AppArmor profile exchange

ubuntu-gutsy's profiles

Distribution	Name	Profile	Created At	Changelog	View Count	Username
ubuntu-gutsy	/etc/cron.daily/aide	#include <tunables/global> /etc/cron.daily/aide { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/nameservice> capability chown, capability dac_override, capability fowner, capability fsetid, capability setgid, capability setuid, capability sys_ptrace, / r, /bin/bash ixr, /bin/cat ixr, /bin/chgrp ixr, /bin/chmod ixr, /bin/chown ixr, /bin/dash ixr, /bin/date ixr, /bin/dnsdomainname ixr, /bin/grep ixr, /bin/gzip ixr, /bin/hostname ixr, /bin/ln ixr, /bin/ls ixmr, /bin/mkdir ixr, /bin/mv ixr, /bin/rm ixr, /bin/sed ixr, /bin/touch ixr, /bin/which ixr, /dev/ r, /dev/*/ r, /dev/tty rw, /etc/ r, /etc// r, /etc/aide/aide.conf r, /etc/aide/aide.conf.d/ r, /etc/aide/aide.conf.d/* r, /etc/aide/aide.conf.d/10_aide_hostname ixr, /etc/aide/aide.conf.d/30_aide_apache2 ixr, /etc/aide/aide.conf.d/30_inn2_vars ixr, /etc/aide/aide.conf.d/31_aide_amanda-server ixr, /etc/aide/aide.conf.d/31_aide_apt ixr, /etc/aide/aide.conf.d/31_aide_ifupdown ixr, /etc/aide/aide.conf.d/31_aide_torrus ixr, /etc/aide/aide.conf.d/70_aide_dev ixr, /etc/apt/sources.list r, /etc/cron.daily/aide mr, /etc/default/aide r, /etc/dpkg/dpkg.cfg r, /etc/mail.rc r, /etc/mailname r, /etc/postfix/* r, /lib/ r, /lib/modules/ r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc/filesystems r, /proc/meminfo r, /root/ r, /sbin/killall5 ixr, /tmp/ rw, /tmp/ rw, /tmp/.ICE-unix/ r, /tmp/.X11-unix/ r, /usr/ r, /usr/bin/aide ixr, /usr/bin/aide.wrapper ixr, /usr/bin/basename ixr, /usr/bin/cut ixr, /usr/bin/dirname ixr, /usr/bin/dotlockfile ixr, /usr/bin/dpkg ixr, /usr/bin/dpkg-query ixr, /usr/bin/expr ixr, /usr/bin/find ixr, /usr/bin/getopt ixr, /usr/bin/head ixr, /usr/bin/logger ixr, /usr/bin/mail ixr, /usr/bin/mawk ixr, /usr/bin/savelog ixr, /usr/bin/wc ixr, /usr/bin/xargs ixr, /usr/sbin/postdrop ixr, /usr/sbin/sendmail ixr, /usr/sbin/update-aide.conf ixr, /usr/share/ r, /usr/share/doc/ r, /var/ r, /var/backups/ r, /var/backups/* r, /var/cache/ r, /var/cache/apt/ r, /var/cache/apt/archives/ r, /var/cache/debconf/ r, /var/cache/man/ r, /var/cache/man// r, /var/lib/ r, /var/lib// r, /var/lib/aide/aide.conf.autogenerated rw, /var/lib/aide/aide.conf.autogenerated.tmp rw, /var/lib/aide/aide.db r, /var/lib/aide/aide.db.new krw, /var/lib/amavis/.spamassassin/ r, /var/lib/amavis/db/ r, /var/lib/amavis/tmp/ r, /var/lib/amavis/virusmails/ r, /var/lib/apt/lists/ r, /var/lib/apt/lists/partial/ r, /var/lib/clamav/daily.inc/ r, /var/lib/clamav/main.inc/ r, /var/lib/dpkg/* r, /var/lib/dpkg// r, /var/lock/ r, /var/log/ r, /var/log/ r, /var/log// r, /var/log/aide/ lrw, /var/log/apache2/* r, /var/log/clamav/* r, /var/run/ r, /var/run/* lw, /var/run/*/ r, /var/run/aide/ lw, /var/run/aide/cron.daily/ rw, /var/run/aide/cron.daily/* rw, /var/run/aide/cron.daily/dbcheckdb krw, /var/spool/ r, /var/spool/postfix/maildrop/* rw, /var/spool/postfix/public/pickup w, /var/tmp/ r, /var/www/ r, }	8 months ago		62	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/oink	#include <tunables/global> /etc/cron.daily/oink { #include <abstractions/base> #include <abstractions/perl> /bin/dash ixr, /etc/cron.daily/oink mr, /etc/oinkmaster.conf r, /etc/snort/rules/ r, /usr/bin/perl ix, /usr/lib/ mr, /usr/sbin/oinkmaster ixr, /usr/share/perl/ r, /usr/share/perl5/** r, }	9 months ago		36	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/smtpd	# $Id: usr.lib.postfix.smtpd 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/smtpd { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability dac_read_search, capability setgid, capability setuid, /dev/urandom r, /etc/aliases.db krw, /etc/fstab r, /etc/mailname r, /etc/mtab r, /etc/postfix/.db r, /etc/postfix/main.cf r, /etc/postfix/prng_exch rw, /etc/postfix/smtpd_scache.dir r, /etc/postfix/smtpd_scache.pag rw, /etc/postfix/{ssl/,}.pem r, /etc/ssl/certs/ssl-cert-snakeoil.pem r, /etc/ssl/private/* r, /usr/lib/postfix/smtpd rmix, /usr/lib/sasl2/ mr, /usr/lib/sasl2/* mr, /usr/lib64/sasl2/ mr, /usr/lib64/sasl2/* mr, /usr/sbin/postdrop rPx, /usr/share/ssl/certs/ca-bundle.crt r, /usr/share/ssl/openssl.cnf r, /var/lib/mailman/data/aliases.db r, /var/run/sasl2/mux w, /var/spool/postfix/etc/* r, /var/spool/postfix/lib/* mr, /{var/spool/postfix/,}pid/inet.* krw, /{var/spool/postfix/,}private/anvil w, /{var/spool/postfix/,}private/proxymap w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/tlsmgr w, /{var/spool/postfix/,}public/cleanup w, @{PROC}/net/if_inet6 r, }	9 months ago		40	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/qmgr	# $Id: usr.lib.postfix.qmgr 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/qmgr { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /usr/lib/postfix/qmgr rmix, /var/spool/postfix/** krw, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/local w, /{var/spool/postfix/,}private/relay w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/smtp w, /{var/spool/postfix/,}private/trace w, /{var/spool/postfix/,}private/uucp w, /{var/spool/postfix/,}public/flush w, /{var/spool/postfix/,}public/qmgr r, }	9 months ago		72	stive	Edit	History
ubuntu-gutsy	/usr/lib/nautilus-cd-burner/mapping-daemon	#include <tunables/global> /usr/lib/nautilus-cd-burner/mapping-daemon { #include <abstractions/base> #include <abstractions/user-tmp> /etc/nsswitch.conf r, /etc/passwd r, /usr/lib/nautilus-cd-burner/mapping-daemon mr, }	over 2 years ago	gnome	131	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/mpd	#include <tunables/global> /usr/bin/mpd flags=(complain) { #include <abstractions/base> /usr/bin/mpd mr, }	about 1 year ago		125	guyome	Edit	History
ubuntu-gutsy	/usr/sbin/cron	#include <tunables/global> /usr/sbin/cron { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, /bin/dash ixr, /etc/cron.d/ r, /etc/cron.d/* r, /etc/crontab r, /etc/environment r, /proc//mounts r, /proc/filesystems r, /usr/sbin/cron mr, /var/run/crond.pid krw, /var/run/utmp krw, /var/spool/cron/crontabs/ r, /var/spool/cron/crontabs/ r, }	9 months ago		55	stive	Edit	History
ubuntu-gutsy	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh flags=(complain) { #include <abstractions/base> /usr/bin/ssh mr, }	over 2 years ago	U	163	roger	Edit	History
ubuntu-gutsy	/usr/bin/hamachi	#include <tunables/global> /usr/bin/hamachi flags=(complain) { #include <abstractions/base> /tmp/upxBCN1WMIANOG pxrw, /usr/bin/hamachi mr, }	about 1 year ago	hamachi	103	snide	Edit	History
ubuntu-gutsy	/usr/bin/gnome-sound-properties	#include <tunables/global> /usr/bin/gnome-sound-properties { #include <abstractions/base> /usr/bin/gnome-sound-properties mr, }	over 2 years ago	gnome	116	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/nqmgr	# $Id: usr.lib.postfix.nqmgr 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/nqmgr { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/postfix/main.cf r, /usr/lib/postfix/nqmgr rmix, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/local w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/smtp w, /{var/spool/postfix/,}public/flush w, /{var/spool/postfix/,}public/qmgr r, }	9 months ago		46	stive	Edit	History
ubuntu-gutsy	/usr/bin/evince	#include <tunables/global> /usr/bin/evince { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/dash ixr, /etc/esound/esd.conf r, /etc/sound/events/.soundlist r, /home//* rw, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.icons/OSX_Cursors_v0.2/cursors/ r, /home//Desktop/.pdf r, /proc//mounts r, /usr/bin/evince mr, /usr/local/share/icons/ r, /usr/share/evince/.glade r, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/**/ r, }	over 2 years ago	kradio1	122	jophn	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/nvidia> /etc/gai.conf r, /etc/hostname r, /etc/issue r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.kde/share/config/kioslaverc r, /proc/1/cmdline r, /usr/bin/skype mr, /usr/share/skype/* kr, }	about 1 year ago		80	viraptor	Edit	History
ubuntu-gutsy	/usr/bin/pyzor	#include <tunables/global> /usr/bin/pyzor { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/pyzor mr, }	9 months ago		38	stive	Edit	History
ubuntu-gutsy	/usr/NX/bin/nxclient	# $Id: usr.NX.bin.nxclient 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/NX/bin/nxclient flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/kde> #include <abstractions/nameservice> /bin/bash mix, /bin/dash ixr, /dev/dsp w, /home//.Xauthority rw, /home//.Xauthority-c w, /home//.Xauthority-l lw, /home//.nx/** rw, /home//.qt/.qtrc.lock k, /usr/NX/ r, /usr/NX/bin/nxclient rmix, /usr/NX/bin/nxesd ixr, /usr/NX/bin/nxproxy mix, /usr/NX/bin/nxservice ixr, /usr/NX/bin/nxssh ixmr, /usr/NX/lib/* mr, /usr/NX/share/ r, /usr/X11R6/bin/xauth rmix, /usr/bin/cut ixmr, /usr/bin/xauth ixr, /usr/share/locale-langpack/sv/LC_MESSAGES/libc.mo r, @{HOME}/.Xauthority-c rwl, @{HOME}/.Xauthority-l rwl, @{HOME}/.nx rwl, @{HOME}/.nx/ rwl, @{HOME}/.ssh/config r, @{HOME}/.ssh/known_hosts rw, }	about 1 year ago		80	vektor	Edit	History
ubuntu-gutsy	/usr/sbin/proftpd	#include <tunables/global> /usr/sbin/proftpd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/wutmp> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, /etc/ftpusers r, /etc/pam.d/* r, /etc/proftpd/* r, /etc/shadow r, /etc/shells r, /etc/ssl/openssl.cnf r, /home/ r, /home/** rw, /home// ram, /lib/security/pam_.so mr, /proc//mounts r, /proc/filesystems r, /usr/lib/* mr, /usr/sbin/proftpd mr, /usr/share/drupal6/ r, /var/log/proftpd/* w, /var/run/proftpd.pid w, /var/run/proftpd/proftpd.delay krw, /var/run/proftpd/proftpd.scoreboard krw, /var/run/proftpd/proftpd.sock w, /var/run/proftpd/test.sock w, /var/www/** rw, }	9 months ago		42	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/bounce	# $Id: usr.lib.postfix.bounce 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/bounce { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /etc/mailname r, /etc/postfix/main.cf r, /usr/lib/postfix/bounce rmix, /var/spool/postfix/active/* krw, /var/spool/postfix/defer/** krw, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}bounce/[0-9A-F]/ rwl, /{var/spool/postfix/,}bounce/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}bounce/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}defer/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}pid/unix.bounce rw, /{var/spool/postfix/,}pid/unix.defer krw, /{var/spool/postfix/,}pid/unix.trace krw, /{var/spool/postfix/,}public/cleanup w, /{var/spool/postfix/,}trace/[0-9A-F]/ rwl, /{var/spool/postfix/,}trace/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}trace/[0-9A-F]/[0-9A-F]/* rwl, @{PROC}/net/if_inet6 r, }	9 months ago		42	stive	Edit	History
ubuntu-gutsy	/usr/bin/gnome-splashscreen-manager	#include <tunables/global> /usr/bin/gnome-splashscreen-manager { #include <abstractions/base> /usr/bin/env ix, /usr/bin/gnome-splashscreen-manager mr, }	over 2 years ago	gnome	141	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /bin/dash ixr, /bin/ls ixr, /bin/pwd Px, /bin/sed ixr, /home/fqf/123 r, /proc/11997/mounts r, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/lib/firefox/firefox mr, /usr/lib/firefox/run-mozilla.sh Px, }	about 1 year ago	usr.lib.firefox.firefox	53	fqf	Edit	History
ubuntu-gutsy	/usr/lib/firefox/run-mozilla.sh	#include <tunables/global> /usr/lib/firefox/run-mozilla.sh flags=(complain) { #include <abstractions/base> /bin/dash ixr, /bin/which Px, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/lib/firefox/firefox-bin Px, /usr/lib/firefox/run-mozilla.sh mr, }	over 2 years ago	gnome	94	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/oofromtemplate	#include <tunables/global> /usr/bin/oofromtemplate { #include <abstractions/base> /bin/dash ix, /usr/bin/oofromtemplate mr, }	over 2 years ago	gnome	104	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/proftpd	#include <tunables/global> /usr/sbin/proftpd { #include <abstractions/base> /usr/sbin/proftpd mr, }	about 1 year ago		88	guyome	Edit	History
ubuntu-gutsy	/opt/grisoft/avg7/bin/avgscan	#include <tunables/global> /opt/grisoft/avg7/bin/avgscan { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, / r, /opt/grisoft/avg7/bin/avgscan mr, /opt/grisoft/avg7/data/ r, /opt/grisoft/avg7/data/* rw, /opt/grisoft/avg7/etc/* r, /opt/grisoft/avg7/etc/antispam/ r, /opt/grisoft/avg7/etc/antispam/* rw, /opt/grisoft/avg7/lib/libso mr, /opt/grisoft/lib/libso mr, /tmp/* w, /var/lib/amavis/tmp/** rw, /var/run/avgd.pgrp w, }	9 months ago		85	stive	Edit	History
ubuntu-gutsy	/usr/lib/libgconf2-4/gconfd-2	#include <tunables/global> /usr/lib/libgconf2-4/gconfd-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /etc/gconf/2/path r, /etc/gconf/gconf.xml.defaults/ r, /etc/gconf/gconf.xml.defaults/%%gconf-tree.xml r, /etc/gconf/gconf.xml.mandatory/ r, /etc/gconf/gconf.xml.mandatory/%%gconf-tree.xml r, /home//.gconf/ r, /home//.gconf/.testing.writeability w, /home//.gconf/apps/ r, /home//.gconf/apps/deskbar/* rw, /home//.gconf/apps/evolution/ rw, /home//.gconf/apps/evolution/.xml rw, /home//.gconf/apps/evolution/addressbook/ r, /home//.gconf/apps/evolution/calendar/ r, /home//.gconf/apps/evolution/calendar/display/ r, /home//.gconf/apps/evolution/calendar/memos/ r, /home//.gconf/apps/evolution/calendar/notify/ r, /home//.gconf/apps/evolution/calendar/tasks/ r, /home//.gconf/apps/evolution/mail/ r, /home//.gconf/apps/evolution/mail/.new rw, /home//.gconf/apps/evolution/memos/ r, /home//.gconf/apps/evolution/memos/* r, /home//.gconf/apps/evolution/shell/ r, /home//.gconf/apps/evolution/shell/.new rw, /home//.gconf/apps/evolution/shell/view_defaults/ r, /home//.gconf/apps/evolution/shell/view_defaults/.new rw, /home//.gconf/apps/evolution/shell/view_defaults/folder_bar/ r, /home//.gconf/apps/evolution/shell/view_defaults/folder_bar/.new rw, /home//.gconf/apps/evolution/tasks/ r, /home//.gconf/apps/gnome-screensaver/%%gconf.xml.new rw, /home//.gconf/apps/gnome-screensaver/.xml rw, /home//.gconf/apps/metacity/ r, /home//.gconf/apps/metacity/.xml r, /home//.gconf/apps/metacity/general/ r, /home//.gconf/apps/metacity/general/.xml r, /home//.gconf/apps/nautilus/ r, /home//.gconf/apps/nautilus/preferences/.xml r, /home//.gconf/apps/panel/ r, /home//.gconf/apps/panel/applets/clock_screen0/ r, /home//.gconf/apps/panel/applets/clock_screen0/.xml rw, /home//.gconf/apps/panel/applets/clock_screen0/prefs/ r, /home//.gconf/apps/panel/applets/clock_screen0/prefs/.new rw, /home//.gconf/apps/panel/applets/clock_screen0/prefs/timezones/ r, /home//.gconf/apps/panel/applets/clock_screen0/prefs/timezones/.new rw, /home//.gconf/apps/panel/applets/deskbar_screen0/ r, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/ r, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/prefs/ r, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/prefs/.new rw, /home//.gconf/apps/panel/applets/fast_user_switch_screen0/prefs/.xml rw, /home//.gconf/apps/panel/applets/mixer_screen0/ r, /home//.gconf/apps/panel/applets/notification_area_screen0/ r, /home//.gconf/apps/panel/applets/show_desktop_button_screen0/ r, /home//.gconf/apps/panel/applets/trashapplet_screen0/ r, /home//.gconf/apps/panel/applets/window_list_screen0/ r, /home//.gconf/apps/panel/applets/window_list_screen0/prefs/ r, /home//.gconf/apps/panel/applets/window_list_screen0/prefs/.new rw, /home//.gconf/apps/panel/applets/window_list_screen0/prefs/.xml rw, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/ r, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/*.xml rw, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/prefs/ r, /home//.gconf/apps/panel/applets/workspace_switcher_screen0/prefs/.new rw, /home//.gconf/apps/panel/general/.xml r, /home//.gconf/apps/panel/toplevels/ r, /home//.gconf/apps/panel/toplevels/bottom_panel_screen0/ r, /home//.gconf/apps/panel/toplevels/bottom_panel_screen0/.xml r, /home//.gconf/apps/panel/toplevels/bottom_panel_screen0/background/%%gconf.xml r, /home//.gconf/desktop/ r, /home//.gconf/desktop/gnome/ r, /home//.gconf/desktop/gnome/.xml r, /home//.gconf/desktop/gnome/accessibility/ r, /home//.gconf/desktop/gnome/accessibility/keyboard/.xml r, /home//.gconf/desktop/gnome/applications/ r, /home//.gconf/desktop/gnome/applications/window_manager/.new rw, /home//.gconf/desktop/gnome/applications/window_manager/.xml rw, /home//.gconf/desktop/gnome/background/%%gconf.xml r, /home//.gconf/desktop/gnome/font_rendering/.xml r, /home//.gconf/desktop/gnome/peripherals/ r, /home//.gconf/desktop/gnome/peripherals/keyboard/ r, /home//.gconf/desktop/gnome/peripherals/keyboard/%%gconf.xml r, /home//.gconfd/saved_state rw, /home//.gconfd/saved_state.orig w, /home//.gconfd/saved_state.tmp rw, /tmp/gconfd-void/lock/0t1193126927ut222865u1000p17459r1477785876k3219965624 kw, /usr/lib/libgconf2-4/gconfd-2 mr, /var/lib/gconf/debian.defaults/ r, /var/lib/gconf/debian.defaults/.xml r, /var/lib/gconf/defaults/ r, /var/lib/gconf/defaults/.xml r, }	over 2 years ago	gnome	206	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/aplay	#include <tunables/global> /usr/bin/aplay { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/nameservice> /proc/cpuinfo r, /usr/bin/aplay mr, }	over 2 years ago	gnome	98	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/flush	# $Id: usr.lib.postfix.flush 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/flush { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /etc/mailname r, /etc/mtab r, /etc/postfix/main.cf r, /etc/postfix/virtual.db r, /usr/lib/postfix/flush rmix, /var/spool/postfix/etc/* r, /var/spool/postfix/flush/* krw, /var/spool/postfix/incoming/* w, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]* rwl, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}flush/ rwl, /{var/spool/postfix/,}flush/[0-9A-F]/ rwl, /{var/spool/postfix/,}flush/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}flush/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}pid/unix.flush krw, /{var/spool/postfix/,}public/qmgr w, @{HOME}/.forward r, }	9 months ago		56	stive	Edit	History
ubuntu-gutsy	/usr/lib/evolution/2.12/evolution-exchange-storage	#include <tunables/global> /usr/lib/evolution/2.12/evolution-exchange-storage { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.evolution/.db rw, /home//.evolution/.db~ rw, /home//.gnome2_private/ w, /proc/*/mounts r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/lib/evolution/2.12/evolution-exchange-storage mr, }	over 2 years ago	gnome	156	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/ssh	#include <tunables/global> /usr/bin/ssh { #include <abstractions/base> /usr/bin/ssh mr, }	about 1 year ago		101	guyome	Edit	History
ubuntu-gutsy	/usr/lib/postfix/lmtp	# $Id: usr.lib.postfix.lmtp 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/lmtp { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/lmtp rmix, }	9 months ago		36	stive	Edit	History
ubuntu-gutsy	/usr/bin/gtkterm	#include <tunables/global> /usr/bin/gtkterm { #include <abstractions/base> /usr/bin/gtkterm mr, }	over 2 years ago	gnome	128	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/dbus-daemon	#include <tunables/global> /usr/bin/dbus-daemon { #include <abstractions/base> #include <abstractions/nameservice> /etc/dbus-1/session.conf r, /etc/dbus-1/session.d/ r, /proc//mounts r, /proc/filesystems r, /usr/bin/dbus-daemon mr, /usr/lib/gnome-control-center/gnome-settings-daemon Px, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon Px, /usr/lib/notification-daemon/notification-daemon Px, /usr/share/dbus-1/services/ r, /usr/share/dbus-1/services/.service r, /var/run/console/ r, }	over 2 years ago	gnome	98	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/kradio	#include <tunables/global> /usr/bin/kradio { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/dash ixr, /etc/kde3/.areas r, /etc/kde3/kdebugrc r, /etc/qt3/qt_plugins_3.3rc r, /etc/xdg/ r, /etc/xdg/menus/ r, /hde/share/config/.tmp w, /home// rw, /home//.DCOPserver_int80h_* rw, /home//.DCOPserver_int80h_:0 w, /home//.ICEauthority lrw, /home//.ICEauthority- lw, /home//.Xauthority r, /home//.config/ r, /home//.icons/OSX_Cursors_v0.2/* r, /home//.kde/share/ r, /home//.kde/share/applnk/ r, /home//.kde/share/apps/kconf_update/ r, /home//.kde/share/apps/kradio/.krp rw, /home//.kde/share/config/ w, /home//.kde/share/config/.lock lw, /home//.kde/share/config/.new rw, /home//.kde/share/config/.tmp w, /home//.kde/share/config/kconf_updaterc rw, /home//.kde/share/config/kdedrc rw, /home//.kde/share/config/kdeglobals rw, /home//.kde/share/config/kioslaverc r, /home//.kde/share/config/kradiorc rw, /home//.kde/share/config/uiserverrc rw, /home//.kde/share/icons/KDE_Crystal_Diamond_2.7_Ubuntu_Mod/ r, /home//.kde/share/icons/OS-L-IconSet-Buildkit/ r, /home//.kde/share/mimelnk/ r, /home//.kde/share/services/ r, /home//.kde/share/servicetypes/ r, /home//.qt/.3rc r, /home//.qt/.lock krw, /proc//cmdline r, /proc/meminfo r, /usr/bin/dcopserver ixr, /usr/bin/dcopserver_shutdown ixr, /usr/bin/iceauth ixr, /usr/bin/kbuildsycoca ixr, /usr/bin/kconf_update ixr, /usr/bin/kded ixr, /usr/bin/kdeinit ixr, /usr/bin/kio_uiserver ixr, /usr/bin/kioslave Pxr, /usr/bin/klauncher ixr, /usr/bin/kradio mr, /usr/bin/lnusertemp ixr, /usr/lib/ mr, /usr/local/share/ r, /usr/local/share/applications/ r, /usr/local/share/icons/hicolor/ r, /usr/share/ r, /usr/share/applications/ r, /usr/share/applications/kde/ r, /usr/share/applications/screensavers/ r, /usr/share/applnk/ r, /usr/share/applnk/.hidden/ r, /usr/share/applnk/Multimedia/ r, /usr/share/applnk/System/ r, /usr/share/applnk/System/ScreenSavers/ r, /usr/share/apps/LICENSES/GPL_V2 r, /usr/share/apps/kconf_update/ r, /usr/share/apps/kio_uiserver/icons/crystalsvg// r, /usr/share/apps/kio_uiserver/icons/crystalsvg/16x16/.png r, /usr/share/apps/kradio/icons/hicolor// r, /usr/share/apps/kradio/icons/hicolor/16x16/ r, /usr/share/apps/kradio/icons/hicolor/22x22/ r, /usr/share/apps/kradio/icons/hicolor/32x32/.png r, /usr/share/apps/kradio/icons/hicolor/48x48/.png r, /usr/share/gdm/ r, /usr/share/gdm/applications/ r, /usr/share/mimelnk/ r, /usr/share/mimelnk/all/ r, /usr/share/mimelnk/application/ r, /usr/share/mimelnk/audio/ r, /usr/share/mimelnk/image/ r, /usr/share/mimelnk/inode/ r, /usr/share/mimelnk/media/ r, /usr/share/mimelnk/message/ r, /usr/share/mimelnk/model/ r, /usr/share/mimelnk/multipart/ r, /usr/share/mimelnk/text/ r, /usr/share/mimelnk/uri/ r, /usr/share/mimelnk/video/ r, /usr/share/services/ r, /usr/share/services/kded/ r, /usr/share/services/kresources/ r, /usr/share/services/kresources/kabc/ r, /usr/share/servicetypes/ r, }	over 2 years ago		103	jophn	Edit	History
