ago	gnome	207	hbpteam	Edit	History
opensuse10.3	/usr/lib/helix-dbus-server/helix-dbus-server.bin	#include <tunables/global> /usr/lib/helix-dbus-server/helix-dbus-server.bin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> /proc/cpuinfo r, /usr/lib/RealPlayer10/**.so mr, /usr/lib/helix-dbus-server/helix-dbus-server.bin mr, }	over 4 years ago	none	288	cinimod	Edit	History
opensuse10.3	/usr/bin/xsetroot	#include <tunables/global> /usr/bin/xsetroot { #include <abstractions/X> #include <abstractions/base> #include <abstractions/freedesktop.org> /usr/bin/xsetroot mr, /var/lib/gdm/* r, }	over 4 years ago	Import of jmichaels profiles	215	dominic	Edit	History
opensuse10.3	/usr/bin/Xgl	#include <tunables/global> /usr/bin/Xgl { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/fonts> #include <abstractions/freedesktop.org> #include <abstractions/user-tmp> capability dac_override, capability ipc_owner, capability setgid, capability setuid, capability sys_admin, /bin/bash ixr, /dev/dri/card* rw, /etc/sysconfig/displaymanager r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home//.gnome2/share/fonts/fonts.dir r, /home/jesse/.gnome2/share/fonts/** r, /proc/meminfo r, /usr/bin/Xgl mr, /usr/bin/Xorg Px, /usr/bin/xkbcomp Px, /usr/lib/dri/.so mr, /var/lib/gdm/ r, /var/lib/xkb/compiled/.xkm rw, /var/log/Xgl..log rw, /var/log/Xgl..log.old w, /var/log/gdm/.log w, }	over 4 years ago	Import of jmichaels profiles	367	dominic	Edit	History
opensuse10.3	/usr/bin/gnome-panel	#include <tunables/global> /usr/bin/gnome-panel flags=(complain) { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.esd_auth r, /home//.fontconfig/* r, /home//.gnome2_private/ w, /home//.icons/ r, /home//.local/share/icons/ r, /proc/meminfo r, /tmp/orbit-/bonobo-activation-register.lock klrw, /usr/bin/banshee Px, /usr/bin/bug-buddy ixr, /usr/bin/ekiga Px, /usr/bin/f-spot Px, /usr/bin/gnome-panel mr, /usr/bin/gnome-screensaver-command Px, /usr/bin/gnome-screensaver-preferences Px, /usr/bin/gnome-terminal Px, /usr/bin/gnomesu Px, /usr/bin/pidgin Px, /usr/lib/bonobo/bonobo-activation-server Px, /usr/lib/firefox/firefox.sh Px, /usr/share/applications/.desktop r, /usr/share/f-spot/icons/.png r, /usr/share/gnome-2.0/ui/.xml r, /usr/share/gnome-panelrc r, /var/cache/libx11/compose/* r, /var/run/gdm_socket w, }	over 4 years ago	some bug-buddy rules and other misc updates	183	jmichael	Edit	History
opensuse11.0	/opt/coldfusion8/bin/coldfusion	#include <tunables/global> /opt/coldfusion8/bin/coldfusion { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /bin/ps px, }	over 3 years ago	/opt/coldfusion8/logs/cfchangelog.log	111	jan	Edit	History
opensuse10.3	/usr/bin/xscreensaver	#include <tunables/global> /usr/bin/xscreensaver { #include <abstractions/base> /usr/bin/xscreensaver mr, }	over 4 years ago	none	262	cinimod	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/autofs	#include <tunables/global> /etc/NetworkManager/dispatcher.d/autofs { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /etc/NetworkManager/dispatcher.d/autofs mr, /proc/meminfo r, /sbin/chkconfig Px, }	over 4 years ago	Import of jmichaels profiles	156	dominic	Edit	History
ubuntu-gutsy	/usr/bin/webhttrack	#include <tunables/global> /usr/bin/webhttrack { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/webhttrack mr, }	over 4 years ago	gnome	270	hbpteam	Edit	History