ubuntu-gutsy	/bin/pwd	#include <tunables/global> /bin/pwd flags=(complain) { #include <abstractions/base> / r, /bin/pwd mr, /home/ r, }	over 2 years ago	gnome	150	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/webhttrack	#include <tunables/global> /usr/bin/webhttrack { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/bin/webhttrack mr, }	over 2 years ago	gnome	124	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/bug-buddy	#include <tunables/global> /usr/bin/bug-buddy { #include <abstractions/base> /usr/bin/bug-buddy mr, }	over 2 years ago	gnome	71	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-s2s	#include <tunables/global> /usr/sbin/jabberd2-s2s flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-s2s mr, }	about 1 year ago		87	igoriii	Edit	History
ubuntu-gutsy	/usr/bin/gnome-panel	#include <tunables/global> /usr/bin/gnome-panel flags=(complain) { #include <abstractions/base> /usr/bin/gnome-panel mr, }	over 2 years ago		99	athroener	Edit	History
ubuntu-gutsy	/usr/lib/gnome-control-center/gnome-settings-daemon	#include <tunables/global> /usr/lib/gnome-control-center/gnome-settings-daemon { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome/config/ r, /etc/gnome/config/* r, /etc/gnome/defaults.list r, /etc/sound/events/ r, /etc/sound/events/* r, /home//.Xauthority r, /home//.esd_auth r, /home//.gnome2/share/cursor-fonts/ r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/registry.i486.xml r, /home//.gtkrc-1.2-gnome2 r, /home/void/ r, /proc/*/mounts r, /proc/meminfo r, /usr/bin/gnome-screensaver Px, /usr/bin/mkfontdir Px, /usr/bin/xrdb Px, /usr/lib/gnome-control-center/gnome-settings-daemon mr, /usr/local/share/applications/ r, /usr/local/share/applications/mimeinfo.cache r, /usr/share/applications/ r, /usr/share/applications/mimeinfo.cache r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/mimeinfo.cache r, }	over 2 years ago	gnome	83	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/command-not-found	#include <tunables/global> /usr/lib/command-not-found flags=(complain) { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/lib/command-not-found mr, }	over 2 years ago	gnome	110	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/nautilus-cd-burner	#include <tunables/global> /usr/bin/nautilus-cd-burner { #include <abstractions/base> /usr/bin/nautilus-cd-burner mr, }	over 2 years ago	gnome	103	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/fast-user-switch-applet/fast-user-switch-applet	#include <tunables/global> /usr/lib/fast-user-switch-applet/fast-user-switch-applet { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/ r, /etc/gdm/ r, /etc/shells r, /etc/sound/events/* r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc//mounts r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/bin/gnome-about-me Px, /usr/lib/fast-user-switch-applet/fast-user-switch-applet mr, /usr/share/gnome-2.0/ui/* r, /var/run/gdm_socket w, }	over 2 years ago	gnome	85	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/named	#include <tunables/global> /usr/sbin/named { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_resource, /etc/bind/ r, /proc/net/if_inet6 r, /usr/sbin/named mr, /var/cache/bind/ rw, /var/cache/bind/ rw, /var/lib/bind/ rw, /var/lib/bind/ rw, /var/lib/dnscvsutil/compiled/ rw, /var/log/named/** rw, /var/run/bind/named.options r, /var/run/bind/run/named.pid w, }	9 months ago		47	stive	Edit	History
ubuntu-gutsy	/usr/sbin/sshd	#include <tunables/global> /usr/sbin/sshd flags=(complain) { #include <abstractions/base> /usr/sbin/sshd mr, }	about 1 year ago		105	igoriii	Edit	History
ubuntu-gutsy	/usr/lib/gnome-screensaver/gnome-screensaver-gl-helper	#include <tunables/global> /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper flags=(complain) { #include <abstractions/X> #include <abstractions/base> #include <abstractions/nameservice> /home//.Xauthority r, /proc//mounts r, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper mr, }	over 2 years ago	gnome	71	hbpteam	Edit	History
ubuntu-gutsy	/tmp/upxBLFO3MBALNH	#include <tunables/global> /tmp/upxBLFO3MBALNH flags=(complain) { #include <abstractions/base> /tmp/upxBLFO3MBALNH mr, }	about 1 year ago		139	larsthegeek	Edit	History
ubuntu-gutsy	/usr/bin/man	# $Id: usr.bin.man 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # #include <tunables/global> /usr/bin/man { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, /usr/lib/man-db/man Px, }	9 months ago		51	stive	Edit	History
ubuntu-gutsy	/usr/bin/gnome-about-me	#include <tunables/global> /usr/bin/gnome-about-me { #include <abstractions/base> /usr/bin/gnome-about-me mr, }	over 2 years ago	gnome	88	hbpteam	Edit	History
ubuntu-gutsy	/bin/hostname	#include <tunables/global> /bin/hostname { #include <abstractions/base> #include <abstractions/nameservice> /bin/hostname mr, }	9 months ago		54	stive	Edit	History
ubuntu-gutsy	/usr/lib/libgconf2-4/gconf-sanity-check-2	#include <tunables/global> /usr/lib/libgconf2-4/gconf-sanity-check-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home/*/.Xauthority r, /tmp/gconf-test-locking-file-05V9ZT klrw, /usr/lib/libgconf2-4/gconf-sanity-check-2 mr, }	over 2 years ago	gnome	123	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/ripole	#include <tunables/global> /usr/bin/ripole { #include <abstractions/base> /usr/bin/ripole mr, /var/lib/amavis/tmp/** rw, }	9 months ago		67	stive	Edit	History
ubuntu-gutsy	/usr/sbin/dovecot	#include <tunables/global> /usr/sbin/dovecot { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability chown, capability dac_override, capability dac_read_search, capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, /etc/dovecot/dovecot-sql.conf r, /etc/dovecot/dovecot.conf r, /etc/mtab r, /etc/ssl/certs/* r, /etc/ssl/openssl.cnf r, /etc/ssl/private/* r, /home//.Maildir/ mklrw, /home//.Maildir// w, /home//.maildir/ r, /home//.maildir/** klrw, /proc/sys/kernel/ngroups_max r, /usr/lib/dovecot/dovecot-auth ixr, /usr/lib/dovecot/imap ixr, /usr/lib/dovecot/imap-login ixr, /usr/lib/dovecot/pop3 ixr, /usr/lib/dovecot/pop3-login ixr, /usr/lib/dovecot/ssl-build-param ixr, /usr/sbin/dovecot mr, /var/lib/dovecot/* krw, /var/run/dovecot/ rw, /var/run/dovecot/* rw, /var/run/dovecot/login/ rw, /var/run/dovecot/login/* rw, }	9 months ago		73	stive	Edit	History
ubuntu-gutsy	/usr/bin/devhelp	#include <tunables/global> /usr/bin/devhelp { #include <abstractions/base> /usr/bin/devhelp mr, }	over 2 years ago	gnome	118	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/meld	#include <tunables/global> /usr/bin/meld { #include <abstractions/base> /usr/bin/env ix, /usr/bin/meld mr, }	over 2 years ago	gnome	78	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/local	# $Id: usr.lib.postfix.local 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/local { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/user-mail> #include <program-chunks/postfix-common> /bin/bash mixr, /bin/date mixr, /dev/tty rw, /etc/mailname r, /etc/postfix/lists.db r, /etc/postfix/virtual.db r, /etc/ssl/openssl.cnf r, /etc/{postfix/,}aliases.db krw, /home//.Maildir/* lw, /home//.maildir/* lw, /root/.maildir/ lw, /usr/bin/mlmmj-recieve Px, /usr/bin/procmail Px, /usr/lib/mailman/mail/mailman Px, /usr/lib/postfix/local rmix, /var/lib/amavis/.maildir/ lw, /var/lib/mailman/data/aliases.db r, /var/mailman/mail/wrapper Px, /var/spool/postfix/active/* krw, /var/www/.maildir/** lw, /{var/spool/postfix/,}active/[0-9A-F]/ rw, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rw, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rw, /{var/spool/postfix/,}pid/unix.local krw, /{var/spool/postfix/,}private/{bounce,defer,flush,lmtp,rewrite} rw, /{var/spool/postfix/,}public/{cleanup,flush} rw, }	9 months ago		67	stive	Edit	History
ubuntu-gutsy	/usr/bin/dirname	#include <tunables/global> /usr/bin/dirname flags=(complain) { #include <abstractions/base> /usr/bin/dirname mr, }	over 2 years ago	gnome	94	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/apache2	#include <tunables/global> /usr/sbin/apache2 { #include <abstractions/base> /usr/sbin/apache2 mr, } /usr/sbin/apache2//DEFAULT_URI { } /usr/sbin/apache2//HANDLING_UNTRUSTED_INPUT { }	8 months ago	apache2	68	jmfrank63	Edit	History
ubuntu-gutsy	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld flags=(complain) { #include <abstractions/base> /usr/sbin/mysqld mr, }	about 1 year ago		109	igoriii	Edit	History
ubuntu-gutsy	/usr/bin/xcdroast	#include <tunables/global> /usr/bin/xcdroast { #include <abstractions/base> /usr/bin/xcdroast mr, }	over 2 years ago	gnome	111	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/error	# $Id: usr.lib.postfix.error 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/error { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, /etc/mailname r, /usr/lib/postfix/error rmix, /var/spool/postfix/active/* krw, /var/spool/postfix/etc/* r, /var/spool/postfix/pid/unix.retry krw, /var/spool/postfix/private/defer w, /var/spool/postfix/public/* w, }	9 months ago		34	stive	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-c2s	#include <tunables/global> /usr/sbin/jabberd2-c2s flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-c2s mr, }	about 1 year ago		109	igoriii	Edit	History
ubuntu-gutsy	/usr/lib/postfix/spawn	# $Id: usr.lib.postfix.spawn 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/spawn { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/spawn rmix, }	9 months ago		72	stive	Edit	History
ubuntu-gutsy	/usr/bin/update-manager	#include <tunables/global> /usr/bin/update-manager { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/update-manager mr, }	over 2 years ago	gnome	94	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/fwbuilder	#include <tunables/global> /usr/bin/fwbuilder { #include <abstractions/base> /usr/bin/fwbuilder mr, }	over 2 years ago	gnome	107	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/aide	#include <tunables/global> /usr/bin/aide { #include <abstractions/base> /usr/bin/aide mr, }	9 months ago		55	stive	Edit	History
ubuntu-gutsy	/usr/bin/tracker-search-tool	#include <tunables/global> /usr/bin/tracker-search-tool { #include <abstractions/base> /usr/bin/tracker-search-tool mr, }	over 2 years ago	gnome	109	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/mkfontdir	#include <tunables/global> /usr/bin/mkfontdir { #include <abstractions/base> /bin/dash ixr, /usr/bin/mkfontdir mr, /usr/bin/mkfontscale Px, }	over 2 years ago	gnome	117	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/discard	# $Id: usr.lib.postfix.discard 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/discard { #include <abstractions/base> /usr/lib/postfix/discard rmix, }	9 months ago		74	stive	Edit	History
ubuntu-gutsy	/usr/bin/xdpyinfo	#include <tunables/global> /usr/bin/xdpyinfo { #include <abstractions/X> #include <abstractions/base> /home/*/.Xauthority r, /usr/bin/xdpyinfo mr, }	over 2 years ago	gnome	136	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/tvtime	#include <tunables/global> /usr/bin/tvtime { #include <abstractions/base> /usr/bin/tvtime mr, }	over 2 years ago	gnome	89	hbpteam	Edit	History
ubuntu-gutsy	/tmp/upxBCN1WMIANOG	#include <tunables/global> /tmp/upxBCN1WMIANOG flags=(complain) { #include <abstractions/base> /tmp/upxBCN1WMIANOG mr, }	about 1 year ago	lkdxjlk	86	snide	Edit	History
ubuntu-gutsy	/usr/bin/opera	#include <tunables/global> /usr/bin/opera flags=(complain) { #include <abstractions/base> /bin/dash ix, /usr/bin/opera mr, }	over 2 years ago	Ubuntu Gutsy 7.10 opera profile changes	76	mozg31337	Edit	History
ubuntu-gutsy	/usr/bin/monodevelop	#include <tunables/global> /usr/bin/monodevelop { #include <abstractions/base> /bin/dash ix, /usr/bin/monodevelop mr, }	over 2 years ago	gnome	106	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/clamd	#include <tunables/global> /usr/sbin/clamd { #include <abstractions/base> #include <abstractions/user-tmp> /etc/clamav/clamd.conf r, /tmp/** klrw, /usr/sbin/clamd mr, /var/lib/clamav/ r, /var/lib/clamav/.dbLock krw, /var/lib/clamav/daily.inc/ r, /var/lib/clamav/daily.inc/* krw, /var/lib/clamav/main.cvd r, /var/log/clamav/clamav.log a, /var/run/clamav/clamd.ctl w, /var/run/clamav/clamd.pid w, }	9 months ago		79	stive	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c rw, /dev/snd/pcmC0D0p rw, /dev/snd/pcmC0D1c rw, /dev/snd/pcmC0D1p rw, /dev/snd/pcmC0D2c rw, /dev/snd/pcmC0D2p rw, /dev/snd/pcmC0D3c rw, /dev/snd/pcmC0D4p rw, /dev/snd/pcmC1D0c rw, /dev/snd/timer r, /etc/fonts/** r, /etc/gai.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.mozilla/ r, /home//.mozilla/eclipse/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox/m8t3ehuc.default/ r, /home//.mozilla/firefox/m8t3ehuc.default/adblockplus/ r, /home//.mozilla/firefox/m8t3ehuc.default/bookmarkbackups/ r, /home//.mozilla/firefox/m8t3ehuc.default/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{07b2a769-ed19-4483-87ce-c643914c81bb\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{07b2a769-ed19-4483-87ce-c643914c81bb\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/components/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/preferences/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/m8t3ehuc.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/m8t3ehuc.default/prefs.js r, /home//.mozilla/firefox/wl87hxn7.default/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/favicons/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/images/ r, /home//.mozilla/firefox/wl87hxn7.default/adblockplus/ r, /home//.mozilla/firefox/wl87hxn7.default/bookmarkbackups/ r, /home//.mozilla/firefox/wl87hxn7.default/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/images/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/skin/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/prefs.js r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5393 w, /tmp/.ICE-unix/7163 w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/ICH4.conf r, /usr/share/alsa/cards/VIA8233.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/fonts/* r, /usr/share/icons/DMZ-White/cursor.theme r, /usr/share/icons/DMZ-White/cursors/arrow r, /usr/share/icons/DMZ-White/cursors/double_arrow r, /usr/share/icons/DMZ-White/cursors/xterm r, /usr/share/icons/DMZ-White/index.theme r, /usr/share/icons/Human/index.theme r, /usr/share/icons/Tangerine/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/locale-langpack/hu/LC_MESSAGES/libc.mo r, /usr/share/skype/** kr, /var/cache/fontconfig/059138ec877db160474b4d5de1248d14-x86.cache-2 r, /var/cache/fontconfig/089dead882dea3570ffc31a9898cfb69-x86.cache-2 r, /var/cache/fontconfig/0f32d3adc6a232110812e17374eaa446-x86.cache-2 r, /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2 r, /var/cache/fontconfig/102e5142c2e9e50c5e8ece26694a2dad-x86.cache-2 r, /var/cache/fontconfig/118d8d5311348bbdf5fe3b106d7c13d4-x86.cache-2 r, /var/cache/fontconfig/142ecfc435bad6f1fbc2648c1119d5eb-x86.cache-2 r, /var/cache/fontconfig/20bd79ad97094406f7d1b9654bfbd926-x86.cache-2 r, /var/cache/fontconfig/21a99156bb11811cef641abeda519a45-x86.cache-2 r, /var/cache/fontconfig/2561679576a9c7fd2ce41d281d4e00d1-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4123634e9c08547d899d0aaff05ebe69-x86.cache-2 r, /var/cache/fontconfig/4794a0821666d79190d59a36cb4f44b5-x86.cache-2 r, /var/cache/fontconfig/4c599c202bc5c08e2d34565a40eac3b2-x86.cache-2 r, /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2 r, /var/cache/fontconfig/61c830dfac3fd78a12654da5e9ba3f56-x86.cache-2 r, /var/cache/fontconfig/6330322105e0c4105d7c7a6ea2974107-x86.cache-2 r, /var/cache/fontconfig/6333f38776742d18e214673cd2c24e34-x86.cache-2 r, /var/cache/fontconfig/6386b86020ecc1ef9690bb720a13964f-x86.cache-2 r, /var/cache/fontconfig/646addb8444faa74ee138aa00ab0b6a0-x86.cache-2 r, /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2 r, /var/cache/fontconfig/707971e003b4ae6c8121c3a920e507f5-x86.cache-2 r, /var/cache/fontconfig/75a2cd575a62c63e802c11411fb87c37-x86.cache-2 r, /var/cache/fontconfig/7b4a97c10f6c0166998ddfa1cf7392fb-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8ab5f685cd6d8ba67c37c908faf08172-x86.cache-2 r, /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2 r, /var/cache/fontconfig/92a571655fb1c0ec1c4d6f496220600a-x86.cache-2 r, /var/cache/fontconfig/9404ff413c67fc2a1526fd14eb4163a8-x86.cache-2 r, /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2 r, /var/cache/fontconfig/9c0624108b9a2ae8552f664125be8356-x86.cache-2 r, /var/cache/fontconfig/a1131b7be650f9abae4907495aa5815d-x86.cache-2 r, /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86.cache-2 r, /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2 r, /var/cache/fontconfig/a960c40fc9306f090224a04585f8a963-x86.cache-2 r, /var/cache/fontconfig/b21a91cee725896328b8cee8091cf747-x86.cache-2 r, /var/cache/fontconfig/b3fedf7c409f006ca1a6fceffceb77cf-x86.cache-2 r, /var/cache/fontconfig/b5a4f3f568a71026ccdc6a3a51afa9b4-x86.cache-2 r, /var/cache/fontconfig/b8613a33de00eecd32d5a94c3c617829-x86.cache-2 r, /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2 r, /var/cache/fontconfig/c855463f699352c367813e37f3f70ea7-x86.cache-2 r, /var/cache/fontconfig/cabbd14511b9e8a55e92af97fb3a0461-x86.cache-2 r, /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2 r, /var/cache/fontconfig/d82eb4fd963d448e2fcb7d7b793b5df3-x86.cache-2 r, /var/cache/fontconfig/da1bd5ca8443ffe22927a23ce431d198-x86.cache-2 r, /var/cache/fontconfig/ddc79d3ea06a7c6ffa86ede85f3bb5df-x86.cache-2 r, /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2 r, /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2 r, /var/cache/fontconfig/e0f9e95429e756d56293ed4d63866094-x86.cache-2 r, /var/cache/fontconfig/e13b20fdb08344e0e664864cc2ede53d-x86.cache-2 r, /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2 r, /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2 r, /var/cache/fontconfig/e7071f4a29fa870f4323321c154eba04-x86.cache-2 r, /var/cache/fontconfig/e9e44584608a73233979f764b5f9dd81-x86.cache-2 r, /var/cache/fontconfig/eeebfc908bd29a90773fd860017aada4-x86.cache-2 r, /var/cache/fontconfig/f5a93ac943883aa0fd9a7bfe0f6ec3c1-x86.cache-2 r, /var/cache/fontconfig/f71c1c7b3f795e5e20ad4a8800a9d397-x86.cache-2 r, /var/cache/fontconfig/fcff1cd55d48a2c86a175e9943c3506d-x86.cache-2 r, /var/cache/fontconfig/fd9416c4b92f07c6f59a3a8cf496e9dc-x86.cache-2 r, /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86.cache-2 r, /var/cache/fontconfig/fe547fea3a41b43a38975d292a2b19c7-x86.cache-2 r, /var/lib/defoma/fontconfig.d/fonts.conf r, }	over 2 years ago		356	wylow	Edit	History
ubuntu-gutsy	freeradius	# vim:syntax=apparmor # Last Modified: Thu Oct 30 14:30:22 2008 #include <tunables/global> /usr/sbin/freeradius flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /etc/freeradius/ r, /proc/net/if_inet6 r, /usr/sbin/freeradius mr, /var/run/freeradius/radiusd.pid w, /usr/lib/freeradius/ rm, # support for logs /var/log/freeradius/** rw, }	about 1 year ago	initial freeradius profile support for flat configuration files	53	playerx	Edit	History
ubuntu-gutsy	/usr/bin/infocmp	#include <tunables/global> /usr/bin/infocmp flags=(complain) { #include <abstractions/base> /lib/terminfo/x/xterm r, /usr/bin/infocmp mr, }	over 2 years ago	gnome	118	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/pipe	# $Id: usr.lib.postfix.pipe 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/pipe { #include <abstractions/base> /usr/lib/postfix/pipe rmix, }	9 months ago		37	stive	Edit	History
ubuntu-gutsy	/usr/bin/snortsam	#include <tunables/global> /usr/bin/snortsam { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, /etc/snortsam.conf r, /usr/bin/snortsam mr, /var/db/snortsam.state r, /var/log/snortsam.log ar, }	9 months ago		54	stive	Edit	History
ubuntu-gutsy	/usr/bin/gnome-volume-control	#include <tunables/global> /usr/bin/gnome-volume-control { #include <abstractions/base> /usr/bin/gnome-volume-control mr, }	over 2 years ago	gnome	89	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/kradio	#include <tunables/global> /usr/bin/kradio { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /bin/dash ixr, /etc/kde3/.areas r, /etc/kde3/kdebugrc r, /etc/qt3/qt_plugins_3.3rc r, /etc/xdg/ r, /etc/xdg/menus/ r, /hde/share/config/.tmp w, /home// rw, /home//.DCOPserver_int80h_* rw, /home//.DCOPserver_int80h_:0 w, /home//.ICEauthority lrw, /home//.ICEauthority- lw, /home//.Xauthority r, /home//.config/ r, /home//.icons/OSX_Cursors_v0.2/* r, /home//.kde/share/ r, /home//.kde/share/applnk/ r, /home//.kde/share/apps/kconf_update/ r, /home//.kde/share/apps/kradio/.krp rw, /home//.kde/share/config/ w, /home//.kde/share/config/.lock lw, /home//.kde/share/config/.new rw, /home//.kde/share/config/.tmp w, /home//.kde/share/config/kconf_updaterc rw, /home//.kde/share/config/kdedrc rw, /home//.kde/share/config/kdeglobals rw, /home//.kde/share/config/kioslaverc r, /home//.kde/share/config/kradiorc rw, /home//.kde/share/config/uiserverrc rw, /home//.kde/share/icons/KDE_Crystal_Diamond_2.7_Ubuntu_Mod/ r, /home//.kde/share/icons/OS-L-IconSet-Buildkit/ r, /home//.kde/share/mimelnk/ r, /home//.kde/share/services/ r, /home//.kde/share/servicetypes/ r, /home//.qt/.3rc r, /home//.qt/.lock krw, /proc//cmdline r, /proc/meminfo r, /usr/bin/dcopserver ixr, /usr/bin/dcopserver_shutdown ixr, /usr/bin/iceauth ixr, /usr/bin/kbuildsycoca ixr, /usr/bin/kconf_update ixr, /usr/bin/kded ixr, /usr/bin/kdeinit ixr, /usr/bin/kio_uiserver ixr, /usr/bin/kioslave Pxr, /usr/bin/klauncher ixr, /usr/bin/kradio mr, /usr/bin/lnusertemp ixr, /usr/lib/ mr, /usr/local/share/ r, /usr/local/share/applications/ r, /usr/local/share/icons/hicolor/ r, /usr/share/ r, /usr/share/applications/ r, /usr/share/applications/kde/ r, /usr/share/applications/screensavers/ r, /usr/share/applnk/ r, /usr/share/applnk/.hidden/ r, /usr/share/applnk/Multimedia/ r, /usr/share/applnk/System/ r, /usr/share/applnk/System/ScreenSavers/ r, /usr/share/applnk/Utilities/ r, /usr/share/apps/LICENSES/GPL_V2 r, /usr/share/apps/kconf_update/ r, /usr/share/apps/kio_uiserver/icons/crystalsvg// r, /usr/share/apps/kio_uiserver/icons/crystalsvg/16x16/.png r, /usr/share/apps/kradio/icons/hicolor// r, /usr/share/apps/kradio/icons/hicolor/16x16/ r, /usr/share/apps/kradio/icons/hicolor/22x22/ r, /usr/share/apps/kradio/icons/hicolor/32x32/.png r, /usr/share/apps/kradio/icons/hicolor/48x48/.png r, /usr/share/gdm/ r, /usr/share/gdm/applications/ r, /usr/share/mimelnk/ r, /usr/share/mimelnk/all/ r, /usr/share/mimelnk/application/ r, /usr/share/mimelnk/audio/ r, /usr/share/mimelnk/image/ r, /usr/share/mimelnk/inode/ r, /usr/share/mimelnk/media/ r, /usr/share/mimelnk/message/ r, /usr/share/mimelnk/model/ r, /usr/share/mimelnk/multipart/ r, /usr/share/mimelnk/text/ r, /usr/share/mimelnk/uri/ r, /usr/share/mimelnk/video/ r, /usr/share/services/ r, /usr/share/services/kded/ r, /usr/share/services/kdetv/ r, /usr/share/services/kresources/ r, /usr/share/services/kresources/kabc/ r, /usr/share/servicetypes/ r, /usr/share/servicetypes/kdetv/ r, }	over 2 years ago	gnome	80	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gfloppy	#include <tunables/global> /usr/bin/gfloppy { #include <abstractions/base> /usr/bin/gfloppy mr, }	over 2 years ago	gnome	72	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon	#include <tunables/global> /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> / r, /boot/ r, /dev/ r, /dev/.static/dev/ r, /dev/shm/ r, /etc/ r, /etc/fstab r, /home/ r, /lib/modules/2.6.22-14-generic/volatile/ r, /proc/ r, /proc/*/mounts r, /sys/ r, /sys/fs/fuse/connections/ r, /sys/kernel/security/ r, /usr/lib/gnome-vfs-2.0/gnome-vfs-daemon mr, /var/ r, /var/lock/ r, /var/run/ r, }	over 2 years ago	gnome	82	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java	#include <tunables/global> /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java { #include <abstractions/base> /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java mr, }	over 2 years ago	gnome	122	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/mysqladmin	#include <tunables/global> /usr/bin/mysqladmin { #include <abstractions/base> #include <abstractions/consoles> /etc/mysql/* r, /etc/mysql/conf.d/ r, /etc/mysql/conf.d/* r, /etc/nsswitch.conf r, /etc/services r, /usr/bin/mysqladmin mr, /usr/share/mysql/charsets/* r, /var/run/mysqld/mysqld.sock w, }	9 months ago		49	stive	Edit	History
ubuntu-gutsy	/usr/bin/gnome-wm	#include <tunables/global> /usr/bin/gnome-wm { #include <abstractions/base> /bin/dash ixr, /bin/grep ixr, /usr/bin/basename Px, /usr/bin/gconftool-2 Px, /usr/bin/gnome-wm mr, /usr/bin/metacity Px, /usr/bin/xdpyinfo Px, }	over 2 years ago	gnome	88	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gnome-session	#include <tunables/global> /usr/bin/gnome-session { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/python> /bin/dash ixr, /etc/X11/xorg.conf r, /etc/apt/apt.conf.d/ r, /etc/apt/apt.conf.d/* r, /etc/apt/sources.list r, /etc/apt/sources.list.d/ r, /etc/apt/sources.list.d/medibuntu.list r, /etc/debian_version r, /etc/default/linux-restricted-modules-common krw, /etc/lsb-release r, /etc/sound/events/gnome-2.soundlist r, /etc/sound/events/gtk-events-2.soundlist r, /etc/update-notifier/hooks_seen r, /etc/xdg/autostart/ r, /etc/xdg/autostart/.desktop r, /home// r, /home//.NC7E0T rw, /home//.ICEauthority rw, /home//.ICEauthority-c w, /home//.ICEauthority-l lw, /home//.Xauthority r, /home//.cache/tracker/ r, /home//.cache/tracker/.db krw, /home//.cache/tracker/.db-journal w, /home//.config/.dirs r, /home//.config/.locale r, /home//.config/tracker/.cfg r, /home//.evolution/mail/local/ r, /home//.evolution/mail/local/.ev-summary r, /home//.evolution/mail/local/Inbox r, /home//.gnome2_private/ w, /home//.gstreamer-0.10/.xml r, /home//.gtk-bookmarks rw, /home//.icons/ r, /home//.local/share/tracker/.log w, /home//.local/share/tracker/data/ r, /home//.local/share/tracker/data/.db krw, /home//.local/share/tracker/data/.db-journal w, /home//.local/share/tracker/void_tracker_lock krw, /home//Desktop/ r, /home//Documents/ r, /home//Music/ r, /home//Pictures/ r, /home//Public/ r, /home//Templates/ r, /home//Videos/ r, /home//dvdrip-data/ r, /home//themes/ r, /home//themes// r, /lib/linux-restricted-modules/2.6.22-14-generic/ r, /proc//mounts r, /proc/acpi/ac_adapter/ r, /proc/asound/cards r, /proc/meminfo r, /proc/modules r, /proc/stat r, /proc/sys/fs/inotify/max_user_watches r, /sys/devices/ r, /sys/devices// r, /sys/devices/acpi_system:00/ACPI0007:00/ r, /sys/devices/acpi_system:00/ACPI0007:00/power/ r, /sys/devices/acpi_system:00/button_power:00/ r, /sys/devices/acpi_system:00/button_power:00/power/ r, /sys/devices/acpi_system:00/device:00/ r, /sys/devices/acpi_system:00/device:00// r, /sys/devices/acpi_system:00/power/ r, /sys/devices/acpi_system:00/thermal:00/ r, /sys/devices/acpi_system:00/thermal:00// r, /sys/devices/isa/power/ r, /sys/devices/pci0000:00/ r, /sys/devices/platform/bluetooth/ r, /sys/devices/platform/bluetooth/modalias r, /sys/devices/platform/bluetooth/power/ r, /sys/devices/platform/eisa.0/ r, /sys/devices/platform/eisa.0/modalias r, /sys/devices/platform/eisa.0/power/ r, /sys/devices/platform/floppy.0/ r, /sys/devices/platform/floppy.0/modalias r, /sys/devices/platform/floppy.0/power/ r, /sys/devices/platform/i8042/ r, /sys/devices/platform/i8042/modalias r, /sys/devices/platform/i8042/power/ r, /sys/devices/platform/i8042/serio0/ r, /sys/devices/platform/i8042/serio0/id/ r, /sys/devices/platform/i8042/serio0/modalias r, /sys/devices/platform/i8042/serio0/power/ r, /sys/devices/platform/i8042/serio1/ r, /sys/devices/platform/i8042/serio1/id/ r, /sys/devices/platform/i8042/serio1/modalias r, /sys/devices/platform/i8042/serio1/power/ r, /sys/devices/platform/pcspkr/ r, /sys/devices/platform/pcspkr/modalias r, /sys/devices/platform/pcspkr/power/ r, /sys/devices/platform/power/ r, /sys/devices/platform/serial8250/ r, /sys/devices/platform/serial8250/modalias r, /sys/devices/platform/serial8250/power/ r, /sys/devices/pnp0// r, /sys/devices/pnp1/power/ r, /sys/devices/system// r, /tmp/ klrw, /usr/bin/aplay Px, /usr/bin/apt-cache ixr, /usr/bin/basename ixr, /usr/bin/bluetooth-applet Px, /usr/bin/bug-buddy Px, /usr/bin/dbus-daemon Px, /usr/bin/env ixr, /usr/bin/gconftool-2 ixr, /usr/bin/gnome-at-visual ixr, /usr/bin/gnome-panel Px, /usr/bin/gnome-power-manager ixr, /usr/bin/gnome-session mr, /usr/bin/gnome-volume-manager Px, /usr/bin/gnome-wm Px, /usr/bin/lsb_release ixr, /usr/bin/nautilus Px, /usr/bin/nm-applet ixr, /usr/bin/python2.5 ixr, /usr/bin/restricted-manager ixr, /usr/bin/system-config-printer-applet ixr, /usr/bin/trackerd ixr, /usr/bin/update-notifier ixr, /usr/bin/vino-session Px, /usr/bin/xdg-user-dirs-gtk-update ixr, /usr/lib/evolution/2.12/evolution-alarm-notify ixr, /usr/lib/libgconf2-4/gconf-sanity-check-2 Px, /usr/lib/libgconf2-4/gconfd-2 Px, /usr/lib/update-notifier/apt-check ixr, /usr/local/share/applications/ r, /usr/local/share/icons/ r, /usr/share/applications/ r, /usr/share/applications// r, /usr/share/apport/apport-gtk ixr, /usr/share/gdm/applications/ r, /usr/share/gnome/.session r, /usr/share/gnome/autostart/ r, /usr/share/gnome/autostart/* r, /usr/share/linux-restricted-modules/2.6.22-14-generic/modules.alias.override/ r, /usr/share/nm-applet/applet.glade r, /usr/share/restricted-manager/groups/ r, /usr/share/restricted-manager/groups/vmware r, /usr/share/restricted-manager/manager.glade r, /usr/share/restricted-manager/modalias_override/ r, /usr/share/system-config-printer/applet.py ixr, /usr/share/tracker/.sql r, /usr/share/tracker/languages/stopwords.en r, /usr/share/update-notifier/glade/.glade r, /var/cache/apt/archives/ r, /var/cache/apt/archives/partial/ r, /var/cache/apt/pkgcache.bin r, /var/cache/restricted-manager/*.restricted krw, /var/cache/restricted-manager/seen krw, /var/cache/restricted-manager/used krw, /var/crash/ r, /var/lib/apt/extended_states r, /var/lib/apt/lists/ r, /var/lib/dpkg/ r, /var/lib/update-notifier/ r, /var/lib/update-notifier/user.d/ r, /var/run/ r, /var/run/avahi-daemon/ r, /var/run/cups/cups.sock w, }	over 2 years ago	gnome	193	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gnome-panel	#include <tunables/global> /usr/bin/gnome-panel { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/nameservice> capability dac_override, capability setgid, capability setuid, /bin/ r, /bin/bash ixr, /bin/dash ixr, /bin/egrep ixr, /bin/grep ixr, /bin/sed ixr, /bin/su Px, /bin/uname ixr, /dev/ptmx rw, /etc/init.d/ r, /etc/sound/events/gtk-events-2.soundlist r, /etc/sudoers r, /etc/xdg/menus/ r, /etc/xdg/menus/applications.menu r, /etc/xdg/menus/preferences.menu r, /etc/xdg/menus/settings.menu r, /home// r, /home//.ICEauthority r, /home//.Xauthority r, /home//.bash_history ar, /home//.bashrc r, /home//.config/user-dirs.dirs r, /home//.gnome2_private/ w, /home//.gtk-bookmarks r, /home//.icons/ r, /home//.recently-used.xbel r, /home//.thumbnails/normal/.png r, /lib/terminfo/x/xterm r, /proc//mounts r, /proc/meminfo r, /proc/sys/kernel/ngroups_max r, /sbin/ r, /tmp/* klrw, /usr/bin/ r, /usr/bin/alacarte ixr, /usr/bin/avidemux ixr, /usr/bin/baobab ixr, /usr/bin/basename ixr, /usr/bin/beep-media-player-2 ixr, /usr/bin/cinepaint ixr, /usr/bin/devede ixr, /usr/bin/dircolors ixmr, /usr/bin/dirname ixr, /usr/bin/ekiga ixr, /usr/bin/env ix, /usr/bin/eog ixr, /usr/bin/evince ixr, /usr/bin/evolution Px, /usr/bin/f-spot ixr, /usr/bin/file-roller ixr, /usr/bin/gdmphotosetup ixr, /usr/bin/gimp-2.4 ixr, /usr/bin/git ixr, /usr/bin/git-merge r, /usr/bin/gksu ixr, /usr/bin/gnome-panel mr, /usr/bin/gnome-system-monitor ixr, /usr/bin/gnome-terminal ixr, /usr/bin/inkscape ixr, /usr/bin/kradio Px, /usr/bin/lesspipe ixr, /usr/bin/lynx.stable ixr, /usr/bin/monodevelop ixr, /usr/bin/mplayer ixr, /usr/bin/nautilus ixr, /usr/bin/nautilus-cd-burner ixr, /usr/bin/nautilus-connect-server ixr, /usr/bin/nessus ixr, /usr/bin/nmapfe ixr, /usr/bin/oofromtemplate ixr, /usr/bin/opera ixr, /usr/bin/python2.5 ix, /usr/bin/streamtuner ixr, /usr/bin/sudo ixr, /usr/bin/tsclient ixr, /usr/bin/ttb ixr, /usr/bin/wireshark ixr, /usr/bin/xaralx ixr, /usr/games/ r, /usr/lib/bonobo-activation/bonobo-activation-server Px, /usr/lib/command-not-found ixr, /usr/lib/firefox/firefox Px, /usr/lib/libvte9/gnome-pty-helper ixr, /usr/local/bin/ r, /usr/local/sbin/ r, /usr/local/share/applications/ r, /usr/local/share/desktop-directories/ r, /usr/local/share/icons/ r, /usr/sbin/ r, /usr/sbin/gdmsetup ixr, /usr/sbin/logprof Ux, /usr/share/albumshaper/images/*.xpm r, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/applications/kde/ r, /usr/share/applications/kde/.desktop r, /usr/share/applications/screensavers/ r, /usr/share/applications/screensavers/.desktop r, /usr/share/aqualung/.png r, /usr/share/control-center-2.0/capplets/ r, /usr/share/control-center-2.0/capplets/.desktop r, /usr/share/desktop-directories/ r, /usr/share/desktop-directories/.directory r, /usr/share/firefox/icons/.png r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/.desktop r, /usr/share/gdm/gdmXnestWrapper ixr, /usr/share/gnome-2.0/ui/.xml r, /usr/share/gnome/apps/ r, /usr/share/gnome/apps/Internet/ r, /usr/share/gnome/apps/Multimedia/ r, /usr/share/klavaro/pixmaps/.xpm r, /usr/share/locale-langpack/en_US/.mo r, /usr/share/system-config-printer/.png r, /usr/share/vte/termcap/xterm r, /usr/share/xine/desktop/*.desktop r, /var/log/wtmp kw, /var/run/sudo/void/0 w, /var/run/sudo/void/1 w, /var/run/utmp krw, }	over 2 years ago	gnome	152	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/passwd	# ------------------------------------------------------------------ # # Copyright (C) 2006 Volker Kuhlmann # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/bin/passwd { #include <abstractions/authentication> #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability sys_resource, /etc/.pwd.lock w, /etc/pwdutils/logging r, /etc/shadow rwl, /etc/shadow.old rwl, /etc/shadow.tmp?????? rwl, /usr/bin/passwd mr, /usr/lib/pwdutils/lib.so mr, /usr/lib64/pwdutils/lib.so mr, /usr/share/cracklib/pw_dict.hwm r, /usr/share/cracklib/pw_dict.pwd r, /usr/share/cracklib/pw_dict.pwi r, }	9 months ago		42	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/logrotate	# $Id: etc.cron.daily.logrotate 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /etc/cron.daily/logrotate { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/mysql> #include <abstractions/nameservice> capability chown, capability dac_override, capability fowner, capability fsetid, / r, /bin/bash mixr, /bin/cat mixr, /bin/cp ixr, /bin/dash ixr, /bin/date ixr, /bin/grep ixr, /bin/gzip mixr, /bin/kill mixr, /bin/logger mixr, /bin/ps ixr, /bin/readlink ixr, /bin/true mixr, /dev/tty wr, /etc/apache2/** r, /etc/cron.daily/logrotate r, /etc/default/apache2 r, /etc/default/rcS r, /etc/drupal/6/apache.conf r, /etc/init.d/* mixr, /etc/javascript-common/javascript-common.conf r, /etc/logrotate.conf r, /etc/logrotate.d r, /etc/logrotate.d/ r, /etc/logrotate.d/* r, /etc/lsb-base-logging.sh r, /etc/mysql/debian.cnf r, /etc/roundcube/apache.conf r, /etc/subdomain.d r, /home// r, /lib/lsb/ r, /proc/ r, /proc//mounts r, /proc//stat r, /proc//status r, /proc/filesystems r, /proc/meminfo r, /proc/stat r, /proc/sys/kernel/pid_max r, /proc/tty/drivers r, /proc/uptime r, /proc/version r, /tmp w, /tmp/file wl, /tmp/logrot* wlr, /usr/bin/env ixr, /usr/bin/killall mixr, /usr/bin/mysqladmin ixr, /usr/lib/apache2/modules/* mr, /usr/sbin/apache2 ixr, /usr/sbin/apache2ctl ixr, /usr/sbin/logrotate mixr, /var/lib/logrotate.status wr, /var/lib/logrotate/status rw, /var/lib/privoxy/log/ rwl, /var/lib64/privoxy/log/ rwl, /var/lock/samba r, /var/log r, /var/log/** wrl, /var/run/apache2.pid r, /var/run/httpd.pid r, /var/run/mysqld/mysqld.sock w, /var/run/syslogd.pid r, /var/spool/slrnpull wr, /var/spool/slrnpull/log* wrl, /var/www/konyvtar.mezobereny.hu./lstat/katnaplo w, /var/www/konyvtar.mezobereny.hu./lstat/katstate r, /var/www/konyvtar.mezobereny.hu./lstat/katstatg ixr, /var/www/konyvtar.mezobereny.hu./lstat/katstath ixr, /var/www/konyvtar.mezobereny.hu./lstat/kvtnaplo w, /var/www/konyvtar.mezobereny.hu./lstat/kvtstate r, /var/www/konyvtar.mezobereny.hu./lstat/kvtstatg ixr, /var/www/konyvtar.mezobereny.hu./lstat/kvtstath ixr, @{PROC} r, @{PROC}/[1-9]* r, }	9 months ago		54	stive	Edit	History
ubuntu-gutsy	/usr/bin/xrdb	#include <tunables/global> /usr/bin/xrdb { #include <abstractions/X> #include <abstractions/base> /bin/dash Px, /home/*/.Xauthority r, /proc/meminfo r, /usr/bin/xrdb mr, }	over 2 years ago	gnome	100	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/soundconverter	#include <tunables/global> /usr/bin/soundconverter { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/soundconverter mr, }	over 2 years ago	gnome	136	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/streamripper	#include <tunables/global> /usr/bin/streamripper { #include <abstractions/base> #include <abstractions/nameservice> /home//Music/www-kinkfm-com/ rw, /home//Music/www-kinkfm-com/* w, /home//Music/www-kinkfm-com/incomplete/ w, /home//Music/www-kinkfm-com/incomplete/*.mp3 rw, /usr/bin/streamripper mr, }	over 2 years ago		80	bdeckers	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox flags=(complain) { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/dash ixr, /bin/ls ixr, /bin/pwd ixr, /bin/sed ixr, /bin/which ixr, /etc/firefox/pref/ r, /etc/firefox/pref/firefox.js r, /home/ r, /home/** krw, /proc//mounts r, /proc/meminfo r, /usr/bin/basename ixr, /usr/bin/dirname ixr, /usr/lib/firefox/firefox mr, /usr/lib/firefox/firefox-bin ixr, /usr/lib/firefox/run-mozilla.sh ixr, /usr/share/firefox/chrome/ r, /usr/share/firefox/chrome/browser.jar r, /usr/share/firefox/chrome/browser.manifest r, /usr/share/firefox/chrome/classic.jar r, /usr/share/firefox/chrome/classic.manifest r, /usr/share/firefox/chrome/comm.manifest r, /usr/share/firefox/chrome/en-US.jar r, /usr/share/firefox/chrome/en-US.manifest r, /usr/share/firefox/chrome/icons/default/default.xpm r, /usr/share/firefox/chrome/pippki.manifest r, /usr/share/firefox/chrome/reporter.jar r, /usr/share/firefox/chrome/reporter.manifest r, /usr/share/firefox/chrome/toolkit.jar r, /usr/share/firefox/chrome/toolkit.manifest r, /usr/share/firefox/defaults/autoconfig/platform.js r, /usr/share/firefox/defaults/autoconfig/prefcalls.js r, /usr/share/firefox/defaults/pref/ r, /usr/share/firefox/defaults/pref/apturl.js r, /usr/share/firefox/defaults/pref/channel-prefs.js r, /usr/share/firefox/defaults/pref/firefox-branding.js r, /usr/share/firefox/defaults/pref/firefox-l10n.js r, /usr/share/firefox/defaults/pref/firefox.js r, /usr/share/firefox/defaults/pref/reporter.js r, /usr/share/firefox/defaults/pref/vendor.js r, /usr/share/firefox/greprefs/ r, /usr/share/firefox/greprefs/all.js r, /usr/share/firefox/greprefs/firefox.ubuntu-prefs.js r, /usr/share/firefox/greprefs/security-prefs.js r, /usr/share/firefox/greprefs/xpinstall.js r, /usr/share/firefox/res/broken-image.gif r, /usr/share/firefox/res/charsetData.properties r, /usr/share/firefox/res/charsetalias.properties r, /usr/share/firefox/res/fonts/* r, /usr/share/firefox/res/forms.css r, /usr/share/firefox/res/hiddenWindow.html r, /usr/share/firefox/res/html.css r, /usr/share/firefox/res/loading-image.gif r, /usr/share/firefox/res/quirk.css r, /usr/share/firefox/res/ua.css r, /usr/share/firefox/searchplugins/ r, /usr/share/firefox/searchplugins/amazondotcom.xml r, /usr/share/firefox/searchplugins/answers.xml r, /usr/share/firefox/searchplugins/creativecommons.xml r, /usr/share/firefox/searchplugins/debsearch.src r, /usr/share/firefox/searchplugins/eBay.xml r, /usr/share/firefox/searchplugins/google.xml r, /usr/share/firefox/searchplugins/wikipedia.src r, /usr/share/firefox/searchplugins/yahoo.xml r, /usr/share/myspell/dicts/ r, /usr/share/ubuntu-artwork/home/firefox-index.html r, /usr/share/ubuntu-artwork/img/header.png r, /usr/share/ubuntu-artwork/img/headerlogo.png r, /usr/share/ubuntu-artwork/ubuntu.css r, }	about 1 year ago	test change	80	asfj	Edit	History