opensuse10.3	/usr/bin/hal-find-by-property	#include <tunables/global> /usr/bin/hal-find-by-property flags=(complain) { #include <abstractions/base> #include <abstractions/dbus> /usr/bin/hal-find-by-property mr, }	over 4 years ago	argh, switch things back to complain for a while	249	jmichael	Edit	History
opensuse11.0	/usr/lib64/firefox/firefox.sh	#include <tunables/global> /usr/lib64/firefox/firefox.sh flags=(complain) { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, }	about 1 year ago		74	pavibhai	Edit	History
opensuse10.3	/usr/lib/helix-dbus-server/helix-dbus-server.bin	#include <tunables/global> /usr/lib/helix-dbus-server/helix-dbus-server.bin { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> /proc/cpuinfo r, /usr/lib/RealPlayer10/**.so mr, /usr/lib/helix-dbus-server/helix-dbus-server.bin mr, }	over 4 years ago	Import of jmichaels profiles	318	dominic	Edit	History
opensuse10.3	/etc/NetworkManager/dispatcher.d/netcontrol_services	#include <tunables/global> /etc/NetworkManager/dispatcher.d/netcontrol_services { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> /bin/bash ixr, /bin/sed ixr, /etc/NetworkManager/dispatcher.d/netcontrol_services mr, /etc/sysconfig/network/config r, /etc/sysconfig/network/scripts/functions r, /etc/sysconfig/network/scripts/functions.common r, /etc/sysconfig/network/scripts/ifup-services Px, /proc/meminfo r, /usr/sbin/iwconfig Px, }	over 4 years ago	none	200	cinimod	Edit	History
opensuse10.3	/usr/bin/amule	#include <tunables/global> /usr/bin/amule { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash ixr, /bin/uname ixr, /etc/gnome-vfs-2.0/modules/ r, /etc/sound/events/gtk-events-2.soundlist r, /home//.MK80ZT rw, /home//.ICEauthority r, /home//.Xauthority r, /home//.aMule/ rw, /home//.aMule/** krw, /home//.esd_auth r, /home//.fontconfig/.cache-2 r, /home//.gnome2/Totem/* w, /home//.gnome2/Totem/state.ini rw, /home//.gnome2/Totem/state.ini.MBLUZT rw, /home//.gnome2/Totem/xine_config r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i686.xml r, /home//.icons/ r, /home//.recently-used.xbel rw, /home//.xine/.cache rw, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /usr/bin/amule mr, /usr/bin/bug-buddy ixr, /usr/bin/totem ixr, /usr/lib/* mr, /usr/lib/GConf/2/gconfd-2 ixr, /usr/share/amule// r, /usr/share/bug-buddy/bug-buddy.gtkbuilder r, /usr/share/locale-bundle/de/.mo r, /usr/share/totem/ r, /var/cache/libx11/compose/* r, }	over 4 years ago		242	anonymus1	Edit	History
ubuntu-gutsy	/usr/bin/gnome-session	#include <tunables/global> /usr/bin/gnome-session { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/python> /bin/dash ixr, /etc/X11/xorg.conf r, /etc/apt/apt.conf.d/ r, /etc/apt/apt.conf.d/* r, /etc/apt/sources.list r, /etc/apt/sources.list.d/ r, /etc/apt/sources.list.d/medibuntu.list r, /etc/debian_version r, /etc/default/linux-restricted-modules-common krw, /etc/lsb-release r, /etc/sound/events/gnome-2.soundlist r, /etc/sound/events/gtk-events-2.soundlist r, /etc/update-notifier/hooks_seen r, /etc/xdg/autostart/ r, /etc/xdg/autostart/.desktop r, /home// r, /home//.NC7E0T rw, /home//.ICEauthority rw, /home//.ICEauthority-c w, /home//.ICEauthority-l lw, /home//.Xauthority r, /home//.cache/tracker/ r, /home//.cache/tracker/.db krw, /home//.cache/tracker/.db-journal w, /home//.config/.dirs r, /home//.config/.locale r, /home//.config/tracker/.cfg r, /home//.evolution/mail/local/ r, /home//.evolution/mail/local/.ev-summary r, /home//.evolution/mail/local/Inbox r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/.xml r, /home//.gtk-bookmarks rw, /home/