ubuntu-gutsy	/usr/lib/deskbar-applet/deskbar-applet	#include <tunables/global> /usr/lib/deskbar-applet/deskbar-applet { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/orbit2> #include <abstractions/perl> #include <abstractions/python> /bin/bash ix, /bin/dash ix, /etc/sound/events/.soundlist r, /home//.xbel r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2/deskbar-applet/modules-2.20-compatible/ r, /home//.gnome2_private/ w, /home//.gtk-bookmarks r, /home//.icons/ r, /home//.mozilla/firefox/.ini r, /home//.mozilla/firefox// r, /home//.mozilla/firefox/g63bbmzm.default/.html r, /home//.mozilla/firefox/g63bbmzm.default/.js r, /home/void/ r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/ r, /usr/bin/acidrip ixr, /usr/bin/alacarte ixr, /usr/bin/albumshaper Px, /usr/bin/anjuta ixr, /usr/bin/aptoncd ixr, /usr/bin/aqualung Px, /usr/bin/audacious Px, /usr/bin/audacity ixr, /usr/bin/avidemux Px, /usr/bin/azureus ixr, /usr/bin/baobab ixr, /usr/bin/beep-media-player-2 ixr, /usr/bin/blender ixr, /usr/bin/bluetooth-analyzer ixr, /usr/bin/bluetooth-properties ixr, /usr/bin/btdownloadgui.bittornado ixr, /usr/bin/ccsm ixr, /usr/bin/cddb-slave2-properties Px, /usr/bin/cinepaint ixr, /usr/bin/debian-reference ixr, /usr/bin/devede ixr, /usr/bin/devhelp Px, /usr/bin/dia-normal ixr, /usr/bin/djview4 Px, /usr/bin/dogtail-recorder ixr, /usr/bin/dogtail-sniff ixr, /usr/bin/dvd95 Px, /usr/bin/dvdrip Px, /usr/bin/easytag ixr, /usr/bin/eclipse ixr, /usr/bin/ekiga ixr, /usr/bin/env ix, /usr/bin/eog ixr, /usr/bin/etherape ixr, /usr/bin/evince ixr, /usr/bin/evolution Px, /usr/bin/f-spot ixr, /usr/bin/file-roller ixr, /usr/bin/fwbuilder Px, /usr/bin/gcalctool ixr, /usr/bin/gconf-editor ixr, /usr/bin/gdebi-gtk ixr, /usr/bin/gdmflexiserver ixr, /usr/bin/gdmphotosetup ixr, /usr/bin/geany ixr, /usr/bin/gedit ixr, /usr/bin/gfloppy Px, /usr/bin/ghex2 ixr, /usr/bin/gimp-2.4 Px, /usr/bin/gksu Px, /usr/bin/glade-3 ixr, /usr/bin/gmenu-simple-editor ixr, /usr/bin/gnome-about ixr, /usr/bin/gnome-about-me ixr, /usr/bin/gnome-accessibility-keyboard-properties ixr, /usr/bin/gnome-app-install ixr, /usr/bin/gnome-appearance-properties ixr, /usr/bin/gnome-at-properties Px, /usr/bin/gnome-btdownload ixr, /usr/bin/gnome-cd ixr, /usr/bin/gnome-commander ixr, /usr/bin/gnome-control-center ixr, /usr/bin/gnome-default-applications-properties Px, /usr/bin/gnome-dictionary Px, /usr/bin/gnome-display-properties ixr, /usr/bin/gnome-font-viewer ixr, /usr/bin/gnome-keybinding-properties ixr, /usr/bin/gnome-keyboard-properties Px, /usr/bin/gnome-keyring-manager ixr, /usr/bin/gnome-mouse-properties ixr, /usr/bin/gnome-nettool ixr, /usr/bin/gnome-network-preferences ixr, /usr/bin/gnome-open ixr, /usr/bin/gnome-panel ixr, /usr/bin/gnome-power-preferences ixr, /usr/bin/gnome-rdp ixr, /usr/bin/gnome-screensaver-preferences ixr, /usr/bin/gnome-screenshot Px, /usr/bin/gnome-search-tool ixr, /usr/bin/gnome-session-properties ixr, /usr/bin/gnome-sound-properties Px, /usr/bin/gnome-sound-recorder ixr, /usr/bin/gnome-splashscreen-manager Px, /usr/bin/gnome-system-log Px, /usr/bin/gnome-system-monitor ixr, /usr/bin/gnome-terminal ixr, /usr/bin/gnome-volume-control Px, /usr/bin/gnome-volume-properties ixr, /usr/bin/gnome-window-properties ixr, /usr/bin/gpilotd-control-applet ixr, /usr/bin/gqview ixr, /usr/bin/grip ixr, /usr/bin/gstm Px, /usr/bin/gstreamer-properties ixr, /usr/bin/gthumb ixr, /usr/bin/gtkterm Px, /usr/bin/gucharmap Px, /usr/bin/hal-device-manager ixr, /usr/bin/htop ixr, /usr/bin/hwdb-gui ixr, /usr/bin/idle-python2.5 ixr, /usr/bin/inkscape ixr, /usr/bin/isomaster ixr, /usr/bin/kchmviewer Px, /usr/bin/klavaro ixr, /usr/bin/meld Px, /usr/bin/monodevelop Px, /usr/bin/monodoc ixr, /usr/bin/mplayer ixr, /usr/bin/my-default-printer ixr, /usr/bin/nautilus Px, /usr/bin/nautilus-actions-config ixr, /usr/bin/nautilus-cd-burner Px, /usr/bin/nautilus-file-management-properties ixr, /usr/bin/nessus Px, /usr/bin/nmapfe ixr, /usr/bin/nzb ixr, /usr/bin/onboard ixr, /usr/bin/onboard-settings ixr, /usr/bin/ooffice Px, /usr/bin/oofromtemplate Px, /usr/bin/opera ixr, /usr/bin/ophcrack ixr, /usr/bin/orca ixr, /usr/bin/packagesearch ixr, /usr/bin/pdfedit ixr, /usr/bin/perl ix, /usr/bin/picard ixr, /usr/bin/pidgin ixr, /usr/bin/pterm ixr, /usr/bin/putty ixr, /usr/bin/python2.5 ixr, /usr/bin/rhythmbox ixr, /usr/bin/scim-setup ixr, /usr/bin/scite ixr, /usr/bin/serpentine Px, /usr/bin/smplayer ixr, /usr/bin/sound-juicer ixr, /usr/bin/soundconverter Px, /usr/bin/specto ixr, /usr/bin/streamtuner Px, /usr/bin/system-config-printer Px, /usr/bin/system-config-printer-applet Px, /usr/bin/tagtool ixr, /usr/bin/themus-theme-applier ixr, /usr/bin/thoggen ixr, /usr/bin/tomboy ixr, /usr/bin/totem ixr, /usr/bin/tracker-preferences ixr, /usr/bin/tracker-search-tool Pxr, /usr/bin/tsclient ixr, /usr/bin/ttb Px, /usr/bin/tvtime Px, /usr/bin/update-manager Px, /usr/bin/vino-preferences ixr, /usr/bin/vlc ixr, /usr/bin/vumeter ixr, /usr/bin/wavbreaker Px, /usr/bin/wavesurfer ixr, /usr/bin/webhttrack Px, /usr/bin/wireshark ixr, /usr/bin/xaralx ixr, /usr/bin/xcdroast Px, /usr/bin/xchat ixr, /usr/bin/xine Px, /usr/bin/xsane Px, /usr/bin/yelp ixr, /usr/bin/zim ixr, /usr/games/blackjack ixr, /usr/games/glchess ixr, /usr/games/glines ixr, /usr/games/gnect ixr, /usr/games/gnibbles Px, /usr/games/gnobots2 ixr, /usr/games/gnome-sudoku ixr, /usr/games/gnometris Px, /usr/games/gnomine ixr, /usr/games/gnotravex Px, /usr/games/gnotski Px, /usr/games/gtali ixr, /usr/games/iagno Px, /usr/games/mahjongg ixr, /usr/games/same-gnome ixr, /usr/games/sol ixr, /usr/lib/ r, /usr/lib/Adobe/Reader8/bin/acroread ixr, /usr/lib/deskbar-applet/deskbar-applet mr, /usr/lib/firefox/firefox Px, /usr/lib/j2se/1.4/jre/bin/java ixr, /usr/lib/j2se/1.4/jre/javaws/javaws Px, /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/bin/jconsole ixr, /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/java ixr, /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws Px, /usr/lib/jvm/java-6-sun-1.6.0.03/bin/jconsole ixr, /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/java Px, /usr/lib/jvm/java-6-sun-1.6.0.03/jre/bin/javaws ixr, /usr/lib/lazarus/startlazarus ixr, /usr/lib32/ r, /usr/local/share/applications/ r, /usr/local/share/icons/ r, /usr/sbin/gdmsetup ixr, /usr/sbin/synaptic ixr, /usr/share/applications/ r, /usr/share/applications/.desktop r, /usr/share/apport/apport-gtk ixr, /usr/share/deskbar-applet/.xml r, /usr/share/deskbar-applet/art/.png r, /usr/share/firefox/searchplugins/ r, /usr/share/firefox/searchplugins/.src r, /usr/share/firefox/searchplugins/.xml r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/.desktop r, /usr/share/gdm/gdmXnestWrapper ixr, /usr/share/gmountiso/Gmount-iso.py ixr, /usr/share/xine/desktop/*.desktop r, }	over 2 years ago	gnome	81	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/scache	# ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/scache { #include <abstractions/base> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /usr/lib/postfix/scache rmix, /var/run/nscd/group r, }	9 months ago		70	stive	Edit	History
ubuntu-gutsy	/etc/cron.hourly/avg	#include <tunables/global> /etc/cron.hourly/avg { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, /bin/bash ixr, /etc/cron.hourly/avg mr, /opt/grisoft/avg7/bin/avgupdate ixr, /opt/grisoft/avg7/data/* r, /opt/grisoft/avg7/etc/avg.conf r, /opt/grisoft/avg7/lib/libso mr, /opt/grisoft/avg7/var/run/avgupdate.pid r, /opt/grisoft/lib/libso mr, }	9 months ago		40	stive	Edit	History
ubuntu-gutsy	/usr/sbin/portsentry	#include <tunables/global> /usr/sbin/portsentry flags=(complain) { #include <abstractions/base> /usr/sbin/portsentry mr, }	about 1 year ago		135	gejo	Edit	History
ubuntu-gutsy	/etc/cron.daily/aptitude	#include <tunables/global> /etc/cron.daily/aptitude { #include <abstractions/base> /bin/cp ixr, /bin/dash ixr, /bin/date ixr, /bin/gzip ixr, /bin/mv ixr, /bin/rm ixr, /bin/which ixr, /etc/cron.daily/aptitude mr, /proc//mounts r, /proc/filesystems r, /usr/bin/basename ixr, /usr/bin/cmp ixr, /usr/bin/dirname ixr, /usr/bin/savelog ixr, /var/backups/ rw, /var/lib/aptitude/pkgstates r, }	8 months ago		65	stive	Edit	History
ubuntu-gutsy	/usr/sbin/slapd	#include <tunables/global> /usr/sbin/slapd flags=(complain) { #include <abstractions/base> /usr/sbin/slapd mr, }	over 2 years ago	1	109	bmc	Edit	History
ubuntu-gutsy	/usr/lib/postfix/trivial-rewrite	# $Id: usr.lib.postfix.trivial-rewrite 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/trivial-rewrite { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /etc/postfix/relocated.db r, /etc/postfix/transport.db r, /etc/postfix/virtual.db r, /etc/{m,fs}tab r, /usr/lib/postfix/trivial-rewrite rmix, /var/spool/postfix/etc/hosts r, /var/spool/postfix/etc/resolv.conf r, /var/spool/postfix/lib/libso r, /var/spool/postfix/pid/unix.rewrite rw, }	4 months ago		41	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/apt	#include <tunables/global> /etc/cron.daily/apt { #include <abstractions/base> /bin/dash ixr, /bin/dd ixr, /bin/sleep ixr, /bin/which ixr, /etc/apt/apt.conf.d/ r, /etc/apt/apt.conf.d/* r, /etc/apt/sources.list r, /etc/apt/sources.list.d/ r, /etc/cron.daily/apt mr, /etc/group r, /etc/nsswitch.conf r, /usr/bin/apt-config ixr, /usr/bin/apt-get ixr, /usr/bin/cksum ixr, /usr/bin/cut ixr, /usr/bin/getent ixr, /var/cache/apt/ w, /var/cache/apt/pkgcache.bin rw, /var/cache/apt/srcpkgcache.bin rw, /var/lib/apt/* r, /var/lib/apt/lists/* r, /var/lib/dpkg/* r, /var/lib/dpkg/lock krw, /var/lib/dpkg/updates/ r, }	9 months ago		32	stive	Edit	History
ubuntu-gutsy	/usr/bin/gnome-volume-manager	#include <tunables/global> /usr/bin/gnome-volume-manager { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc//mounts r, /usr/bin/gnome-volume-manager mr, /var/run/console/ r, }	over 2 years ago	gnome	82	hbpteam	Edit	History
ubuntu-gutsy	/etc/cron.daily/amavisd-new	#include <tunables/global> /etc/cron.daily/amavisd-new { #include <abstractions/base> #include <abstractions/perl> capability setgid, capability setuid, /bin/dash ixr, /bin/su ixr, /etc/cron.daily/amavisd-new mr, /etc/default/locale r, /etc/environment r, /etc/group r, /etc/host.conf r, /etc/hosts r, /etc/login.defs r, /etc/nsswitch.conf r, /etc/pam.d/* r, /etc/passwd r, /etc/perl/Net/libnet.cfg r, /etc/profile r, /etc/profile.d/ r, /etc/resolv.conf r, /etc/security/pam_env.conf r, /etc/shadow r, /etc/shells r, /etc/spamassassin/ r, /etc/spamassassin/* r, /lib/security/pam_.so mr, /proc//mounts r, /proc/filesystems r, /proc/stat r, /usr/bin/id ixr, /usr/bin/perl ix, /usr/bin/sa-learn ixr, /usr/lib/perl/5.8.8/ mr, /usr/sbin/amavisd-new-cronjob ixr, /usr/share/perl/5.8.8/ r, /usr/share/perl5/** r, /var/lib/amavis/.spamassassin/ r, /var/lib/amavis/.spamassassin/* lrw, /var/lib/spamassassin/** r, /var/run/utmp krw, }	8 months ago		50	stive	Edit	History
ubuntu-gutsy	/usr/bin/djview4	#include <tunables/global> /usr/bin/djview4 { #include <abstractions/base> /usr/bin/djview4 mr, }	over 2 years ago	gnome	81	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/sendmail	# $Id: usr.sbin.sendmail 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ # Sendmail in Red Hat 7.3 got moved to /usr/sbin/sendmail.sendmail to # support /etc/alternatives/ -- SuSE has no such mechanism. So, this # file supports _BOTH_ sendmail's sendmail and postfix's sendmail. #include <tunables/global> /usr/sbin/sendmail { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <abstractions/user-tmp> #include <program-chunks/postfix-common> /etc/aliases rw, /etc/aliases.db rw, /etc/fstab r, /etc/hosts.allow r, /etc/hosts.deny r, /etc/ldap.conf r, /etc/mail/* r, /etc/mail/statistics rw, /etc/mailname r, /etc/mtab r, /etc/postfix r, /etc/postfix/aliases r, /etc/postfix/aliases.db rw, /etc/postfix/main.cf r, /etc/postfix/postfix-script Px, /etc/sendmail.cf r, /etc/sendmail.cw r, /etc/shells r, /root/.forward rw, /root/dead.letter w, /usr/bin/procmail Px, /usr/kerberos/lib/lib.so mr, /usr/lib/postfix r, /usr/lib/postfix/master Px, /usr/lib/postfix/showq Px, /usr/lib/postfix/smtpd Px, /usr/lib/sasl r, /usr/lib/sasl/* mr, /usr/lib/sasl2 r, /usr/lib/sasl2/* mr, /usr/sbin/postalias Px, /usr/sbin/postdrop Pxmr, /usr/sbin/postfix Px, /usr/sbin/postqueue Px, /usr/sbin/sendmail rmix, /usr/sbin/sendmail.postfix rmix, /usr/sbin/sendmail.sendmail rmix, /var/lib/sendmail/statistics rwl, /var/run/sendmail.pid rwl, /var/run/sendmail/control rw, /var/run/sm-client.pid rwl, /var/run/utmp rw, /var/spool/clientmqueue r, /var/spool/clientmqueue/* rwl, /var/spool/mail rwl, /var/spool/mail/* rwl, /var/spool/mqueue rwl, /var/spool/mqueue/* rwl, /var/spool/postfix r, /var/spool/postfix/active r, /var/spool/postfix/bounce r, /var/spool/postfix/corrupt r, /var/spool/postfix/defer r, /var/spool/postfix/deferred r, /var/spool/postfix/incoming r, /var/spool/postfix/maildrop r, /var/spool/postfix/maildrop/* lrw, /var/spool/postfix/pid r, /var/spool/postfix/private r, /var/spool/postfix/public r, /var/spool/postfix/public/pickup w, /var/spool/postfix/public/qmgr w, /var/spool/postfix/public/showq w, /var/spool/postfix/saved r, @{PROC}/loadavg r, @{PROC}/net/if_inet6 r, }	4 months ago		35	stive	Edit	History
ubuntu-gutsy	/usr/lib/bonobo-activation/bonobo-activation-server	#include <tunables/global> /usr/lib/bonobo-activation/bonobo-activation-server { #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/bonobo-activation/.xml r, /etc/sound/events/.soundlist r, /home//.Trash/ r, /home//.Xauthority r, /home//.gnome/gnome-vfs/.trash_entry_cache rw, /home//.gnome2_private/ w, /home//.icons/ r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/lib/bonobo-activation/bonobo-activation-server mr, /usr/lib/deskbar-applet/deskbar-applet Px, /usr/lib/evolution/2.12/evolution-exchange-storage Px, /usr/lib/evolution/evolution-data-server-1.12 Px, /usr/lib/fast-user-switch-applet/fast-user-switch-applet Px, /usr/lib/gnome-applets/mixer_applet2 ixr, /usr/lib/gnome-applets/trashapplet ixr, /usr/local/share/icons/ r, /usr/share/gnome-2.0/ui/*.xml r, }	over 2 years ago	gnome	163	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/evolution/evolution-data-server-1.12	#include <tunables/global> /usr/lib/evolution/evolution-data-server-1.12 { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /home//.evolution/calendar/local/system/.ics rw, /home//.evolution/calendar/local/system/.ics~ rw, /home//.evolution/memos/local/system/.ics rw, /home//.evolution/memos/local/system/.ics~ rw, /home//.evolution/tasks/local/* rw, /home//.gnome2_private/ w, /proc//mounts r, /proc/stat r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/lib/evolution/evolution-data-server-1.12 mr, }	over 2 years ago	gnome	148	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/postfix	#include <tunables/global> /usr/sbin/postfix { #include <abstractions/base> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability kill, capability setgid, capability setuid, capability sys_chroot, capability sys_tty_config, /bin/dash ixr, /bin/grep ixr, /bin/sed ixr, /bin/sleep ixr, /bin/uname Px, /dev/tty a, /etc/mailname r, /etc/postfix/* r, /etc/postfix/postfix-script ixr, /etc/ssl/certs/ssl-cert-snakeoil.pem r, /etc/ssl/openssl.cnf r, /etc/ssl/private/ssl-cert-snakeoil.key r, /home//.forward r, /home//.maildir/ lw, /proc/sys/kernel/ngroups_max r, /root/.maildir/ lw, /usr/bin/mawk ixr, /usr/lib/postfix/* mr, /usr/lib/postfix/anvil ixr, /usr/lib/postfix/bounce ixr, /usr/lib/postfix/cleanup ixr, /usr/lib/postfix/error ixr, /usr/lib/postfix/flush ixr, /usr/lib/postfix/local ixr, /usr/lib/postfix/master ixr, /usr/lib/postfix/pickup ixr, /usr/lib/postfix/proxymap ixr, /usr/lib/postfix/qmgr ixr, /usr/lib/postfix/scache ixr, /usr/lib/postfix/showq ixr, /usr/lib/postfix/smtp ixr, /usr/lib/postfix/smtpd ixr, /usr/lib/postfix/tlsmgr ixr, /usr/lib/postfix/trivial-rewrite ixr, /usr/sbin/postconf ixr, /usr/sbin/postfix mr, /usr/sbin/postlog ixr, /usr/sbin/postsuper ixr, /var/lib/amavis/.maildir/** lw, /var/lib/postfix/prng_exch krw, /var/lib/postfix/smtp_scache.db krw, /var/lib/postfix/smtpd_scache.db krw, /var/spool/postfix/active/ r, /var/spool/postfix/active/* krw, /var/spool/postfix/defer/ krw, /var/spool/postfix/deferred/ r, /var/spool/postfix/deferred/ rw, /var/spool/postfix/etc/* r, /var/spool/postfix/flush/ r, /var/spool/postfix/flush/* krw, /var/spool/postfix/hold/ r, /var/spool/postfix/incoming/ r, /var/spool/postfix/incoming/* rw, /var/spool/postfix/lib/libso mr, /var/spool/postfix/maildrop/ r, /var/spool/postfix/maildrop/* rw, /var/spool/postfix/pid/* krw, /var/spool/postfix/private/* w, /var/spool/postfix/public/* rw, /var/spool/postfix/trace/* krw, /var/www/.maildir/** lw, }	6 months ago		34	stive	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox-bin	# $Id: usr.lib.firefox.firefox-bin 725 2007-06-11 05:07:41Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/firefox/firefox-bin flags=(complain) { #include <abstractions/X> #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-download> #include <abstractions/user-write> capability sys_nice, /bin/bash mixr, /bin/grep mixr, /bin/netstat Px, /bin/ps mixr, /etc/SuSE-release r, /etc/X11/.kstylerc.lock rw, /etc/X11/.qt_plugins_rc.lock rw, /etc/X11/.qtrc.lock rw, /etc/X11/fs/config r, /etc/firefox/pref/ r, /etc/firefox/pref/.js r, /etc/firefox/pref/.js-actual r, /etc/gai.conf r, /etc/gnome-vfs-/modules r, /etc/gnome-vfs-/modules/.conf r, /etc/ld.so.cache mr, /etc/mailcap r, /etc/mime.types r, /etc/mozpluggerrc r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/* r, /etc/rpc r, /etc/sysconfig/clock r, /home//.Xauthority r, /home//.gnome2_private/ w, /home//.mozilla/firefox/* krw, /opt/kde3/bin/kde-config mixr, /opt/kde3/share/applications/*.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /proc//mounts r, /proc/meminfo r, /tmp/hsperfdata_/[0-9] m, /usr/bin/m4 rmix, /usr/bin/mozplugger-helper rmix, /usr/java/jre/plugin//ns/libjavaplugin_oji.so mr, /usr/lib/GConf/2/gconfd-2 Px, /usr/lib/browser-extensions/firefox r, /usr/lib/browser-plugins r, /usr/lib/browser-plugins/.so mr, /usr/lib/browser-plugins/.xpt r, /usr/lib/firefox/* r, /usr/lib/firefox/*.so mr, /usr/lib/firefox/firefox-bin mixr, /usr/lib/gnome-vfs-/modules/.so mr, /usr/lib/gtk-/*.so mr, /usr/lib/jvm/java-/* r, /usr/lib/jvm/java-/.so mr, /usr/lib/jvm/java-/jre/bin/java_vm mixr, /usr/lib/ooo-/share/fonts/* r, /usr/lib/pango/*.so mr, /usr/share/applications/.desktop r, /usr/share/applications/defaults.list r, /usr/share/applications/mimeinfo.cache r, /usr/share/firefox-extensions/greasemonkey/.manifest r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/content/.gif r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/content/.js r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/content/.xul r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/locale/en-US/.dtd r, /usr/share/firefox-extensions/greasemonkey/chrome/chromeFiles/locale/en-US/.properties r, /usr/share/firefox-extensions/greasemonkey/components/.xpt r, /usr/share/firefox/chrome/ r, /usr/share/firefox/chrome/.jar r, /usr/share/firefox/chrome/.manifest r, /usr/share/firefox/chrome/icons/default/.xpm r, /usr/share/firefox/defaults/autoconfig/.js r, /usr/share/firefox/defaults/pref/ r, /usr/share/firefox/defaults/pref/.js r, /usr/share/firefox/greprefs/ r, /usr/share/firefox/greprefs/.js r, /usr/share/firefox/res/.css r, /usr/share/firefox/res/.gif r, /usr/share/firefox/res/.html r, /usr/share/firefox/res/.properties r, /usr/share/firefox/res/fonts/* r, /usr/share/firefox/searchplugins/ r, /usr/share/firefox/searchplugins/.src r, /usr/share/firefox/searchplugins/.xml r, /usr/share/ghostscript/fonts r, /usr/share/icons r, /usr/share/icons/ r, /usr/share/locale/ r, /usr/share/mime/ r, /usr/share/myspell/dicts/ r, /usr/share/pixmaps r, /usr/share/themes/ r, /usr/share/zoneinfo r, /var/X11R6/compose-cache/* r, /var/run/dbus/system_bus_socket w, @{HOME}/.fonts r, @{HOME}/.fonts.cache-1 r, @{HOME}/.gnome2_private w, @{HOME}/.gtk_qt_engine_rc lrw, @{HOME}/.icons r, @{HOME}/.java/deployment/* r, @{HOME}/.java/deployment/cache/javapi/** lrw, @{HOME}/.java/deployment/log/* lw, @{HOME}/.kde/share/config/* r, @{HOME}/.kde/share/config/gtkrc-* r, @{HOME}/.macromedia/ r, "@{HOME}/.macromedia/Macromedia/Flash Player/" rw, @{HOME}/.mailcap r, @{HOME}/.mime.types r, @{HOME}/.mozilla/appreg rw, @{HOME}/.mozilla/firefox/ lrw, @{HOME}/.mozilla/plugins r, @{HOME}/.mozilla/plugins/ mlrw, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/maps r, @{PROC}/[0-9]*/stat r, @{PROC}/net/if_inet6 r, @{PROC}/sys/vm/heap-stack-gap r, }	over 2 years ago	gnome	106	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/oinkmaster	#include <tunables/global> /usr/sbin/oinkmaster { #include <abstractions/base> #include <abstractions/perl> /usr/bin/perl ix, /usr/sbin/oinkmaster mr, }	9 months ago		55	stive	Edit	History
ubuntu-gutsy	/usr/bin/mcpp	#include <tunables/global> /usr/bin/mcpp { #include <abstractions/base> /usr/bin/mcpp mr, }	over 2 years ago	gnome	67	hbpteam	Edit	History
ubuntu-gutsy	/etc/cron.daily/man-db	#include <tunables/global> /etc/cron.daily/man-db { #include <abstractions/base> #include <abstractions/perl> #include <abstractions/user-manpages> capability chown, capability setgid, capability setuid, / r, /bin/chown ixr, /bin/dash ixr, /etc/cron.daily/man-db mr, /etc/group r, /etc/manpath.config r, /etc/nsswitch.conf r, /etc/passwd r, /sbin/start-stop-daemon ixr, /usr/bin/find ixr, /usr/bin/perl ix, /usr/bin/xargs ixr, /usr/lib/ mr, /usr/lib/man-db/manconv ixr, /usr/lib/man-db/mandb ixr, /usr/man/ r, /usr/sbin/dpkg-statoverride ixr, /usr/share/man/ r, /usr/share/perl/ r, /usr/share/perl5/ r, /var/cache/ r, /var/cache/man/ rw, /var/cache/man/ krw, /var/lib/dpkg/* r, }	8 months ago		61	stive	Edit	History
ubuntu-gutsy	/usr/bin/gnome-at-properties	#include <tunables/global> /usr/bin/gnome-at-properties { #include <abstractions/base> /usr/bin/gnome-at-properties mr, }	over 2 years ago	gnome	129	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/j2se/1.4/jre/javaws/javaws	#include <tunables/global> /usr/lib/j2se/1.4/jre/javaws/javaws { #include <abstractions/base> #include <abstractions/bash> /bin/bash ix, /usr/lib/j2se/1.4/jre/javaws/javaws mr, }	over 2 years ago	gnome	110	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gnome-dictionary	#include <tunables/global> /usr/bin/gnome-dictionary { #include <abstractions/base> /usr/bin/gnome-dictionary mr, }	over 2 years ago	gnome	112	hbpteam	Edit	History
ubuntu-gutsy	/sbin/klogd	# $Id: sbin.klogd 888 2007-08-07 13:26:21Z DominicReynolds_ $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/klogd { #include <abstractions/base> capability sys_admin, /boot/System.map* r, /sbin/klogd rmix, /var/log/boot.msg rwl, /var/run/klogd.pid krwl, /var/run/klogd/klogd.pid krwl, /var/run/klogd/kmsg r, @{PROC}/kallsyms r, @{PROC}/kmsg r, }	9 months ago		59	stive	Edit	History
ubuntu-gutsy	/usr/sbin/avahi-daemon	#include <tunables/global> /usr/sbin/avahi-daemon { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability kill, capability setgid, capability setuid, capability sys_chroot, /etc/avahi/ r, /etc/avahi/avahi-daemon.conf r, /etc/avahi/hosts r, /etc/avahi/services/ r, /etc/avahi/services/.service r, /etc/group m, /etc/passwd m, /proc//fd/ r, /usr/sbin/avahi-daemon mr, /var/run/avahi-daemon/ w, /var/run/avahi-daemon/pid krw, /var/run/avahi-daemon/socket w, /var/run/dbus/system_bus_socket w, }	9 months ago		61	stive	Edit	History
ubuntu-gutsy	/bin/uname	#include <tunables/global> /bin/uname { #include <abstractions/base> /bin/uname mr, }	9 months ago		44	stive	Edit	History
ubuntu-gutsy	/usr/bin/kioslave	#include <tunables/global> /usr/bin/kioslave { #include <abstractions/base> capability dac_override, capability dac_read_search, /home//.kde/share/apps/kradio/stations.krp w, /home//.kde/share/config/ w, /home//.kde/share/config/kdeglobals r, /tmp/kde-void/.tmp r, /tmp/ksocket-void/.slave-socket w, /usr/bin/kioslave mr, /usr/lib/* mr, }	over 2 years ago		70	jophn	Edit	History
ubuntu-gutsy	/usr/lib/postfix/master	# $Id: usr.lib.postfix.master 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/master { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability kill, capability net_bind_service, /etc/mailname r, /etc/postfix/master.cf r, /usr/lib/postfix/anvil Px, /usr/lib/postfix/bounce Px, /usr/lib/postfix/cleanup Px, /usr/lib/postfix/error ixr, /usr/lib/postfix/flush Px, /usr/lib/postfix/local Px, /usr/lib/postfix/master rmix, /usr/lib/postfix/nqmgr Px, /usr/lib/postfix/pickup Px, /usr/lib/postfix/pipe Px, /usr/lib/postfix/proxymap Px, /usr/lib/postfix/qmgr Px, /usr/lib/postfix/scache Px, /usr/lib/postfix/showq Px, /usr/lib/postfix/smtp Px, /usr/lib/postfix/smtpd Px, /usr/lib/postfix/tlsmgr Px, /usr/lib/postfix/trivial-rewrite Px, /var/spool/postfix/active/* krw, /var/spool/postfix/etc/* r, /var/spool/postfix/pid/unix.retry krw, /{var/spool/postfix/,}pid/master.pid krw, /{var/spool/postfix/,}private/* wl, /{var/spool/postfix/,}private/tlsmgr rwl, /{var/spool/postfix/,}public/{cleanup,flush,pickup,qmgr,showq,tlsmgr} rwl, }	9 months ago		77	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/proxymap	# $Id: usr.lib.postfix.proxymap 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/proxymap { #include <abstractions/base> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /etc/mailname r, /etc/postfix/main.cf r, /usr/lib/postfix/proxymap rmix, @{PROC}/net/if_inet6 r, }	9 months ago		49	stive	Edit	History
ubuntu-gutsy	/usr/bin/ooffice	#include <tunables/global> /usr/bin/ooffice { #include <abstractions/base> /bin/dash ix, /usr/bin/ooffice mr, }	over 2 years ago	gnome	86	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gnome-screenshot	#include <tunables/global> /usr/bin/gnome-screenshot { #include <abstractions/base> /usr/bin/gnome-screenshot mr, }	over 2 years ago	gnome	111	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c rw, /dev/snd/pcmC0D0p rw, /dev/snd/pcmC0D1c rw, /dev/snd/pcmC0D2c rw, /dev/snd/pcmC0D2p rw, /dev/snd/pcmC0D3c rw, /dev/snd/pcmC0D4p rw, /dev/snd/pcmC1D0c rw, /dev/snd/timer r, /etc/fonts/** r, /etc/gai.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.mozilla/ r, /home//.mozilla/eclipse/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox/wl87hxn7.default/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/favicons/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/images/ r, /home//.mozilla/firefox/wl87hxn7.default/adblockplus/ r, /home//.mozilla/firefox/wl87hxn7.default/bookmarkbackups/ r, /home//.mozilla/firefox/wl87hxn7.default/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/images/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/skin/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/prefs.js r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5393 w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/ICH4.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/fonts/* r, /usr/share/icons/DMZ-White/cursor.theme r, /usr/share/icons/DMZ-White/cursors/arrow r, /usr/share/icons/DMZ-White/cursors/double_arrow r, /usr/share/icons/DMZ-White/cursors/xterm r, /usr/share/icons/DMZ-White/index.theme r, /usr/share/icons/Human/index.theme r, /usr/share/icons/Tangerine/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/skype/** kr, /var/cache/fontconfig/059138ec877db160474b4d5de1248d14-x86.cache-2 r, /var/cache/fontconfig/089dead882dea3570ffc31a9898cfb69-x86.cache-2 r, /var/cache/fontconfig/0f32d3adc6a232110812e17374eaa446-x86.cache-2 r, /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2 r, /var/cache/fontconfig/102e5142c2e9e50c5e8ece26694a2dad-x86.cache-2 r, /var/cache/fontconfig/118d8d5311348bbdf5fe3b106d7c13d4-x86.cache-2 r, /var/cache/fontconfig/142ecfc435bad6f1fbc2648c1119d5eb-x86.cache-2 r, /var/cache/fontconfig/20bd79ad97094406f7d1b9654bfbd926-x86.cache-2 r, /var/cache/fontconfig/21a99156bb11811cef641abeda519a45-x86.cache-2 r, /var/cache/fontconfig/2561679576a9c7fd2ce41d281d4e00d1-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4123634e9c08547d899d0aaff05ebe69-x86.cache-2 r, /var/cache/fontconfig/4794a0821666d79190d59a36cb4f44b5-x86.cache-2 r, /var/cache/fontconfig/4c599c202bc5c08e2d34565a40eac3b2-x86.cache-2 r, /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2 r, /var/cache/fontconfig/61c830dfac3fd78a12654da5e9ba3f56-x86.cache-2 r, /var/cache/fontconfig/6330322105e0c4105d7c7a6ea2974107-x86.cache-2 r, /var/cache/fontconfig/6333f38776742d18e214673cd2c24e34-x86.cache-2 r, /var/cache/fontconfig/6386b86020ecc1ef9690bb720a13964f-x86.cache-2 r, /var/cache/fontconfig/646addb8444faa74ee138aa00ab0b6a0-x86.cache-2 r, /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2 r, /var/cache/fontconfig/707971e003b4ae6c8121c3a920e507f5-x86.cache-2 r, /var/cache/fontconfig/75a2cd575a62c63e802c11411fb87c37-x86.cache-2 r, /var/cache/fontconfig/7b4a97c10f6c0166998ddfa1cf7392fb-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8ab5f685cd6d8ba67c37c908faf08172-x86.cache-2 r, /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2 r, /var/cache/fontconfig/92a571655fb1c0ec1c4d6f496220600a-x86.cache-2 r, /var/cache/fontconfig/9404ff413c67fc2a1526fd14eb4163a8-x86.cache-2 r, /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2 r, /var/cache/fontconfig/9c0624108b9a2ae8552f664125be8356-x86.cache-2 r, /var/cache/fontconfig/a1131b7be650f9abae4907495aa5815d-x86.cache-2 r, /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86.cache-2 r, /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2 r, /var/cache/fontconfig/a960c40fc9306f090224a04585f8a963-x86.cache-2 r, /var/cache/fontconfig/b21a91cee725896328b8cee8091cf747-x86.cache-2 r, /var/cache/fontconfig/b3fedf7c409f006ca1a6fceffceb77cf-x86.cache-2 r, /var/cache/fontconfig/b5a4f3f568a71026ccdc6a3a51afa9b4-x86.cache-2 r, /var/cache/fontconfig/b8613a33de00eecd32d5a94c3c617829-x86.cache-2 r, /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2 r, /var/cache/fontconfig/c855463f699352c367813e37f3f70ea7-x86.cache-2 r, /var/cache/fontconfig/cabbd14511b9e8a55e92af97fb3a0461-x86.cache-2 r, /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2 r, /var/cache/fontconfig/d82eb4fd963d448e2fcb7d7b793b5df3-x86.cache-2 r, /var/cache/fontconfig/da1bd5ca8443ffe22927a23ce431d198-x86.cache-2 r, /var/cache/fontconfig/ddc79d3ea06a7c6ffa86ede85f3bb5df-x86.cache-2 r, /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2 r, /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2 r, /var/cache/fontconfig/e0f9e95429e756d56293ed4d63866094-x86.cache-2 r, /var/cache/fontconfig/e13b20fdb08344e0e664864cc2ede53d-x86.cache-2 r, /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2 r, /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2 r, /var/cache/fontconfig/e7071f4a29fa870f4323321c154eba04-x86.cache-2 r, /var/cache/fontconfig/e9e44584608a73233979f764b5f9dd81-x86.cache-2 r, /var/cache/fontconfig/eeebfc908bd29a90773fd860017aada4-x86.cache-2 r, /var/cache/fontconfig/f5a93ac943883aa0fd9a7bfe0f6ec3c1-x86.cache-2 r, /var/cache/fontconfig/f71c1c7b3f795e5e20ad4a8800a9d397-x86.cache-2 r, /var/cache/fontconfig/fcff1cd55d48a2c86a175e9943c3506d-x86.cache-2 r, /var/cache/fontconfig/fd9416c4b92f07c6f59a3a8cf496e9dc-x86.cache-2 r, /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86.cache-2 r, /var/cache/fontconfig/fe547fea3a41b43a38975d292a2b19c7-x86.cache-2 r, /var/lib/defoma/fontconfig.d/fonts.conf r, }	over 2 years ago	skype 1.4 running on Ubuntu 7.10	107	nirudha	Edit	History
ubuntu-gutsy	/usr/lib/postfix/tlsmgr	# $Id: usr.lib.postfix.tlsmgr 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/tlsmgr { #include <abstractions/base> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /etc/postfix/prng_exch rw, /usr/lib/postfix/tlsmgr rmix, /var/lib/postfix/* krw, /var/run/__db.smtpd_tls_session_cache.db rw, /var/run/smtpd_tls_session_cache.db rw, /{var/spool/postfix/,}private/tlsmgr r, }	9 months ago		67	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/roundcube-core	#include <tunables/global> /etc/cron.daily/roundcube-core { #include <abstractions/base> capability dac_override, capability dac_read_search, / r, /bin/dash ixr, /bin/rm ixr, /etc/cron.daily/roundcube-core mr, /usr/bin/find ixr, /usr/bin/xargs ixr, /var/lib/roundcube/ r, /var/lib/roundcube/temp/ r, /var/lib/roundcube/temp/* w, }	9 months ago		58	stive	Edit	History
ubuntu-gutsy	/usr/bin/wavbreaker	#include <tunables/global> /usr/bin/wavbreaker { #include <abstractions/base> /usr/bin/wavbreaker mr, }	over 2 years ago	gnome	105	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/groups	#include <tunables/global> /usr/bin/groups flags=(complain) { #include <abstractions/base> capability dac_override, /bin/dash ixr, /usr/bin/groups mr, /usr/bin/id Px, }	over 2 years ago	gnome	96	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/smtp	# $Id: usr.lib.postfix.smtp 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/smtp { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability dac_override, capability dac_read_search, capability net_bind_service, /etc/mailname r, /etc/mtab r, /etc/postfix/prng_exch rw, /etc/postfix/sasl_passwd.db r, /etc/postfix/virtual.db r, /etc/postfix/{ssl/,}.pem r, /usr/lib/postfix/smtp rmix, /usr/share/ssl/certs/ca-bundle.crt r, /usr/share/ssl/openssl.cnf r, /var/spool/postfix/active/ krw, /var/spool/postfix/etc/localtime r, /var/spool/postfix/etc/resolv.conf r, /var/spool/postfix/etc/services r, /var/spool/postfix/pid/unix.amavisfeed krw, /{var/spool/postfix/,}active/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}pid/unix.relay krw, /{var/spool/postfix/,}pid/unix.smtp krw, /{var/spool/postfix/,}private/anvil w, /{var/spool/postfix/,}private/bounce w, /{var/spool/postfix/,}private/defer w, /{var/spool/postfix/,}private/rewrite w, /{var/spool/postfix/,}private/scache w, /{var/spool/postfix/,}private/tlsmgr w, /{var/spool/postfix/,}private/trace w, /{var/spool/postfix/,}public/flush w, }	9 months ago		36	stive	Edit	History
ubuntu-gutsy	/usr/bin/dvdrip	#include <tunables/global> /usr/bin/dvdrip { #include <abstractions/base> #include <abstractions/perl> /usr/bin/dvdrip mr, /usr/bin/perl ix, }	over 2 years ago	gnome	110	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws	#include <tunables/global> /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws { #include <abstractions/base> /usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/bin/javaws mr, }	over 2 years ago	gnome	123	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/php5	#include <tunables/global> /usr/bin/php5 { #include <abstractions/base> /usr/bin/php5 mr, }	8 months ago		33	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/cleanup	# $Id: usr.lib.postfix.cleanup 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/cleanup { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability net_bind_service, /etc/mailname r, /etc/postfix/* r, /etc/{m,fs}tab r, /usr/lib/postfix/cleanup rmix, /var/spool/postfix/etc/* r, /var/spool/postfix/incoming/* w, /{var/spool/postfix/,}hold/[0-9A-F]* w, /{var/spool/postfix/,}incoming/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ rwl, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* rwl, /{var/spool/postfix/,}incoming/[0-9].[0-9] rwl, /{var/spool/postfix/,}pid/unix.cleanup krw, /{var/spool/postfix/,}private/{rewrite,bounce} w, /{var/spool/postfix/,}public/qmgr w, }	9 months ago		50	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/standard	#include <tunables/global> /etc/cron.daily/standard { #include <abstractions/base> /bin/chmod ixr, /bin/cp ixr, /bin/dash ixr, /bin/date ixr, /bin/df ixr, /bin/grep ixr, /bin/gzip ixr, /bin/ls ixr, /bin/mv ixr, /bin/rm ixr, /bin/sed ixr, /bin/which ixr, /boot/lost\+found/ r, /etc/cron.daily/standard mr, /etc/group r, /etc/gshadow r, /etc/mtab r, /etc/passwd r, /etc/shadow r, /home// r, /lost\+found/ r, /proc//mounts r, /proc/filesystems r, /usr/bin/basename ixr, /usr/bin/cmp ixr, /usr/bin/dirname ixr, /usr/bin/mawk ixr, /usr/bin/savelog ixr, /var/backups/* rw, /var/lib/dpkg/status r, }	8 months ago		33	stive	Edit	History
ubuntu-gutsy	/usr/bin/mono	#include <tunables/global> /usr/bin/mono { #include <abstractions/base> /usr/bin/mono mr, }	9 months ago	test	43	armor	Edit	History
ubuntu-gutsy	/usr/bin/bluetooth-applet	#include <tunables/global> /usr/bin/bluetooth-applet { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home/*/.Xauthority r, /usr/bin/bluetooth-applet mr, }	over 2 years ago	gnome	161	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/deluge	#include <tunables/global> /usr/bin/deluge { #include <abstractions/base> /usr/bin/deluge mr, /usr/bin/python2.5 ix, }	about 1 year ago		78	guyome	Edit	History
ubuntu-gutsy	/usr/bin/gimp-2.4	#include <tunables/global> /usr/bin/gimp-2.4 { #include <abstractions/base> /usr/bin/gimp-2.4 mr, }	over 2 years ago	gnome	120	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-sm	#include <tunables/global> /usr/sbin/jabberd2-sm flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-sm mr, }	about 1 year ago		114	igoriii	Edit	History
ubuntu-gutsy	/usr/bin/avidemux	#include <tunables/global> /usr/bin/avidemux { #include <abstractions/base> /usr/bin/avidemux mr, }	over 2 years ago	gnome	104	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/postgrey	#include <tunables/global> /usr/sbin/postgrey { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> capability chown, capability setgid, capability setuid, /etc/postgrey/* r, /usr/bin/perl ix, /usr/lib/ mr, /usr/sbin/postgrey mr, /usr/share/perl/ r, /usr/share/perl5/** r, /var/lib/postgrey/ r, /var/lib/postgrey/* krw, /var/run/postgrey.pid w, }	9 months ago		39	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/mlocate	#include <tunables/global> /etc/cron.daily/mlocate { #include <abstractions/base> capability chown, capability dac_override, capability dac_read_search, capability fowner, capability fsetid, capability sys_admin, / r, /*/ r, /bin/dash ixr, /etc/cron.daily/mlocate mr, /etc/group r, /etc/mtab r, /etc/nsswitch.conf r, /etc/updatedb.conf r, /proc//mounts r, /usr/bin/ionice ixr, /usr/bin/updatedb.mlocate ixr, /var/lib/mlocate/* rw, }	9 months ago		79	stive	Edit	History
ubuntu-gutsy	/usr/bin/wine	#include <tunables/global> /usr/bin/wine flags=(complain) { #include <abstractions/base> /usr/bin/wine mr, }	about 1 year ago	timo	88	timo	Edit	History
ubuntu-gutsy	/usr/games/iagno	#include <tunables/global> /usr/games/iagno { #include <abstractions/base> /usr/games/iagno mr, }	over 2 years ago	gnome	156	hbpteam	Edit	History
ubuntu-gutsy	/opt/grisoft/avg7/bin/avgupdate	#include <tunables/global> /opt/grisoft/avg7/bin/avgupdate { #include <abstractions/base> #include <abstractions/nameservice> capability chown, capability dac_override, capability fsetid, /opt/grisoft/avg7/bin/avgupdate mr, /opt/grisoft/avg7/data/* rw, /opt/grisoft/avg7/etc/* r, /opt/grisoft/avg7/lib/libso mr, /opt/grisoft/avg7/var/run/avgupdate.pid rw, /opt/grisoft/avg7/var/update/backup/* rw, /opt/grisoft/avg7/var/update/download/* rw, /opt/grisoft/avg7/var/update/log/avg7upd.log rw, /opt/grisoft/avg7/var/update/preinstall/* rw, /opt/grisoft/lib/libso mr, /var/run/avgd.pgrp r, }	9 months ago		41	stive	Edit	History
ubuntu-gutsy	/home/aevaughn/bin/namd/namd2	#include <tunables/global> /home/aevaughn/bin/namd/namd2 flags=(complain) { #include <abstractions/base> /home/aevaughn/bin/namd/namd2 mr, }	over 2 years ago	aevaughn	111	aevaughn	Edit	History
ubuntu-gutsy	/usr/lib/swiftfox/swiftfox-bin	#include <tunables/global> /usr/lib/swiftfox/swiftfox-bin flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /** r, /bin/netstat ixr, /home//.gnome2_private/ w, /home//.mozilla/firefox/20wl6bzo.default/.parentlock kw, /home//.mozilla/firefox/20wl6bzo.default/Cache/1C230725d01 rw, /home//.mozilla/firefox/20wl6bzo.default/Cache/3042E47Fd01 rw, /home//.mozilla/firefox/20wl6bzo.default/Cache/E7F655E3d01 rw, /home//.mozilla/firefox/20wl6bzo.default/Cache/_CACHE_001_ rw, /home//.mozilla/firefox/20wl6bzo.default/Cache/_CACHE_002_ rw, /home//.mozilla/firefox/20wl6bzo.default/Cache/_CACHE_003_ rw, /home//.mozilla/firefox/20wl6bzo.default/Cache/_CACHE_MAP_ rw, /home//.mozilla/firefox/20wl6bzo.default/bookmarks-1.html rw, /home//.mozilla/firefox/20wl6bzo.default/bookmarks.bak w, /home//.mozilla/firefox/20wl6bzo.default/bookmarks.html rw, /home//.mozilla/firefox/20wl6bzo.default/cert8.db rw, /home//.mozilla/firefox/20wl6bzo.default/cookies-1.txt rw, /home//.mozilla/firefox/20wl6bzo.default/cookies.txt rw, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/chrome.manifest r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/chrome/noscript.jar r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/components/ r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/preferences/ r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{73a6fe31-595d-460b-a920-fcc0f8843232\}/defaults/preferences/noscript.js r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{c36177c0-224a-11da-8cd6-0800200c9a66\}/chrome.manifest r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{c36177c0-224a-11da-8cd6-0800200c9a66\}/chrome/fasterfox.jar r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{c36177c0-224a-11da-8cd6-0800200c9a66\}/defaults/preferences/ r, /home//.mozilla/firefox/20wl6bzo.default/extensions/\{c36177c0-224a-11da-8cd6-0800200c9a66\}/defaults/preferences/fasterfox.js r, /home//.mozilla/firefox/20wl6bzo.default/formhistory.dat rw, /home//.mozilla/firefox/20wl6bzo.default/history.dat rw, /home//.mozilla/firefox/20wl6bzo.default/key3.db rw, /home//.mozilla/firefox/20wl6bzo.default/localstore-1.rdf rw, /home//.mozilla/firefox/20wl6bzo.default/localstore.rdf rw, /home//.mozilla/firefox/20wl6bzo.default/lock w, /home//.mozilla/firefox/20wl6bzo.default/prefs-1.js rw, /home//.mozilla/firefox/20wl6bzo.default/prefs.js rw, /home//.mozilla/firefox/20wl6bzo.default/search.sqlite krw, /home//.mozilla/firefox/20wl6bzo.default/sessionstore-1.js rw, /home//.mozilla/firefox/20wl6bzo.default/sessionstore.js w, /home//.mozilla/firefox/20wl6bzo.default/urlclassifier2.sqlite rw, /home//.mozilla/firefox/20wl6bzo.default/urlclassifier2.sqlite-journal w, /home//.mozilla/firefox/pluginreg.dat rw, /tmp/.X11-unix/X0 w, /tmp/orbit-bmc/ w, /tmp/orbit-bmc/linc-188d-0-7a751c257f4c8 w, /tmp/orbit-bmc/linc-36d9-0-64efad1ab9409 w, /tmp/orbit-bmc/linc-3705-0-4a488a77b64db w, /usr/lib/swiftfox/swiftfox Px, /usr/lib/swiftfox/swiftfox-bin mr, }	over 2 years ago	1	154	bmc	Edit	History
ubuntu-gutsy	/sbin/portmap	# $Id: sbin.portmap 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/portmap { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, /etc/bindresvport.blacklist r, /etc/hosts.allow r, /etc/hosts.deny r, /sbin/portmap rmix, }	9 months ago		74	stive	Edit	History
ubuntu-gutsy	/usr/bin/audacious	#include <tunables/global> /usr/bin/audacious { #include <abstractions/base> /usr/bin/audacious mr, }	over 2 years ago	gnome	107	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/x11vnc	#include <tunables/global> /usr/bin/x11vnc flags=(complain) { #include <abstractions/base> /usr/bin/x11vnc mr, }	about 1 year ago		63	igoriii	Edit	History
ubuntu-gutsy	/usr/sbin/vsftpd	#include <tunables/global> /usr/sbin/vsftpd flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /etc/ftpusers r, /etc/pam.d/* r, /etc/shadow r, /etc/shells r, /etc/vsftpd.user_list r, /home/user-ftp/ r, /home/user-ftp/** krw, /lib/security/pam_.so mr, /proc//mounts r, /usr/sbin/vsftpd mr, /var/log/vsftpd.log kw, }	about 1 year ago		93	igoriii	Edit	History
ubuntu-gutsy	/usr/bin/gnome-default-applications-properties	#include <tunables/global> /usr/bin/gnome-default-applications-properties { #include <abstractions/base> /usr/bin/gnome-default-applications-properties mr, }	over 2 years ago	gnome	92	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/streamtuner	#include <tunables/global> /usr/bin/streamtuner { #include <abstractions/base> /usr/bin/streamtuner mr, }	over 2 years ago	gnome	81	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/eject/dmcrypt-get-device	#include <tunables/global> /usr/lib/eject/dmcrypt-get-device { #include <abstractions/base> /usr/lib/eject/dmcrypt-get-device mr, }	over 2 years ago	gnome	133	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/metacity	#include <tunables/global> /usr/bin/metacity { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home//.ICEauthority r, /home//.Xauthority r, /home//.metacity/sessions/.ms w, "/home//.themes/Lunacity Silver/metacity-1/.png" r, "/home//.themes/Lunacity Silver/metacity-1/.xml" r, /proc/meminfo r, /usr/bin/metacity mr, }	over 2 years ago	gnome	85	hbpteam	Edit	History
ubuntu-gutsy	/sbin/dhclient3	#include <tunables/global> /sbin/dhclient3 flags=(complain) { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability fsetid, capability kill, capability net_admin, capability net_raw, capability setgid, capability setuid, capability sys_chroot, capability sys_module, capability sys_tty_config, network inet dgram, network inet raw, network inet stream, network inet6 dgram, network inet6 stream, network packet packet, / r, /bin/bash ixr, /bin/chmod ixr, /bin/chown ixr, /bin/dash ixr, /bin/echo ixr, /bin/egrep ixr, /bin/grep ixr, /bin/hostname ixr, /bin/ip ixr, /bin/ls ixr, /bin/mv ixr, /bin/ping ixr, /bin/readlink ixr, /bin/rm ixr, /bin/run-parts ixr, /bin/sed ixr, /bin/sleep ixr, /dev/tty rw, /etc/ rw, /etc/avahi/avahi* kixr, /etc/default/samba r, /etc/dhcp3/ rw, /etc/dhcp3/* r, /etc/dhcp3// r, /etc/dhcp3/dhclient-enter-hooks.d/ r, /etc/dhcp3/dhclient-enter-hooks.d/* r, /etc/dhcp3/dhclient-enter-hooks.d/avahi-autoipd ixr, /etc/dhcp3/dhclient-enter-hooks.d/samba ixr, /etc/dhcp3/dhclient-exit-hooks.d/ r, /etc/dhcp3/dhclient-exit-hooks.d/* r, /etc/dhcp3/dhclient-exit-hooks.d/zzz_avahi-autoipd ixr, /etc/dhcp3/dhclient.conf r, /etc/fstab r, /etc/init.d/samba ixr, /etc/iproute2/rt_scopes r, /etc/lsb-base-logging.sh r, /etc/rc.d/ r, /etc/rc.d/** r, /etc/resolv.conf krw, /etc/resolv.conf.dhclient-new krw, /etc/samba/ rw, /etc/samba/dhcp.conf* krw, /lib/dhcp3-client/call-dhclient-script ixr, /lib/lsb/init-functions r, /proc//fd/ r, /proc/meminfo r, /proc/net/ r, /proc/net/dev r, /proc/net/if_inet6 r, /proc/net/unix r, /sbin/dhclient-script ixr, /sbin/dhclient3 mr, /sbin/ifconfig ixr, /sbin/route ixr, /sbin/runlevel ixr, /sbin/start-stop-daemon ixr, /sbin/usplash_write ixr, /usr/bin/dbus-send ixr, /usr/bin/env ixr, /usr/bin/tput ixr, /usr/bin/xargs ixr, /usr/sbin/avahi-autoipd ixr, /usr/sbin/invoke-rc.d ixr, /var/lib/avahi-autoipd/ krw, /var/lib/avahi-autoipd/ krw, /var/lib/dhcp3/* rw, /var/run/ rw, /var/run/* krw, /var/run/dbus/* rw, }	about 1 year ago	more learning	128	widefox	Edit	History
ubuntu-gutsy	/sbin/apparmor_parser	#include <tunables/global> /sbin/apparmor_parser flags=(complain) { #include <abstractions/base> #include <abstractions/user-tmp> /etc/apparmor.d/abstractions/X r, /etc/apparmor.d/abstractions/audio r, /etc/apparmor.d/abstractions/authentication r, /etc/apparmor.d/abstractions/base r, /etc/apparmor.d/abstractions/bash r, /etc/apparmor.d/abstractions/consoles r, /etc/apparmor.d/abstractions/dbus r, /etc/apparmor.d/abstractions/fonts r, /etc/apparmor.d/abstractions/freedesktop.org r, /etc/apparmor.d/abstractions/gnome r, /etc/apparmor.d/abstractions/kerberosclient r, /etc/apparmor.d/abstractions/mdns r, /etc/apparmor.d/abstractions/nameservice r, /etc/apparmor.d/abstractions/nis r, /etc/apparmor.d/abstractions/nvidia r, /etc/apparmor.d/abstractions/orbit2 r, /etc/apparmor.d/abstractions/perl r, /etc/apparmor.d/abstractions/python r, /etc/apparmor.d/abstractions/user-tmp r, /etc/apparmor.d/abstractions/winbind r, /etc/apparmor.d/tunables/global r, /etc/apparmor.d/tunables/home r, /etc/apparmor.d/tunables/proc r, /etc/apparmor/subdomain.conf r, /proc/*/mounts r, /proc/meminfo r, /sbin/apparmor_parser mr, /sys/kernel/security/apparmor/.replace w, /sys/kernel/security/apparmor/matching r, }	over 2 years ago	gnome	106	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/dhcpd3	#include <tunables/global> /usr/sbin/dhcpd3 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, capability net_raw, capability setgid, capability setuid, network packet, network raw, /etc/dhcp3/dhcpd.conf r, /usr/sbin/dhcpd3 mr, /var/lib/dhcp3/* rwl, /var/run/dhcp3-server/dhcpd.pid w, }	8 months ago		33	stive	Edit	History
ubuntu-gutsy	/usr/bin/gnome-system-log	#include <tunables/global> /usr/bin/gnome-system-log { #include <abstractions/base> /usr/bin/gnome-system-log mr, }	over 2 years ago	gnome	114	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/id	#include <tunables/global> /usr/bin/id flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /proc/*/mounts r, /proc/filesystems r, /usr/bin/id mr, }	over 2 years ago	gnome	144	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c rw, /dev/snd/pcmC0D0p rw, /dev/snd/pcmC0D1c rw, /dev/snd/pcmC0D2c rw, /dev/snd/pcmC0D2p rw, /dev/snd/pcmC0D3c rw, /dev/snd/pcmC0D4p rw, /dev/snd/pcmC1D0c rw, /dev/snd/timer r, /etc/fonts/** r, /etc/gai.conf r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/* krw, /home//.Xauthority r, /home//.config/Trolltech.conf kr, /home//.mozilla/ r, /home//.mozilla/eclipse/ r, /home//.mozilla/firefox/ r, /home//.mozilla/firefox/wl87hxn7.default/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/favicons/ r, /home//.mozilla/firefox/wl87hxn7.default/StumbleUpon/images/ r, /home//.mozilla/firefox/wl87hxn7.default/adblockplus/ r, /home//.mozilla/firefox/wl87hxn7.default/bookmarkbackups/ r, /home//.mozilla/firefox/wl87hxn7.default/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{049952B3-A745-43bd-8D26-D1349B1ED944\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/content/boostbox/images/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/chrome/skin/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{47624dda-b77e-4feb-820a-e4f077d5d4ca\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{8b86149f-01fb-4842-9dd8-4d7eb02fd055\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/components/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d\}/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/\{e968fc70-8f95-4ab9-9e79-304de2a71ee1\}/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/chrome/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/ r, /home//.mozilla/firefox/wl87hxn7.default/extensions/filtersetg@updater/defaults/preferences/ r, /home//.mozilla/firefox/wl87hxn7.default/prefs.js r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5393 w, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/alsa/alsa.conf r, /usr/share/alsa/cards/ICH4.conf r, /usr/share/alsa/cards/aliases.conf r, /usr/share/alsa/pcm/default.conf r, /usr/share/alsa/pcm/dmix.conf r, /usr/share/alsa/pcm/dsnoop.conf r, /usr/share/alsa/pcm/front.conf r, /usr/share/alsa/pcm/iec958.conf r, /usr/share/alsa/pcm/surround40.conf r, /usr/share/alsa/pcm/surround41.conf r, /usr/share/alsa/pcm/surround50.conf r, /usr/share/alsa/pcm/surround51.conf r, /usr/share/fonts/* r, /usr/share/icons/DMZ-White/cursor.theme r, /usr/share/icons/DMZ-White/cursors/arrow r, /usr/share/icons/DMZ-White/cursors/double_arrow r, /usr/share/icons/DMZ-White/cursors/xterm r, /usr/share/icons/DMZ-White/index.theme r, /usr/share/icons/Human/index.theme r, /usr/share/icons/Tangerine/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/skype/** kr, /var/cache/fontconfig/059138ec877db160474b4d5de1248d14-x86.cache-2 r, /var/cache/fontconfig/089dead882dea3570ffc31a9898cfb69-x86.cache-2 r, /var/cache/fontconfig/0f32d3adc6a232110812e17374eaa446-x86.cache-2 r, /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2 r, /var/cache/fontconfig/102e5142c2e9e50c5e8ece26694a2dad-x86.cache-2 r, /var/cache/fontconfig/118d8d5311348bbdf5fe3b106d7c13d4-x86.cache-2 r, /var/cache/fontconfig/142ecfc435bad6f1fbc2648c1119d5eb-x86.cache-2 r, /var/cache/fontconfig/20bd79ad97094406f7d1b9654bfbd926-x86.cache-2 r, /var/cache/fontconfig/21a99156bb11811cef641abeda519a45-x86.cache-2 r, /var/cache/fontconfig/2561679576a9c7fd2ce41d281d4e00d1-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4123634e9c08547d899d0aaff05ebe69-x86.cache-2 r, /var/cache/fontconfig/4794a0821666d79190d59a36cb4f44b5-x86.cache-2 r, /var/cache/fontconfig/4c599c202bc5c08e2d34565a40eac3b2-x86.cache-2 r, /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2 r, /var/cache/fontconfig/61c830dfac3fd78a12654da5e9ba3f56-x86.cache-2 r, /var/cache/fontconfig/6330322105e0c4105d7c7a6ea2974107-x86.cache-2 r, /var/cache/fontconfig/6333f38776742d18e214673cd2c24e34-x86.cache-2 r, /var/cache/fontconfig/6386b86020ecc1ef9690bb720a13964f-x86.cache-2 r, /var/cache/fontconfig/646addb8444faa74ee138aa00ab0b6a0-x86.cache-2 r, /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2 r, /var/cache/fontconfig/707971e003b4ae6c8121c3a920e507f5-x86.cache-2 r, /var/cache/fontconfig/75a2cd575a62c63e802c11411fb87c37-x86.cache-2 r, /var/cache/fontconfig/7b4a97c10f6c0166998ddfa1cf7392fb-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8ab5f685cd6d8ba67c37c908faf08172-x86.cache-2 r, /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2 r, /var/cache/fontconfig/92a571655fb1c0ec1c4d6f496220600a-x86.cache-2 r, /var/cache/fontconfig/9404ff413c67fc2a1526fd14eb4163a8-x86.cache-2 r, /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2 r, /var/cache/fontconfig/9c0624108b9a2ae8552f664125be8356-x86.cache-2 r, /var/cache/fontconfig/a1131b7be650f9abae4907495aa5815d-x86.cache-2 r, /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86.cache-2 r, /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2 r, /var/cache/fontconfig/a960c40fc9306f090224a04585f8a963-x86.cache-2 r, /var/cache/fontconfig/b21a91cee725896328b8cee8091cf747-x86.cache-2 r, /var/cache/fontconfig/b3fedf7c409f006ca1a6fceffceb77cf-x86.cache-2 r, /var/cache/fontconfig/b5a4f3f568a71026ccdc6a3a51afa9b4-x86.cache-2 r, /var/cache/fontconfig/b8613a33de00eecd32d5a94c3c617829-x86.cache-2 r, /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2 r, /var/cache/fontconfig/c855463f699352c367813e37f3f70ea7-x86.cache-2 r, /var/cache/fontconfig/cabbd14511b9e8a55e92af97fb3a0461-x86.cache-2 r, /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2 r, /var/cache/fontconfig/d82eb4fd963d448e2fcb7d7b793b5df3-x86.cache-2 r, /var/cache/fontconfig/da1bd5ca8443ffe22927a23ce431d198-x86.cache-2 r, /var/cache/fontconfig/ddc79d3ea06a7c6ffa86ede85f3bb5df-x86.cache-2 r, /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2 r, /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2 r, /var/cache/fontconfig/e0f9e95429e756d56293ed4d63866094-x86.cache-2 r, /var/cache/fontconfig/e13b20fdb08344e0e664864cc2ede53d-x86.cache-2 r, /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2 r, /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2 r, /var/cache/fontconfig/e7071f4a29fa870f4323321c154eba04-x86.cache-2 r, /var/cache/fontconfig/e9e44584608a73233979f764b5f9dd81-x86.cache-2 r, /var/cache/fontconfig/eeebfc908bd29a90773fd860017aada4-x86.cache-2 r, /var/cache/fontconfig/f5a93ac943883aa0fd9a7bfe0f6ec3c1-x86.cache-2 r, /var/cache/fontconfig/f71c1c7b3f795e5e20ad4a8800a9d397-x86.cache-2 r, /var/cache/fontconfig/fcff1cd55d48a2c86a175e9943c3506d-x86.cache-2 r, /var/cache/fontconfig/fd9416c4b92f07c6f59a3a8cf496e9dc-x86.cache-2 r, /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86.cache-2 r, /var/cache/fontconfig/fe547fea3a41b43a38975d292a2b19c7-x86.cache-2 r, /var/lib/defoma/fontconfig.d/fonts.conf r, }	about 1 year ago		153	guyome	Edit	History
ubuntu-gutsy	/usr/sbin/vsftpd	#include <tunables/global> /usr/sbin/vsftpd flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> capability setgid, capability setuid, capability sys_chroot, /etc/ftpusers r, /etc/pam.d/* r, /etc/shadow r, /etc/shells r, /etc/vsftpd.user_list r, /home/user-ftp/ r, /home/user-ftp/** krw, /lib/security/pam_.so mr, /proc//mounts r, /usr/sbin/vsftpd mr, /var/log/vsftpd.log kw, }	over 2 years ago	vsftpd	80	renato-test	Edit	History
ubuntu-gutsy	/usr/sbin/mysqld	#include <tunables/global> /usr/sbin/mysqld { #include <abstractions/base> #include <abstractions/mysql> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability dac_override, capability setgid, capability setuid, /etc/group m, /etc/hosts.allow r, /etc/hosts.deny r, /etc/mysql/.pem r, /etc/mysql/conf.d/ r, /etc/mysql/conf.d/ r, /etc/mysql/my.cnf r, /etc/passwd m, /usr/sbin/mysqld mr, /usr/share/mysql/ r, /var/lib/mysql/ r, /var/lib/mysql/ rwk, /var/log/mysql/ r, /var/log/mysql/* rw, /var/run/mysqld/mysqld.pid w, /var/run/mysqld/mysqld.sock w, }	9 months ago		49	stive	Edit	History
ubuntu-gutsy	/usr/bin/Xorg	#include <tunables/global> /usr/bin/Xorg { #include <abstractions/base> #include <abstractions/nvidia> #include <abstractions/user-tmp> capability dac_override, capability ipc_owner, capability setgid, capability setuid, capability sys_admin, capability sys_rawio, capability sys_tty_config, /bin/dash Px, /dev/input/mice rw, /dev/mem r, /dev/tty0 w, /dev/tty7 rw, /etc/X11/xorg.conf r, /etc/X11/xserver/SecurityPolicy r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home/void/.gnome2/share/fonts/* r, /proc/bus/pci/00/00.0 r, /proc/bus/pci/00/01.0 r, /proc/bus/pci/00/01.1 r, /proc/bus/pci/00/02.0 r, /proc/bus/pci/00/02.1 r, /proc/bus/pci/00/02.2 r, /proc/bus/pci/00/05.0 r, /proc/bus/pci/00/06.0 r, /proc/bus/pci/00/08.0 r, /proc/bus/pci/00/0a.0 r, /proc/bus/pci/00/0b.0 rw, /proc/bus/pci/00/0e.0 r, /proc/bus/pci/00/18.0 r, /proc/bus/pci/00/18.1 r, /proc/bus/pci/00/18.2 r, /proc/bus/pci/00/18.3 r, /proc/bus/pci/01/00.0 rw, /proc/bus/pci/02/08.0 r, /proc/bus/pci/02/08.1 r, /proc/bus/pci/02/0a.0 r, /proc/driver/nvidia/registry r, /proc/meminfo r, /proc/modules r, /sys/bus/pci/devices/ r, /sys/devices/pci0000:00/0000:00:00.0/resource r, /sys/devices/pci0000:00/0000:00:01.0/resource r, /sys/devices/pci0000:00/0000:00:01.1/resource r, /sys/devices/pci0000:00/0000:00:02.0/resource r, /sys/devices/pci0000:00/0000:00:02.1/resource r, /sys/devices/pci0000:00/0000:00:02.2/resource r, /sys/devices/pci0000:00/0000:00:05.0/resource r, /sys/devices/pci0000:00/0000:00:06.0/resource r, /sys/devices/pci0000:00/0000:00:08.0/resource r, /sys/devices/pci0000:00/0000:00:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/0000:01:00.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.1/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/resource r, /sys/devices/pci0000:00/0000:00:18.0/resource r, /sys/devices/pci0000:00/0000:00:18.1/resource r, /sys/devices/pci0000:00/0000:00:18.2/resource r, /sys/devices/pci0000:00/0000:00:18.3/resource r, /usr/bin/Xorg mr, /usr/lib/ mr, /usr/share/X11/xkb/rules/base r, /usr/share/fonts/ r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.alias r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.dir r, /var/lib/gdm/:0.Xauth r, /var/lib/xkb/server-0.xkm rw, /var/log/Xorg.0.log rw, /var/log/Xorg.0.log.old w, /var/run/acpid.socket w, }	over 2 years ago	gnome	114	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/in.tftpd	#include <tunables/global> /usr/sbin/in.tftpd { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability net_bind_service, /usr/sbin/in.tftpd mr, }	9 months ago		52	stive	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox	#include <tunables/global> /usr/lib/firefox/firefox { #include <abstractions/base> #include <abstractions/nameservice> /bin/dash ixr, /bin/ls ixr, /bin/pwd Px, /bin/sed ixr, /proc/11997/mounts r, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/lib/firefox/firefox mr, /usr/lib/firefox/run-mozilla.sh Px, }	over 2 years ago	gnome	108	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/nessus	#include <tunables/global> /usr/bin/nessus { #include <abstractions/base> /usr/bin/nessus mr, }	over 2 years ago	gnome	112	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/cddb-slave2-properties	#include <tunables/global> /usr/bin/cddb-slave2-properties { #include <abstractions/base> /usr/bin/cddb-slave2-properties mr, }	over 2 years ago	gnome	111	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/albumshaper	#include <tunables/global> /usr/bin/albumshaper { #include <abstractions/base> /bin/dash ix, /usr/bin/albumshaper mr, }	over 2 years ago	gnome	123	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/xkbcomp	#include <tunables/global> /usr/bin/xkbcomp { #include <abstractions/X> #include <abstractions/base> /usr/bin/xkbcomp mr, /var/lib/xkb/*.xkm w, }	over 2 years ago	gnome	146	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/basename	#include <tunables/global> /usr/bin/basename { #include <abstractions/base> /usr/bin/basename mr, }	over 2 years ago	gnome	112	hbpteam	Edit	History
ubuntu-gutsy	/etc/cron.daily/spamassassin	#include <tunables/global> /etc/cron.daily/spamassassin { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> /bin/dash ixr, /bin/sleep ixr, /etc/cron.daily/spamassassin mr, /etc/default/spamassassin r, /etc/perl/Net/* r, /etc/shadow r, /tmp/* w, /usr/bin/expr ixr, /usr/bin/od ixr, /usr/bin/perl ix, /usr/bin/sa-update ixr, /usr/lib/ mr, /usr/share/perl/ r, /usr/share/perl5/ r, /var/lib/spamassassin/ r, }	9 months ago		52	stive	Edit	History
ubuntu-gutsy	/usr/lib/postfix/pickup	# $Id: usr.lib.postfix.pickup 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/pickup { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /etc/mailname r, /usr/lib/postfix/pickup rmix, /{var/spool/postfix/,}maildrop/ r, /{var/spool/postfix/,}maildrop/* rwl, /{var/spool/postfix/,}public/cleanup w, /{var/spool/postfix/,}public/pickup r, }	9 months ago		36	stive	Edit	History
ubuntu-gutsy	/usr/bin/vino-session	#include <tunables/global> /usr/bin/vino-session { #include <abstractions/base> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.gnome2_private/ w, /proc/*/mounts r, /usr/bin/vino-session mr, }	over 2 years ago	gnome	119	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/lesspipe	#include <tunables/global> /usr/bin/lesspipe flags=(complain) { #include <abstractions/base> capability dac_override, /bin/dash ixr, /usr/bin/basename Px, /usr/bin/dirname Px, /usr/bin/lesspipe mr, }	over 2 years ago	gnome	121	hbpteam	Edit	History
ubuntu-gutsy	/bin/which	#include <tunables/global> /bin/which flags=(complain) { #include <abstractions/base> /bin/dash ixr, /bin/which mr, }	over 2 years ago	gnome	81	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/dspam	#include <tunables/global> /usr/bin/dspam { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> capability dac_override, capability net_bind_service, /etc/dspam/* r, /etc/dspam/dspam.d/ r, /usr/bin/dspam mr, /var/lib/amavis/tmp/** r, /var/run/dspam/dspam.pid w, }	9 months ago		69	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/apache2	#include <tunables/global> /etc/cron.daily/apache2 { #include <abstractions/base> /bin/dash ixr, /etc/cron.daily/apache2 mr, /etc/default/apache2 r, } /etc/cron.daily/apache2//DEFAULT_URI { } /etc/cron.daily/apache2//HANDLING_UNTRUSTED_INPUT { }	9 months ago		70	stive	Edit	History
ubuntu-gutsy	/etc/cron.daily/dspam	#include <tunables/global> /etc/cron.daily/dspam { #include <abstractions/base> capability dac_override, capability dac_read_search, /bin/dash ixr, /bin/egrep ixr, /etc/cron.daily/dspam mr, /etc/dspam/* r, /etc/dspam/dspam.d/ r, /etc/nsswitch.conf r, /etc/passwd r, /usr/bin/dspam_clean ixr, /var/spool/dspam/data/ r, }	9 months ago		35	stive	Edit	History
ubuntu-gutsy	/usr/bin/gucharmap	#include <tunables/global> /usr/bin/gucharmap { #include <abstractions/base> /usr/bin/gucharmap mr, }	over 2 years ago	gnome	97	hbpteam	Edit	History
ubuntu-gutsy	/etc/cron.daily/5snort	#include <tunables/global> /etc/cron.daily/5snort { #include <abstractions/base> /bin/dash ixr, /etc/cron.daily/5snort mr, }	9 months ago		40	stive	Edit	History
ubuntu-gutsy	/usr/bin/ttb	#include <tunables/global> /usr/bin/ttb { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/ttb mr, }	over 2 years ago	gnome	151	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/skychart	#include <tunables/global> /usr/bin/skychart flags=(complain) { #include <abstractions/base> Ux, /tmp/upxAGWXKGYALSQ Uxrw, /tmp/upxBLFO3MBALNH Pxrw, /usr/bin/skychart mr, }	about 1 year ago		86	larsthegeek	Edit	History
ubuntu-gutsy	/sbin/syslogd	# $Id: sbin.syslogd 559 2007-04-10 23:05:33Z agruen $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslogd { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability dac_override, capability dac_read_search, capability setgid, capability setuid, capability sys_tty_config, /dev/log wl, /dev/tty* w, /dev/xconsole rw, /etc/group m, /etc/passwd m, /etc/syslog.conf r, /sbin/syslogd rmix, /var/lib//dev/log wl, /var/log/* rw, /var/run/syslogd.pid rwlk, /var/run/utmp krw, /var/spool/compaq/nic/messages_fifo rw, }	9 months ago		62	stive	Edit	History
ubuntu-gutsy	/usr/bin/gconftool-2	#include <tunables/global> /usr/bin/gconftool-2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> /usr/bin/gconftool-2 mr, }	over 2 years ago	gnome	111	hbpteam	Edit	History
ubuntu-gutsy	/bin/which	#include <tunables/global> /bin/which flags=(complain) { #include <abstractions/base> /bin/dash ixr, /bin/which mr, }	over 2 years ago	1	94	bmc	Edit	History
ubuntu-gutsy	/usr/bin/gnome-keyboard-properties	#include <tunables/global> /usr/bin/gnome-keyboard-properties { #include <abstractions/base> /usr/bin/gnome-keyboard-properties mr, }	over 2 years ago	gnome	123	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/firefox/firefox-bin	# $Id: usr.lib.firefox.firefox-bin 725 2007-06-11 05:07:41Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2005 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/firefox/firefox-bin flags=(complain) { #include <abstractions/X> #include <abstractions/audio> #include <abstractions/base> #include <abstractions/bash> #include <abstractions/consoles> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-download> #include <abstractions/user-write> capability sys_nice, /bin/bash mixr, /bin/grep mixr, /bin/netstat Px, /bin/ps mixr, /etc/SuSE-release r, /etc/X11/.kstylerc.lock rw, /etc/X11/.qt_plugins_rc.lock rw, /etc/X11/.qtrc.lock rw, /etc/X11/fs/config r, /etc/gnome-vfs-/modules r, /etc/gnome-vfs-/modules/.conf r, /etc/ld.so.cache mr, /etc/mailcap r, /etc/mime.types r, /etc/mozpluggerrc r, /etc/opt/kde3/share/applications/mimeinfo.cache r, /etc/pango/* r, /etc/rpc r, /etc/sysconfig/clock r, /opt/kde3/bin/kde-config mixr, /opt/kde3/share/applications/*.desktop r, /opt/kde3/share/applications/mimeinfo.cache r, /tmp/hsperfdata_/[0-9]* m, /usr/bin/m4 rmix, /usr/bin/mozplugger-helper rmix, /usr/java/jre/plugin//ns/libjavaplugin_oji.so mr, /usr/lib/GConf/2/gconfd-2 Px, /usr/lib/browser-extensions/firefox r, /usr/lib/browser-plugins r, /usr/lib/browser-plugins/.so mr, /usr/lib/browser-plugins/.xpt r, /usr/lib/firefox/* r, /usr/lib/firefox/*.so mr, /usr/lib/firefox/firefox-bin mixr, /usr/lib/gnome-vfs-/modules/.so mr, /usr/lib/gtk-/*.so mr, /usr/lib/jvm/java-/* r, /usr/lib/jvm/java-/.so mr, /usr/lib/jvm/java-/jre/bin/java_vm mixr, /usr/lib/ooo-/share/fonts/* r, /usr/lib/pango/*.so mr, /usr/share/applications/.desktop r, /usr/share/applications/defaults.list r, /usr/share/applications/mimeinfo.cache r, /usr/share/ghostscript/fonts r, /usr/share/icons r, /usr/share/icons/ r, /usr/share/locale/ r, /usr/share/mime/ r, /usr/share/pixmaps r, /usr/share/themes/ r, /usr/share/zoneinfo r, /var/X11R6/compose-cache/* r, /var/run/dbus/system_bus_socket w, @{HOME}/.fonts r, @{HOME}/.fonts.cache-1 r, @{HOME}/.gnome2_private w, @{HOME}/.gtk_qt_engine_rc lrw, @{HOME}/.icons r, @{HOME}/.java/deployment/* r, @{HOME}/.java/deployment/cache/javapi/** lrw, @{HOME}/.java/deployment/log/* lw, @{HOME}/.kde/share/config/* r, @{HOME}/.kde/share/config/gtkrc-* r, @{HOME}/.macromedia/ r, "@{HOME}/.macromedia/Macromedia/Flash Player/" rw, @{HOME}/.mailcap r, @{HOME}/.mime.types r, @{HOME}/.mozilla/appreg rw, @{HOME}/.mozilla/firefox/ lrw, @{HOME}/.mozilla/plugins r, @{HOME}/.mozilla/plugins/ mlrw, @{PROC}/[0-9]/cmdline r, @{PROC}/[0-9]/maps r, @{PROC}/[0-9]*/stat r, @{PROC}/net/if_inet6 r, @{PROC}/sys/vm/heap-stack-gap r, }	over 2 years ago	Ubuntu Gutsy 7.10 beta, Youtube, VLC MP3 Player, FoxyProxy	104	cdine	Edit	History
ubuntu-gutsy	/usr/lib/postgresql/8.3/bin/postgres	#include <tunables/global> /usr/lib/postgresql/8.3/bin/postgres { #include <abstractions/base> #include <abstractions/nameservice> /etc/postgresql-common/* r, /etc/postgresql/ r, /etc/ssl/ r, /usr/lib/** mr, /usr/shar/share/zoneinfo/ r, /usr/share/postgresql/8.3/timezonesets/* r, /usr/share/zoneinfo/ r, /var/lib/postgresql/8.3/main/** lrw, /var/run/postgresql/* w, }	9 months ago		73	stive	Edit	History
ubuntu-gutsy	/usr/local/share/skype/skype	#include <tunables/global> /usr/local/share/skype/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /etc/fonts/ r, /etc/gai.conf r, /home// r, /home//.ICEauthority r, /home//.Skype/ rw, /home//.Skype/andrey.vihrov/call256.dbb krw, /home//.Skype/andrey.vihrov/callmember256.dbb krw, /home//.Skype/andrey.vihrov/chat1024.dbb krw, /home//.Skype/andrey.vihrov/chat256.dbb w, /home//.Skype/andrey.vihrov/chat512.dbb krw, /home//.Skype/andrey.vihrov/chat8192.dbb krw, /home//.Skype/andrey.vihrov/chatmember256.dbb krw, /home//.Skype/andrey.vihrov/chatmsg1024.dbb krw, /home//.Skype/andrey.vihrov/chatmsg16384.dbb krw, /home//.Skype/andrey.vihrov/chatmsg2048.dbb krw, /home//.Skype/andrey.vihrov/chatmsg256.dbb krw, /home//.Skype/andrey.vihrov/chatmsg32768.dbb krw, /home//.Skype/andrey.vihrov/chatmsg4096.dbb krw, /home//.Skype/andrey.vihrov/chatmsg512.dbb krw, /home//.Skype/andrey.vihrov/chatmsg8192.dbb krw, /home//.Skype/andrey.vihrov/chatsync/17/173cf32a4bca229d.dat krw, /home//.Skype/andrey.vihrov/chatsync/24/240db6d0720b3edb.dat krw, /home//.Skype/andrey.vihrov/chatsync/40/40429cb8ffde1463.dat krw, /home//.Skype/andrey.vihrov/chatsync/8f/8f951f2e99c19ab1.dat krw, /home//.Skype/andrey.vihrov/chatsync/90/9063a0f774e6429e.dat krw, /home//.Skype/andrey.vihrov/chatsync/ab/ab14842e682193b1.dat krw, /home//.Skype/andrey.vihrov/chatsync/da/dafbc83711f9c6de.dat krw, /home//.Skype/andrey.vihrov/chatsync/e5/e5b3db203a9a246b.dat krw, /home//.Skype/andrey.vihrov/chatsync/f2/f2951621245ff270.dat krw, /home//.Skype/andrey.vihrov/chatsync/f7/f70d307d25227a3c.dat krw, /home//.Skype/andrey.vihrov/config.lck kw, /home//.Skype/andrey.vihrov/config.tmp krw, /home//.Skype/andrey.vihrov/config.xml krw, /home//.Skype/andrey.vihrov/contactgroup256.dbb krw, /home//.Skype/andrey.vihrov/contactgroup512.dbb krw, /home//.Skype/andrey.vihrov/dyncontent/bundle.dat krw, /home//.Skype/andrey.vihrov/dyncontent/bundle.dat-journal w, /home//.Skype/andrey.vihrov/index2.dat krw, /home//.Skype/andrey.vihrov/profile16384.dbb krw, /home//.Skype/andrey.vihrov/transfer256.dbb krw, /home//.Skype/andrey.vihrov/transfer512.dbb krw, /home//.Skype/andrey.vihrov/user1024.dbb krw, /home//.Skype/andrey.vihrov/user16384.dbb krw, /home//.Skype/andrey.vihrov/user256.dbb krw, /home//.Skype/andrey.vihrov/user32768.dbb krw, /home//.Skype/andrey.vihrov/user4096.dbb krw, /home//.Skype/andrey.vihrov/voicemail256.dbb krw, /home//.Skype/shared.lck kw, /home//.Skype/shared.tmp krw, /home//.Skype/shared.xml krw, /home//.Xauthority r, /home//.fontconfig/ r, /home//.mozilla/firefox/* r, /proc//cmdline r, /proc/interrupts r, /tmp/.ICE-unix/5907 w, /tmp/.X11-unix/X0 w, /usr/local/lib32/libQtCore.so. mr, /usr/local/lib32/libQtDBus.so.* mr, /usr/local/lib32/libQtGui.so.* mr, /usr/local/lib32/libQtNetwork.so.* mr, /usr/local/lib32/libQtXml.so.* mr, /usr/local/lib32/libdbus-1.so.* mr, /usr/local/lib32/libsigc-2.0.so.* mr, /usr/local/share/skype/ r, /usr/local/share/skype/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/fonts/ r, /usr/share/icons/DMZ-White/ r, /var/cache/ r, /var/lib/** r, }	over 2 years ago		223	a-v	Edit	History
ubuntu-gutsy	/bin/dash	#include <tunables/global> /bin/dash { #include <abstractions/base> /bin/cat ixr, /bin/dash mr, /etc/apparmor.d/bin.check-foreground-console r, /etc/apparmor.d/bin.dash r, /etc/apparmor.d/bin.fusermount r, /etc/apparmor.d/bin.ping6 r, /etc/apparmor.d/bin.su r, /etc/apparmor.d/bin.umount r, /etc/apparmor.d/lib.dhcp3-client.call-dhclient-script r, /etc/apparmor.d/usr.bin.X r, /etc/apparmor.d/usr.bin.Xorg r, /etc/apparmor.d/usr.bin.albumshaper r, /etc/apparmor.d/usr.bin.aplay r, /etc/apparmor.d/usr.bin.aqualung r, /etc/apparmor.d/usr.bin.arping r, /etc/apparmor.d/usr.bin.at r, /etc/apparmor.d/usr.bin.audacious r, /etc/apparmor.d/usr.bin.avidemux r, /etc/apparmor.d/usr.bin.basename r, /etc/apparmor.d/usr.bin.bluetooth-applet r, /etc/apparmor.d/usr.bin.bug-buddy r, /etc/apparmor.d/usr.bin.cddb-slave2-properties r, /etc/apparmor.d/usr.bin.chage r, /etc/apparmor.d/usr.bin.chfn r, /etc/apparmor.d/usr.bin.chsh r, /etc/apparmor.d/usr.bin.crontab r, /etc/apparmor.d/usr.bin.dbus-daemon r, /etc/apparmor.d/usr.bin.devhelp r, /etc/apparmor.d/usr.bin.djview4 r, /etc/apparmor.d/usr.bin.dvdrip r, /etc/apparmor.d/usr.bin.evolution r, /etc/apparmor.d/usr.bin.expiry r, /etc/apparmor.d/usr.bin.fileshareset r, /etc/apparmor.d/usr.bin.fping r, /etc/apparmor.d/usr.bin.fping6 r, /etc/apparmor.d/usr.bin.fwbuilder r, /etc/apparmor.d/usr.bin.gconftool-2 r, /etc/apparmor.d/usr.bin.gfloppy r, /etc/apparmor.d/usr.bin.gimp-2.4 r, /etc/apparmor.d/usr.bin.gksu r, /etc/apparmor.d/usr.bin.gnome-about-me r, /etc/apparmor.d/usr.bin.gnome-at-properties r, /etc/apparmor.d/usr.bin.gnome-default-applications-properties r, /etc/apparmor.d/usr.bin.gnome-dictionary r, /etc/apparmor.d/usr.bin.gnome-keyboard-properties r, /etc/apparmor.d/usr.bin.gnome-panel r, /etc/apparmor.d/usr.bin.gnome-screensaver r, /etc/apparmor.d/usr.bin.gnome-screenshot r, /etc/apparmor.d/usr.bin.gnome-session r, /etc/apparmor.d/usr.bin.gnome-sound-properties r, /etc/apparmor.d/usr.bin.gnome-splashscreen-manager r, /etc/apparmor.d/usr.bin.gnome-system-log r, /etc/apparmor.d/usr.bin.gnome-volume-control r, /etc/apparmor.d/usr.bin.gnome-volume-manager r, /etc/apparmor.d/usr.bin.gnome-wm r, /etc/apparmor.d/usr.bin.gpasswd r, /etc/apparmor.d/usr.bin.gstm r, /etc/apparmor.d/usr.bin.gtkterm r, /etc/apparmor.d/usr.bin.gucharmap r, /etc/apparmor.d/usr.bin.kchmviewer r, /etc/apparmor.d/usr.bin.kdesud r, /etc/apparmor.d/usr.bin.kgrantpty r, /etc/apparmor.d/usr.bin.kpac_dhcp_helper r, /etc/apparmor.d/usr.bin.lppasswd r, /etc/apparmor.d/usr.bin.mcpp r, /etc/apparmor.d/usr.bin.meld r, /etc/apparmor.d/usr.bin.metacity r, /etc/apparmor.d/usr.bin.mkfontdir r, /etc/apparmor.d/usr.bin.mkfontscale r, /etc/apparmor.d/usr.bin.monodevelop r, /etc/apparmor.d/usr.bin.mtr r, /etc/apparmor.d/usr.bin.nautilus r, /etc/apparmor.d/usr.bin.nautilus-cd-burner r, /etc/apparmor.d/usr.bin.nessus r, /etc/apparmor.d/usr.bin.newgrp r, /etc/apparmor.d/usr.bin.ooffice r, /etc/apparmor.d/usr.bin.pterm r, /etc/apparmor.d/usr.bin.screen r, /etc/apparmor.d/usr.bin.serpentine r, /etc/apparmor.d/usr.bin.slocate r, /etc/apparmor.d/usr.bin.ssh-agent r, /etc/apparmor.d/usr.bin.start_kdeinit r, /etc/apparmor.d/usr.bin.streamtuner r, /etc/apparmor.d/usr.bin.sudo r, /etc/apparmor.d/usr.bin.system-config-printer r, /etc/apparmor.d/usr.bin.system-config-printer-applet r, /etc/apparmor.d/usr.bin.traceroute6.iputils r, /etc/apparmor.d/usr.bin.tracker-search-tool r, /etc/apparmor.d/usr.bin.tvtime r, /etc/apparmor.d/usr.bin.update-manager r, /etc/apparmor.d/usr.bin.v4l-conf r, /etc/apparmor.d/usr.bin.vino-session r, /etc/apparmor.d/usr.bin.wall r, /etc/apparmor.d/usr.bin.wavbreaker r, /etc/apparmor.d/usr.bin.webhttrack r, /etc/apparmor.d/usr.bin.xcdroast r, /etc/apparmor.d/usr.bin.xdpyinfo r, /etc/apparmor.d/usr.bin.xine r, /etc/apparmor.d/usr.bin.xkbcomp r, /etc/apparmor.d/usr.bin.xrdb r, /etc/apparmor.d/usr.bin.xsane r, /etc/apparmor.d/usr.bin.xterm r, /etc/apparmor.d/usr.games.banner r, /etc/apparmor.d/usr.games.gnibbles r, /etc/apparmor.d/usr.games.gnobots2 r, /etc/apparmor.d/usr.games.gnometris r, /etc/apparmor.d/usr.games.gnomine r, /etc/apparmor.d/usr.games.gnotravex r, /etc/apparmor.d/usr.games.gnotski r, /etc/apparmor.d/usr.games.gtali r, /etc/apparmor.d/usr.games.iagno r, /etc/apparmor.d/usr.games.mahjongg r, /etc/apparmor.d/usr.games.same-gnome r, /etc/apparmor.d/usr.lib.bonobo-activation.bonobo-activation-server r, /etc/apparmor.d/usr.lib.deskbar-applet.deskbar-applet r, /etc/apparmor.d/usr.lib.eject.dmcrypt-get-device r, /etc/apparmor.d/usr.lib.evolution.2.12.evolution-exchange-storage r, /etc/apparmor.d/usr.lib.evolution.camel-lock-helper-1.2 r, /etc/apparmor.d/usr.lib.evolution.evolution-data-server-1.12 r, /etc/apparmor.d/usr.lib.fast-user-switch-applet.fast-user-switch-applet r, /etc/apparmor.d/usr.lib.firefox.firefox r, /etc/apparmor.d/usr.lib.gnome-control-center.gnome-settings-daemon r, /etc/apparmor.d/usr.lib.gnome-vfs-2.0.gnome-vfs-daemon r, /etc/apparmor.d/usr.lib.j2se.1.4.jre.javaws.javaws r, /etc/apparmor.d/usr.lib.jvm.java-1.5.0-sun-1.5.0.13.jre.bin.javaws r, /etc/apparmor.d/usr.lib.jvm.java-6-sun-1.6.0.03.jre.bin.java r, /etc/apparmor.d/usr.lib.libgconf2-4.gconf-sanity-check-2 r, /etc/apparmor.d/usr.lib.libgconf2-4.gconfd-2 r, /etc/apparmor.d/usr.lib.libvte9.gnome-pty-helper r, /etc/apparmor.d/usr.lib.nautilus-cd-burner.mapping-daemon r, /etc/apparmor.d/usr.lib.openssh.ssh-keysign r, /etc/apparmor.d/usr.lib.pt_chown r, /etc/apparmor.d/usr.lib.xcdroast.bin.xcdrwrap r, /etc/apparmor.d/usr.sbin.cupsd r, /etc/apparmor.d/usr.sbin.pppd r, /sbin/apparmor_parser Px, /usr/bin/infocmp Px, /usr/bin/mcpp Px, /usr/bin/xkbcomp Px, }	over 2 years ago	gnome	119	hbpteam	Edit	History
ubuntu-gutsy	/etc/cron.daily/sysklogd	#include <tunables/global> /etc/cron.daily/sysklogd { #include <abstractions/base> #include <abstractions/perl> capability chown, capability dac_override, capability fowner, capability fsetid, capability kill, /bin/cat ixr, /bin/chgrp ixr, /bin/chmod ixr, /bin/chown ixr, /bin/dash ixr, /bin/date ixr, /bin/grep ixr, /bin/gzip ixr, /bin/ln ixr, /bin/mv ixr, /bin/ps ixr, /bin/readlink ixr, /bin/rm ixr, /bin/touch ixr, /bin/which ixr, /dev/tty r, /etc/cron.daily/sysklogd mr, /etc/default/syslogd r, /etc/group r, /etc/init.d/sysklogd ixr, /etc/lsb-base-logging.sh r, /etc/nsswitch.conf r, /etc/passwd r, /etc/syslog.conf r, /lib/lsb/init-functions r, /proc/ r, /proc//cmdline r, /proc//mounts r, /proc//stat r, /proc//status r, /proc/filesystems r, /proc/uptime r, /proc/version r, /sbin/start-stop-daemon ixr, /usr/bin/basename ixr, /usr/bin/dirname ixr, /usr/bin/head ixr, /usr/bin/perl ix, /usr/bin/savelog ixr, /usr/bin/tput ixr, /usr/bin/tr ixr, /usr/sbin/syslogd-listfiles ixr, /var/log/* lrw, /var/run/syslogd.pid r, }	9 months ago		31	stive	Edit	History
ubuntu-gutsy	/usr/bin/mkfontscale	#include <tunables/global> /usr/bin/mkfontscale { #include <abstractions/base> /home//.gnome2/share/ r, /home//.gnome2/share/cursor-fonts/ r, /home//.gnome2/share/cursor-fonts/.dir rw, /home//.gnome2/share/fonts/ r, /home/void/.gnome2/share/fonts/* rw, /usr/bin/mkfontscale mr, }	over 2 years ago	gnome	110	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/evince	#include <tunables/global> /usr/bin/evince { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /bin/dash ixr, /etc/esound/esd.conf r, /etc/sound/events/.soundlist r, /home//* rw, /home//.gnome2/accels/evince rw, /home//.gnome2/evince/ev-metadata.xml rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.icons/OSX_Cursors_v0.2/cursors/ r, /home//Desktop/.pdf r, /proc//mounts r, /proc/meminfo r, /usr/bin/evince mr, /usr/local/share/icons/ r, /usr/share/evince/.glade r, /usr/share/evince/evince-toolbar.xml r, /usr/share/evince/evince-ui.xml r, /usr/share/evince/icons/ r, /usr/share/evince/icons/hicolor/**/ r, }	over 2 years ago	gnome	69	hbpteam	Edit	History
ubuntu-gutsy	/sbin/syslog-ng	# $Id$ # ------------------------------------------------------------------ # # Copyright (C) 2006 Novell/SUSE # Copyright (C) 2006 Christian Boltz # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /sbin/syslog-ng { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> capability chown, capability dac_override, capability fowner, capability fsetid, capability sys_admin, /dev/log w, /dev/tty10 rw, /dev/xconsole rw, /etc/syslog-ng/* r, /sbin/syslog-ng mr, /var/lib//dev/log w, /var/log/* w, /var/run/syslog-ng.pid w, @{PROC}/kmsg r, }	9 months ago		47	stive	Edit	History
ubuntu-gutsy	/usr/bin/system-config-printer-applet	#include <tunables/global> /usr/bin/system-config-printer-applet { #include <abstractions/base> /bin/dash ix, /usr/bin/system-config-printer-applet mr, }	over 2 years ago	gnome	87	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/anvil	# $Id: usr.lib.postfix.anvil 697 2007-05-25 03:09:30Z steve-beattie $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/anvil { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /etc/mailname r, /etc/postfix/main.cf r, /usr/lib/postfix/anvil rmix, /{var/spool/postfix/,}pid/unix.anvil rw, /{var/spool/postfix/,}private/anvil rw, @{PROC}/net/if_inet6 r, }	9 months ago		71	stive	Edit	History
ubuntu-gutsy	/usr/bin/aqualung	#include <tunables/global> /usr/bin/aqualung { #include <abstractions/base> /usr/bin/aqualung mr, }	over 2 years ago	gnome	92	hbpteam	Edit	History
ubuntu-gutsy	/etc/cron.daily/bsdmainutils	#include <tunables/global> /etc/cron.daily/bsdmainutils { #include <abstractions/base> /bin/dash ixr, /etc/cron.daily/bsdmainutils mr, }	9 months ago		38	stive	Edit	History
ubuntu-gutsy	/usr/bin/dvd95	#include <tunables/global> /usr/bin/dvd95 { #include <abstractions/base> /usr/bin/dvd95 mr, }	over 2 years ago	gnome	69	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/named	#include <tunables/global> /usr/sbin/named { #include <abstractions/base> #include <abstractions/nameservice> capability net_bind_service, capability setgid, capability setuid, capability sys_chroot, capability sys_resource, /proc/net/if_inet6 r, /usr/sbin/named mr, /var/named/run-root/dev/random r, /var/named/run-root/dev/urandom r, /var/named/run-root/etc/bind/ r, /var/named/run-root/etc/localtime r, /var/named/run-root/etc/named.conf r, /var/named/run-root/var/139.25.85.in-addr.arpa r, /var/named/run-root/var/cache/bind/ rw, /var/named/run-root/var/cache/bind/ rw, /var/named/run-root/var/dev/ r, /var/named/run-root/var/harfe-karlsruhe.de r, /var/named/run-root/var/lib/bind/ rw, /var/named/run-root/var/lib/bind/ rw, /var/named/run-root/var/lib/dnscvsutil/compiled/ rw, /var/named/run-root/var/localhost.rev r, /var/named/run-root/var/log/named/ rw, /var/named/run-root/var/named.root r, /var/named/run-root/var/run/bind/named.options r, /var/named/run-root/var/run/bind/run/named.pid w, /var/named/run-root/var/run/named/named.pid w, /var/named/run-root/var/studebo.com r, /var/named/run-root/var/studebo.de r, /var/named/run-root/var/studebo.net r, }	8 months ago	named	63	jmfrank63	Edit	History
ubuntu-gutsy	/usr/lib/postfix/showq	# $Id: usr.lib.postfix.showq 741 2007-06-11 22:55:56Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/showq { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/showq rmix, /{var/spool/postfix/,}active/ r, /{var/spool/postfix/,}active/[0-9A-F]/ r, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}active/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}defer/ r, /{var/spool/postfix/,}defer/[0-9A-F]/ r, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}defer/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}deferred/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}deferred/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}hold/ r, /{var/spool/postfix/,}hold/[0-9A-F]/ r, /{var/spool/postfix/,}hold/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}hold/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}incoming/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/ r, /{var/spool/postfix/,}incoming/[0-9A-F]/[0-9A-F]/* r, /{var/spool/postfix/,}maildrop/ r, /{var/spool/postfix/,}maildrop/[0-9A-F]/ r, /{var/spool/postfix/,}pid/unix.showq rw, }	9 months ago		36	stive	Edit	History
ubuntu-gutsy	/usr/bin/skype	#include <tunables/global> /usr/bin/skype flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> /dev/snd/controlC0 rw, /dev/snd/controlC1 rw, /dev/snd/pcmC0D0c rw, /dev/snd/pcmC0D0p rw, /dev/snd/pcmC0D1c rw, /dev/snd/pcmC0D2p rw, /dev/snd/timer r, /etc/fonts/** r, /home//.Skype/ rw, /home//.Skype/** krw, /home//.config/Trolltech.conf kr, /proc/interrupts r, /tmp/.X11-unix/X0 w, /usr/bin/skype mr, /usr/share/X11/XKeysymDB r, /usr/share/fonts/* r, /usr/share/icons/DMZ-White/cursor.theme r, /usr/share/icons/DMZ-White/cursors/arrow r, /usr/share/icons/DMZ-White/cursors/double_arrow r, /usr/share/icons/DMZ-White/cursors/xterm r, /usr/share/icons/DMZ-White/index.theme r, /usr/share/icons/Human/index.theme r, /usr/share/icons/Tangerine/index.theme r, /usr/share/icons/gnome/index.theme r, /usr/share/skype/** r, /var/cache/fontconfig/059138ec877db160474b4d5de1248d14-x86.cache-2 r, /var/cache/fontconfig/089dead882dea3570ffc31a9898cfb69-x86.cache-2 r, /var/cache/fontconfig/0f32d3adc6a232110812e17374eaa446-x86.cache-2 r, /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2 r, /var/cache/fontconfig/102e5142c2e9e50c5e8ece26694a2dad-x86.cache-2 r, /var/cache/fontconfig/118d8d5311348bbdf5fe3b106d7c13d4-x86.cache-2 r, /var/cache/fontconfig/142ecfc435bad6f1fbc2648c1119d5eb-x86.cache-2 r, /var/cache/fontconfig/20bd79ad97094406f7d1b9654bfbd926-x86.cache-2 r, /var/cache/fontconfig/21a99156bb11811cef641abeda519a45-x86.cache-2 r, /var/cache/fontconfig/2561679576a9c7fd2ce41d281d4e00d1-x86.cache-2 r, /var/cache/fontconfig/3830d5c3ddfd5cd38a049b759396e72e-x86.cache-2 r, /var/cache/fontconfig/4123634e9c08547d899d0aaff05ebe69-x86.cache-2 r, /var/cache/fontconfig/4794a0821666d79190d59a36cb4f44b5-x86.cache-2 r, /var/cache/fontconfig/4c599c202bc5c08e2d34565a40eac3b2-x86.cache-2 r, /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2 r, /var/cache/fontconfig/61c830dfac3fd78a12654da5e9ba3f56-x86.cache-2 r, /var/cache/fontconfig/6330322105e0c4105d7c7a6ea2974107-x86.cache-2 r, /var/cache/fontconfig/6333f38776742d18e214673cd2c24e34-x86.cache-2 r, /var/cache/fontconfig/6386b86020ecc1ef9690bb720a13964f-x86.cache-2 r, /var/cache/fontconfig/646addb8444faa74ee138aa00ab0b6a0-x86.cache-2 r, /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2 r, /var/cache/fontconfig/707971e003b4ae6c8121c3a920e507f5-x86.cache-2 r, /var/cache/fontconfig/75a2cd575a62c63e802c11411fb87c37-x86.cache-2 r, /var/cache/fontconfig/7b4a97c10f6c0166998ddfa1cf7392fb-x86.cache-2 r, /var/cache/fontconfig/7ef2298fde41cc6eeb7af42e48b7d293-x86.cache-2 r, /var/cache/fontconfig/8ab5f685cd6d8ba67c37c908faf08172-x86.cache-2 r, /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2 r, /var/cache/fontconfig/92a571655fb1c0ec1c4d6f496220600a-x86.cache-2 r, /var/cache/fontconfig/9404ff413c67fc2a1526fd14eb4163a8-x86.cache-2 r, /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2 r, /var/cache/fontconfig/9c0624108b9a2ae8552f664125be8356-x86.cache-2 r, /var/cache/fontconfig/a1131b7be650f9abae4907495aa5815d-x86.cache-2 r, /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86.cache-2 r, /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2 r, /var/cache/fontconfig/a960c40fc9306f090224a04585f8a963-x86.cache-2 r, /var/cache/fontconfig/b21a91cee725896328b8cee8091cf747-x86.cache-2 r, /var/cache/fontconfig/b3fedf7c409f006ca1a6fceffceb77cf-x86.cache-2 r, /var/cache/fontconfig/b5a4f3f568a71026ccdc6a3a51afa9b4-x86.cache-2 r, /var/cache/fontconfig/b8613a33de00eecd32d5a94c3c617829-x86.cache-2 r, /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2 r, /var/cache/fontconfig/c855463f699352c367813e37f3f70ea7-x86.cache-2 r, /var/cache/fontconfig/cabbd14511b9e8a55e92af97fb3a0461-x86.cache-2 r, /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2 r, /var/cache/fontconfig/d82eb4fd963d448e2fcb7d7b793b5df3-x86.cache-2 r, /var/cache/fontconfig/da1bd5ca8443ffe22927a23ce431d198-x86.cache-2 r, /var/cache/fontconfig/ddc79d3ea06a7c6ffa86ede85f3bb5df-x86.cache-2 r, /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2 r, /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2 r, /var/cache/fontconfig/e0f9e95429e756d56293ed4d63866094-x86.cache-2 r, /var/cache/fontconfig/e13b20fdb08344e0e664864cc2ede53d-x86.cache-2 r, /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2 r, /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2 r, /var/cache/fontconfig/e7071f4a29fa870f4323321c154eba04-x86.cache-2 r, /var/cache/fontconfig/e9e44584608a73233979f764b5f9dd81-x86.cache-2 r, /var/cache/fontconfig/eeebfc908bd29a90773fd860017aada4-x86.cache-2 r, /var/cache/fontconfig/f5a93ac943883aa0fd9a7bfe0f6ec3c1-x86.cache-2 r, /var/cache/fontconfig/f71c1c7b3f795e5e20ad4a8800a9d397-x86.cache-2 r, /var/cache/fontconfig/fcff1cd55d48a2c86a175e9943c3506d-x86.cache-2 r, /var/cache/fontconfig/fd9416c4b92f07c6f59a3a8cf496e9dc-x86.cache-2 r, /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86.cache-2 r, /var/cache/fontconfig/fe547fea3a41b43a38975d292a2b19c7-x86.cache-2 r, /var/lib/defoma/fontconfig.d/fonts.conf r, }	over 2 years ago	0.1	167	tommes	Edit	History
ubuntu-gutsy	/usr/sbin/amavisd-new	#include <tunables/global> /usr/sbin/amavisd-new { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/perl> #include <abstractions/python> capability chown, capability dac_override, capability setgid, capability setuid, capability sys_tty_config, /bin/dash ixr, /bin/hostname Pxmr, /bin/run-parts ixr, /etc/amavis/** r, /etc/dspam/default.prefs r, /etc/dspam/dspam.conf r, /etc/dspam/dspam.d/ r, /etc/magic r, /etc/mailname r, /etc/razor/razor-agent.conf r, /etc/shadow r, /etc/spamassassin/ r, /etc/spamassassin/* r, /proc/meminfo r, /usr/bin/arj ixr, /usr/bin/dspam Pxmr, /usr/bin/file ixr, /usr/bin/head ixr, /usr/bin/perl ix, /usr/bin/python2.5 ixr, /usr/bin/pyzor ixr, /usr/bin/ripole Pxmr, /usr/lib/** mr, /usr/sbin/amavisd-new mr, /usr/share/amavis// r, /usr/share/amavis/conf.d/ r, /usr/share/file/magic.mgc r, /usr/share/spamassassin/ r, /usr/share/spamassassin/* r, /var/lib/amavis// rw, /var/lib/amavis/.pyzor/servers rw, /var/lib/amavis/.spamassassin/ lrw, /var/lib/amavis/amavisd.sock w, /var/lib/amavis/db/ rw, /var/lib/amavis/tmp/ lrw, /var/lib/amavis/virusmails/ w, /var/lib/spamassassin/ r, /var/run/amavis/amavisd.lock kw, /var/run/amavis/amavisd.pid w, /var/run/clamav/clamd.ctl w, }	9 months ago	some perl abs	39	stive	Edit	History
ubuntu-gutsy	/usr/lib/notification-daemon/notification-daemon	#include <tunables/global> /usr/lib/notification-daemon/notification-daemon flags=(complain) { #include <abstractions/base> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/kde> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home//.Xauthority r, /home//.icons/ r, /proc/meminfo r, /usr/lib/** mr, /usr/local/share/icons/ r, }	over 2 years ago	gnome	140	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-resolver	#include <tunables/global> /usr/sbin/jabberd2-resolver flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-resolver mr, }	about 1 year ago		74	igoriii	Edit	History
ubuntu-gutsy	/usr/bin/evolution	#include <tunables/global> /usr/bin/evolution { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/fonts> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/sound/events/gtk-events-2.soundlist r, /home//.ICEauthority r, /home//.Xauthority r, /home//.evolution/ r, /home//.evolution/.db r, /home//.evolution/camel-cert.db rw, /home//.evolution/camel-cert.db~ rw, /home//.evolution/cert8.db rw, /home//.evolution/key3.db rw, /home//.evolution/mail/.xml rw, /home//.evolution/mail/config/* rw, /home//.evolution/mail/local/ krw, /home//.evolution/mail/local/.lock lw, /home//.evolution/mail/pop/* rw, /home//.gnome2_private/ w, /home//.gnome2_private/Evolution r, /home//.icons/ r, /proc//mounts r, /proc/meminfo r, /tmp/orbit-void/bonobo-activation-register.lock klrw, /usr/bin/evolution mr, /usr/local/share/icons/ r, /usr/share/evolution/2.12/.xml r, /usr/share/evolution/2.12/etspec/message-list.etspec r, /usr/share/evolution/2.12/images/.png r, /usr/share/evolution/2.12/ui/.xml r, /usr/share/evolution/2.12/views/mail/.galview r, /usr/share/evolution/2.12/views/mail/.xml r, /usr/share/gtkhtml-3.14/.emacs r, }	over 2 years ago	gnome	107	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/enforce	#include <tunables/global> /usr/sbin/enforce flags=(complain) { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/perl> /bin/cat ixr, /bin/dash Pxmr, /etc/apparmor.d/ r, /etc/apparmor.d/abstractions/base r, /etc/apparmor.d/bin.check-foreground-console rw, /etc/apparmor.d/bin.check-foreground-console.new rw, /etc/apparmor.d/bin.dash rw, /etc/apparmor.d/bin.dash.new rw, /etc/apparmor.d/bin.fusermount rw, /etc/apparmor.d/bin.fusermount.new rw, /etc/apparmor.d/bin.ping6 rw, /etc/apparmor.d/bin.ping6.new rw, /etc/apparmor.d/bin.su rw, /etc/apparmor.d/bin.su.new rw, /etc/apparmor.d/bin.umount rw, /etc/apparmor.d/bin.umount.new rw, /etc/apparmor.d/lib.dhcp3-client.call-dhclient-script rw, /etc/apparmor.d/lib.dhcp3-client.call-dhclient-script.new rw, /etc/apparmor.d/tunables/global r, /etc/apparmor.d/tunables/home r, /etc/apparmor.d/tunables/proc r, /etc/apparmor.d/usr.bin.X rw, /etc/apparmor.d/usr.bin.X.new rw, /etc/apparmor.d/usr.bin.Xorg rw, /etc/apparmor.d/usr.bin.Xorg.new rw, /etc/apparmor.d/usr.bin.albumshaper rw, /etc/apparmor.d/usr.bin.albumshaper.new rw, /etc/apparmor.d/usr.bin.aplay rw, /etc/apparmor.d/usr.bin.aplay.new rw, /etc/apparmor.d/usr.bin.aqualung rw, /etc/apparmor.d/usr.bin.aqualung.new rw, /etc/apparmor.d/usr.bin.arping rw, /etc/apparmor.d/usr.bin.arping.new rw, /etc/apparmor.d/usr.bin.at rw, /etc/apparmor.d/usr.bin.at.new rw, /etc/apparmor.d/usr.bin.audacious rw, /etc/apparmor.d/usr.bin.audacious.new rw, /etc/apparmor.d/usr.bin.avidemux rw, /etc/apparmor.d/usr.bin.avidemux.new rw, /etc/apparmor.d/usr.bin.basename rw, /etc/apparmor.d/usr.bin.basename.new rw, /etc/apparmor.d/usr.bin.bluetooth-applet rw, /etc/apparmor.d/usr.bin.bluetooth-applet.new rw, /etc/apparmor.d/usr.bin.bug-buddy rw, /etc/apparmor.d/usr.bin.bug-buddy.new rw, /etc/apparmor.d/usr.bin.cddb-slave2-properties rw, /etc/apparmor.d/usr.bin.cddb-slave2-properties.new rw, /etc/apparmor.d/usr.bin.chage rw, /etc/apparmor.d/usr.bin.chage.new rw, /etc/apparmor.d/usr.bin.chfn rw, /etc/apparmor.d/usr.bin.chfn.new rw, /etc/apparmor.d/usr.bin.chsh rw, /etc/apparmor.d/usr.bin.chsh.new rw, /etc/apparmor.d/usr.bin.crontab rw, /etc/apparmor.d/usr.bin.crontab.new rw, /etc/apparmor.d/usr.bin.dbus-daemon rw, /etc/apparmor.d/usr.bin.dbus-daemon.new rw, /etc/apparmor.d/usr.bin.devhelp rw, /etc/apparmor.d/usr.bin.devhelp.new rw, /etc/apparmor.d/usr.bin.djview4 rw, /etc/apparmor.d/usr.bin.djview4.new rw, /etc/apparmor.d/usr.bin.dvd95 rw, /etc/apparmor.d/usr.bin.dvd95.new rw, /etc/apparmor.d/usr.bin.dvdrip rw, /etc/apparmor.d/usr.bin.dvdrip.new rw, /etc/apparmor.d/usr.bin.evolution rw, /etc/apparmor.d/usr.bin.evolution.new rw, /etc/apparmor.d/usr.bin.expiry rw, /etc/apparmor.d/usr.bin.expiry.new rw, /etc/apparmor.d/usr.bin.fileshareset rw, /etc/apparmor.d/usr.bin.fileshareset.new rw, /etc/apparmor.d/usr.bin.fping rw, /etc/apparmor.d/usr.bin.fping.new rw, /etc/apparmor.d/usr.bin.fping6 rw, /etc/apparmor.d/usr.bin.fping6.new rw, /etc/apparmor.d/usr.bin.fwbuilder rw, /etc/apparmor.d/usr.bin.fwbuilder.new rw, /etc/apparmor.d/usr.bin.gconftool-2 rw, /etc/apparmor.d/usr.bin.gconftool-2.new rw, /etc/apparmor.d/usr.bin.gfloppy rw, /etc/apparmor.d/usr.bin.gfloppy.new rw, /etc/apparmor.d/usr.bin.gimp-2.4 rw, /etc/apparmor.d/usr.bin.gimp-2.4.new rw, /etc/apparmor.d/usr.bin.gksu rw, /etc/apparmor.d/usr.bin.gksu.new rw, /etc/apparmor.d/usr.bin.gnome-about-me rw, /etc/apparmor.d/usr.bin.gnome-about-me.new rw, /etc/apparmor.d/usr.bin.gnome-at-properties rw, /etc/apparmor.d/usr.bin.gnome-at-properties.new rw, /etc/apparmor.d/usr.bin.gnome-default-applications-properties rw, /etc/apparmor.d/usr.bin.gnome-default-applications-properties.new rw, /etc/apparmor.d/usr.bin.gnome-dictionary rw, /etc/apparmor.d/usr.bin.gnome-dictionary.new rw, /etc/apparmor.d/usr.bin.gnome-keyboard-properties rw, /etc/apparmor.d/usr.bin.gnome-keyboard-properties.new rw, /etc/apparmor.d/usr.bin.gnome-panel rw, /etc/apparmor.d/usr.bin.gnome-panel.new rw, /etc/apparmor.d/usr.bin.gnome-screensaver rw, /etc/apparmor.d/usr.bin.gnome-screensaver.new rw, /etc/apparmor.d/usr.bin.gnome-screenshot rw, /etc/apparmor.d/usr.bin.gnome-screenshot.new rw, /etc/apparmor.d/usr.bin.gnome-session rw, /etc/apparmor.d/usr.bin.gnome-session.new rw, /etc/apparmor.d/usr.bin.gnome-sound-properties rw, /etc/apparmor.d/usr.bin.gnome-sound-properties.new rw, /etc/apparmor.d/usr.bin.gnome-splashscreen-manager rw, /etc/apparmor.d/usr.bin.gnome-splashscreen-manager.new rw, /etc/apparmor.d/usr.bin.gnome-system-log rw, /etc/apparmor.d/usr.bin.gnome-system-log.new rw, /etc/apparmor.d/usr.bin.gnome-volume-control rw, /etc/apparmor.d/usr.bin.gnome-volume-control.new rw, /etc/apparmor.d/usr.bin.gnome-volume-manager rw, /etc/apparmor.d/usr.bin.gnome-volume-manager.new rw, /etc/apparmor.d/usr.bin.gnome-wm rw, /etc/apparmor.d/usr.bin.gnome-wm.new rw, /etc/apparmor.d/usr.bin.gpasswd rw, /etc/apparmor.d/usr.bin.gpasswd.new rw, /etc/apparmor.d/usr.bin.gstm rw, /etc/apparmor.d/usr.bin.gstm.new rw, /etc/apparmor.d/usr.bin.gtkterm rw, /etc/apparmor.d/usr.bin.gtkterm.new rw, /etc/apparmor.d/usr.bin.gucharmap rw, /etc/apparmor.d/usr.bin.gucharmap.new rw, /etc/apparmor.d/usr.bin.kchmviewer rw, /etc/apparmor.d/usr.bin.kchmviewer.new rw, /etc/apparmor.d/usr.bin.kdesud rw, /etc/apparmor.d/usr.bin.kdesud.new rw, /etc/apparmor.d/usr.bin.kgrantpty rw, /etc/apparmor.d/usr.bin.kgrantpty.new rw, /etc/apparmor.d/usr.bin.kpac_dhcp_helper rw, /etc/apparmor.d/usr.bin.kpac_dhcp_helper.new rw, /etc/apparmor.d/usr.bin.lppasswd rw, /etc/apparmor.d/usr.bin.lppasswd.new rw, /etc/apparmor.d/usr.bin.mcpp rw, /etc/apparmor.d/usr.bin.mcpp.new rw, /etc/apparmor.d/usr.bin.meld rw, /etc/apparmor.d/usr.bin.meld.new rw, /etc/apparmor.d/usr.bin.metacity rw, /etc/apparmor.d/usr.bin.metacity.new rw, /etc/apparmor.d/usr.bin.mkfontdir rw, /etc/apparmor.d/usr.bin.mkfontdir.new rw, /etc/apparmor.d/usr.bin.mkfontscale rw, /etc/apparmor.d/usr.bin.mkfontscale.new rw, /etc/apparmor.d/usr.bin.monodevelop rw, /etc/apparmor.d/usr.bin.monodevelop.new rw, /etc/apparmor.d/usr.bin.mtr rw, /etc/apparmor.d/usr.bin.mtr.new rw, /etc/apparmor.d/usr.bin.nautilus rw, /etc/apparmor.d/usr.bin.nautilus-cd-burner rw, /etc/apparmor.d/usr.bin.nautilus-cd-burner.new rw, /etc/apparmor.d/usr.bin.nautilus.new rw, /etc/apparmor.d/usr.bin.nessus rw, /etc/apparmor.d/usr.bin.nessus.new rw, /etc/apparmor.d/usr.bin.newgrp rw, /etc/apparmor.d/usr.bin.newgrp.new rw, /etc/apparmor.d/usr.bin.ooffice rw, /etc/apparmor.d/usr.bin.ooffice.new rw, /etc/apparmor.d/usr.bin.oofromtemplate rw, /etc/apparmor.d/usr.bin.oofromtemplate.new rw, /etc/apparmor.d/usr.bin.pterm rw, /etc/apparmor.d/usr.bin.pterm.new rw, /etc/apparmor.d/usr.bin.screen rw, /etc/apparmor.d/usr.bin.screen.new rw, /etc/apparmor.d/usr.bin.serpentine rw, /etc/apparmor.d/usr.bin.serpentine.new rw, /etc/apparmor.d/usr.bin.slocate rw, /etc/apparmor.d/usr.bin.slocate.new rw, /etc/apparmor.d/usr.bin.soundconverter rw, /etc/apparmor.d/usr.bin.soundconverter.new rw, /etc/apparmor.d/usr.bin.ssh-agent rw, /etc/apparmor.d/usr.bin.ssh-agent.new rw, /etc/apparmor.d/usr.bin.start_kdeinit rw, /etc/apparmor.d/usr.bin.start_kdeinit.new rw, /etc/apparmor.d/usr.bin.streamtuner rw, /etc/apparmor.d/usr.bin.streamtuner.new rw, /etc/apparmor.d/usr.bin.sudo rw, /etc/apparmor.d/usr.bin.sudo.new rw, /etc/apparmor.d/usr.bin.sudoedit rw, /etc/apparmor.d/usr.bin.sudoedit.new rw, /etc/apparmor.d/usr.bin.system-config-printer rw, /etc/apparmor.d/usr.bin.system-config-printer-applet rw, /etc/apparmor.d/usr.bin.system-config-printer-applet.new rw, /etc/apparmor.d/usr.bin.system-config-printer.new rw, /etc/apparmor.d/usr.bin.traceroute6.iputils rw, /etc/apparmor.d/usr.bin.traceroute6.iputils.new rw, /etc/apparmor.d/usr.bin.tracker-search-tool rw, /etc/apparmor.d/usr.bin.tracker-search-tool.new rw, /etc/apparmor.d/usr.bin.ttb rw, /etc/apparmor.d/usr.bin.ttb.new rw, /etc/apparmor.d/usr.bin.tvtime rw, /etc/apparmor.d/usr.bin.tvtime.new rw, /etc/apparmor.d/usr.bin.update-manager rw, /etc/apparmor.d/usr.bin.update-manager.new rw, /etc/apparmor.d/usr.bin.v4l-conf rw, /etc/apparmor.d/usr.bin.v4l-conf.new rw, /etc/apparmor.d/usr.bin.vino-session rw, /etc/apparmor.d/usr.bin.vino-session.new rw, /etc/apparmor.d/usr.bin.wall rw, /etc/apparmor.d/usr.bin.wall.new rw, /etc/apparmor.d/usr.bin.wavbreaker rw, /etc/apparmor.d/usr.bin.wavbreaker.new rw, /etc/apparmor.d/usr.bin.webhttrack rw, /etc/apparmor.d/usr.bin.webhttrack.new rw, /etc/apparmor.d/usr.bin.xcdroast rw, /etc/apparmor.d/usr.bin.xcdroast.new rw, /etc/apparmor.d/usr.bin.xdpyinfo rw, /etc/apparmor.d/usr.bin.xdpyinfo.new rw, /etc/apparmor.d/usr.bin.xine rw, /etc/apparmor.d/usr.bin.xine.new rw, /etc/apparmor.d/usr.bin.xkbcomp rw, /etc/apparmor.d/usr.bin.xkbcomp.new rw, /etc/apparmor.d/usr.bin.xrdb rw, /etc/apparmor.d/usr.bin.xrdb.new rw, /etc/apparmor.d/usr.bin.xsane rw, /etc/apparmor.d/usr.bin.xsane.new rw, /etc/apparmor.d/usr.bin.xterm rw, /etc/apparmor.d/usr.bin.xterm.new rw, /etc/apparmor.d/usr.games.banner rw, /etc/apparmor.d/usr.games.banner.new rw, /etc/apparmor.d/usr.games.glines rw, /etc/apparmor.d/usr.games.glines.new rw, /etc/apparmor.d/usr.games.gnibbles rw, /etc/apparmor.d/usr.games.gnibbles.new rw, /etc/apparmor.d/usr.games.gnobots2 rw, /etc/apparmor.d/usr.games.gnobots2.new rw, /etc/apparmor.d/usr.games.gnometris rw, /etc/apparmor.d/usr.games.gnometris.new rw, /etc/apparmor.d/usr.games.gnomine rw, /etc/apparmor.d/usr.games.gnomine.new rw, /etc/apparmor.d/usr.games.gnotravex rw, /etc/apparmor.d/usr.games.gnotravex.new rw, /etc/apparmor.d/usr.games.gnotski rw, /etc/apparmor.d/usr.games.gnotski.new rw, /etc/apparmor.d/usr.games.gtali rw, /etc/apparmor.d/usr.games.gtali.new rw, /etc/apparmor.d/usr.games.iagno rw, /etc/apparmor.d/usr.games.iagno.new rw, /etc/apparmor.d/usr.games.mahjongg rw, /etc/apparmor.d/usr.games.mahjongg.new rw, /etc/apparmor.d/usr.games.same-gnome rw, /etc/apparmor.d/usr.games.same-gnome.new rw, /etc/apparmor.d/usr.lib.bonobo-activation.bonobo-activation-server rw, /etc/apparmor.d/usr.lib.bonobo-activation.bonobo-activation-server.new rw, /etc/apparmor.d/usr.lib.deskbar-applet.deskbar-applet rw, /etc/apparmor.d/usr.lib.deskbar-applet.deskbar-applet.new rw, /etc/apparmor.d/usr.lib.eject.dmcrypt-get-device rw, /etc/apparmor.d/usr.lib.eject.dmcrypt-get-device.new rw, /etc/apparmor.d/usr.lib.evolution.2.12.evolution-exchange-storage rw, /etc/apparmor.d/usr.lib.evolution.2.12.evolution-exchange-storage.new rw, /etc/apparmor.d/usr.lib.evolution.camel-lock-helper-1.2 rw, /etc/apparmor.d/usr.lib.evolution.camel-lock-helper-1.2.new rw, /etc/apparmor.d/usr.lib.evolution.evolution-data-server-1.12 rw, /etc/apparmor.d/usr.lib.evolution.evolution-data-server-1.12.new rw, /etc/apparmor.d/usr.lib.fast-user-switch-applet.fast-user-switch-applet rw, /etc/apparmor.d/usr.lib.fast-user-switch-applet.fast-user-switch-applet.new rw, /etc/apparmor.d/usr.lib.firefox.firefox rw, /etc/apparmor.d/usr.lib.firefox.firefox.new rw, /etc/apparmor.d/usr.lib.gnome-control-center.gnome-settings-daemon rw, /etc/apparmor.d/usr.lib.gnome-control-center.gnome-settings-daemon.new rw, /etc/apparmor.d/usr.lib.gnome-vfs-2.0.gnome-vfs-daemon rw, /etc/apparmor.d/usr.lib.gnome-vfs-2.0.gnome-vfs-daemon.new rw, /etc/apparmor.d/usr.lib.j2se.1.4.jre.javaws.javaws rw, /etc/apparmor.d/usr.lib.j2se.1.4.jre.javaws.javaws.new rw, /etc/apparmor.d/usr.lib.jvm.java-1.5.0-sun-1.5.0.13.jre.bin.javaws rw, /etc/apparmor.d/usr.lib.jvm.java-1.5.0-sun-1.5.0.13.jre.bin.javaws.new rw, /etc/apparmor.d/usr.lib.jvm.java-6-sun-1.6.0.03.jre.bin.java rw, /etc/apparmor.d/usr.lib.jvm.java-6-sun-1.6.0.03.jre.bin.java.new rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconf-sanity-check-2 rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconf-sanity-check-2.new rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconfd-2 rw, /etc/apparmor.d/usr.lib.libgconf2-4.gconfd-2.new rw, /etc/apparmor.d/usr.lib.libvte9.gnome-pty-helper rw, /etc/apparmor.d/usr.lib.libvte9.gnome-pty-helper.new rw, /etc/apparmor.d/usr.lib.nautilus-cd-burner.mapping-daemon rw, /etc/apparmor.d/usr.lib.nautilus-cd-burner.mapping-daemon.new rw, /etc/apparmor.d/usr.lib.openssh.ssh-keysign rw, /etc/apparmor.d/usr.lib.openssh.ssh-keysign.new rw, /etc/apparmor.d/usr.lib.pt_chown rw, /etc/apparmor.d/usr.lib.pt_chown.new rw, /etc/apparmor.d/usr.lib.xcdroast.bin.xcdrwrap rw, /etc/apparmor.d/usr.lib.xcdroast.bin.xcdrwrap.new rw, /etc/apparmor.d/usr.sbin.cupsd rw, /etc/apparmor.d/usr.sbin.cupsd.new rw, /etc/apparmor.d/usr.sbin.pppd rw, /etc/apparmor.d/usr.sbin.pppd.new rw, /etc/apparmor/logprof.conf r, /etc/apparmor/subdomain.conf r, /proc//mounts r, /proc/filesystems r, /sbin/apparmor_parser ixr, /sys/kernel/security/apparmor/.replace w, /sys/kernel/security/apparmor/matching r, /tmp/tmpfD939eM w, /tmp/tmpfGVKZg8 w, /tmp/tmpfOCghbY w, /tmp/tmpfY2SnUr w, /tmp/tmpfZKUKDs w, /tmp/tmpfw6yd6d w, /usr/bin/perl ix, /usr/lib/* mr, /usr/sbin/enforce mr, /usr/share/perl/5.8.8/AutoLoader.pm r, /usr/share/perl/5.8.8/Carp.pm r, /usr/share/perl/5.8.8/Exporter.pm r, /usr/share/perl/5.8.8/Exporter/Heavy.pm r, /usr/share/perl/5.8.8/File/Basename.pm r, /usr/share/perl/5.8.8/File/Path.pm r, /usr/share/perl/5.8.8/File/Spec.pm r, /usr/share/perl/5.8.8/File/Spec/Unix.pm r, /usr/share/perl/5.8.8/File/Temp.pm r, /usr/share/perl/5.8.8/FindBin.pm r, /usr/share/perl/5.8.8/Getopt/Long.pm r, /usr/share/perl/5.8.8/SelectSaver.pm r, /usr/share/perl/5.8.8/Symbol.pm r, /usr/share/perl/5.8.8/Term/Cap.pm r, /usr/share/perl/5.8.8/Term/ReadLine.pm r, /usr/share/perl/5.8.8/Time/Local.pm r, /usr/share/perl/5.8.8/base.pm r, /usr/share/perl/5.8.8/bytes.pm r, /usr/share/perl/5.8.8/constant.pm r, /usr/share/perl/5.8.8/integer.pm r, /usr/share/perl/5.8.8/overload.pm r, /usr/share/perl/5.8.8/strict.pm r, /usr/share/perl/5.8.8/subs.pm r, /usr/share/perl/5.8.8/vars.pm r, /usr/share/perl/5.8.8/warnings.pm r, /usr/share/perl/5.8.8/warnings/register.pm r, /usr/share/perl5/HTTP/Date.pm r, /usr/share/perl5/HTTP/Headers.pm r, /usr/share/perl5/HTTP/Message.pm r, /usr/share/perl5/HTTP/Request.pm r, /usr/share/perl5/HTTP/Response.pm r, /usr/share/perl5/HTTP/Status.pm r, /usr/share/perl5/Immunix/Severity.pm r, /usr/share/perl5/LWP.pm r, /usr/share/perl5/LWP/Debug.pm r, /usr/share/perl5/LWP/MemberMixin.pm r, /usr/share/perl5/LWP/Protocol.pm r, /usr/share/perl5/LWP/UserAgent.pm r, /usr/share/perl5/RPC/XML.pm r, /usr/share/perl5/RPC/XML/Client.pm r, /usr/share/perl5/RPC/XML/Parser.pm r, /usr/share/perl5/URI.pm r, /usr/share/perl5/URI/Escape.pm r, }	over 2 years ago	gnome	118	hbpteam	Edit	History
ubuntu-gutsy	/sbin/dhclient3	#include <tunables/global> /sbin/dhclient3 flags=(complain) { #include <abstractions/base> /sbin/dhclient3 mr, }	over 2 years ago	[1 - /sbin/dhclient3]	114	michael	Edit	History
ubuntu-gutsy	/usr/lib/postfix/virtual	# $Id: usr.lib.postfix.virtual 201 2006-11-05 08:39:33Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/virtual { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> capability setgid, capability setuid, /usr/lib/postfix/virtual rmix, /var/spool/postfix/active/* rw, /var/spool/postfix/pid/unix.virtual rw, /var/spool/postfix/private/bounce w, }	9 months ago		33	stive	Edit	History
ubuntu-gutsy	/usr/bin/gstm	#include <tunables/global> /usr/bin/gstm { #include <abstractions/base> /usr/bin/gstm mr, }	over 2 years ago	gnome	142	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/serpentine	#include <tunables/global> /usr/bin/serpentine { #include <abstractions/base> /usr/bin/python2.5 ix, /usr/bin/serpentine mr, }	over 2 years ago	gnome	121	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/python2.5	#include <tunables/global> /usr/bin/python2.5 flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/python> capability dac_override, /etc/apt/apt.conf.d/ r, /etc/apt/apt.conf.d/* r, /etc/apt/sources.list r, /etc/apt/sources.list.d/ r, /etc/apt/sources.list.d/.list r, /proc/meminfo r, /proc/stat r, /usr/bin/python2.5 mr, /usr/share/command-not-found/programs.d/ r, /usr/share/command-not-found/programs.d/.db r, /usr/share/python-apt/templates/ r, /usr/share/python-apt/templates/.info r, /usr/share/python-apt/templates/.mirrors r, }	over 2 years ago	gnome	125	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/apache2	#include <tunables/global> /usr/sbin/apache2 { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/nis> #include <abstractions/perl> capability dac_override, capability dac_read_search, capability fowner, capability kill, capability net_bind_service, capability setgid, capability setuid, /etc//htpasswd.users r, /etc/apache2/* r, /etc/drupal/6/* r, /etc/drupal/6/sites/default/dbconfig.php r, /etc/drupal/6/sites/default/settings.php r, /etc/javascript-common/javascript-common.conf r, /etc/mime.types r, /etc/mtab r, /etc/nagios-pnp/* r, /etc/nagios2/* r, /etc/perl/Net/libnet.cfg r, /etc/php5/apache2/php.ini r, /etc/php5/conf.d/* r, /etc/roundcube/* r, /etc/shadow r, /etc/ssl/openssl.cnf r, /home/nonexistent/ krw, /home/www/ r, /proc//mounts r, /tmp/ r, /tmp/ w, /usr/bin/perl ix, /usr/bin/sperl5.8.8 ixr, /usr/lib/** mr, /usr/sbin/apache2 mr, /usr/share/apache2/icons/* r, /usr/share/drupal6/ r, /usr/share/file/magic.mime r, /usr/share/perl/ r, /usr/share/php/ r, /usr/share/roundcube/ r, /usr/share/zoneinfo/ r, /var/lib/drupal6/files/ w, /var/lib/roundcube/** r, /var/log/apache2/* w, /var/log/openwebmail.log a, /var/log/roundcube/errors a, /var/run/apache2.pid rw, /var/run/apache2/ssl_mutex w, /var/run/mysqld/mysqld.sock w, /var/tmp/* w, /var/www/** r, /var/www//cgi-bin/openwebmail/etc/sessions/* krw, /var/www//cgi-bin/openwebmail/etc/users/* klrw, /var/www//cgi-bin/openwebmail/openwebmail-abook.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-main.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-read.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-send.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail-viewatt.pl ixr, /var/www//cgi-bin/openwebmail/openwebmail.pl ixr, } /usr/sbin/apache2//DEFAULT_URI { } /usr/sbin/apache2//HANDLING_UNTRUSTED_INPUT { }	8 months ago		48	stive	Edit	History
ubuntu-gutsy	/usr/bin/system-config-printer	#include <tunables/global> /usr/bin/system-config-printer { #include <abstractions/base> /bin/dash ix, /usr/bin/system-config-printer mr, }	over 2 years ago	gnome	95	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/gksu	#include <tunables/global> /usr/bin/gksu { #include <abstractions/base> /usr/bin/gksu mr, }	over 2 years ago	gnome	126	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/Xorg	#include <tunables/global> /usr/bin/Xorg flags=(complain) { #include <abstractions/base> #include <abstractions/nvidia> #include <abstractions/user-tmp> capability dac_override, capability ipc_owner, capability setgid, capability setuid, capability sys_admin, capability sys_rawio, capability sys_tty_config, /bin/dash Px, /dev/input/mice rw, /dev/mem r, /dev/tty0 w, /dev/tty7 rw, /etc/X11/xorg.conf r, /etc/X11/xserver/SecurityPolicy r, /home//.gnome2/share/cursor-fonts/fonts.dir r, /home/void/.gnome2/share/fonts/* r, /proc/bus/pci/00/00.0 r, /proc/bus/pci/00/01.0 r, /proc/bus/pci/00/01.1 r, /proc/bus/pci/00/02.0 r, /proc/bus/pci/00/02.1 r, /proc/bus/pci/00/02.2 r, /proc/bus/pci/00/05.0 r, /proc/bus/pci/00/06.0 r, /proc/bus/pci/00/08.0 r, /proc/bus/pci/00/0a.0 r, /proc/bus/pci/00/0b.0 rw, /proc/bus/pci/00/0e.0 r, /proc/bus/pci/00/18.0 r, /proc/bus/pci/00/18.1 r, /proc/bus/pci/00/18.2 r, /proc/bus/pci/00/18.3 r, /proc/bus/pci/01/00.0 rw, /proc/bus/pci/02/08.0 r, /proc/bus/pci/02/08.1 r, /proc/bus/pci/02/0a.0 r, /proc/driver/nvidia/registry r, /proc/meminfo r, /proc/modules r, /sys/bus/pci/devices/ r, /sys/devices/pci0000:00/0000:00:00.0/resource r, /sys/devices/pci0000:00/0000:00:01.0/resource r, /sys/devices/pci0000:00/0000:00:01.1/resource r, /sys/devices/pci0000:00/0000:00:02.0/resource r, /sys/devices/pci0000:00/0000:00:02.1/resource r, /sys/devices/pci0000:00/0000:00:02.2/resource r, /sys/devices/pci0000:00/0000:00:05.0/resource r, /sys/devices/pci0000:00/0000:00:06.0/resource r, /sys/devices/pci0000:00/0000:00:08.0/resource r, /sys/devices/pci0000:00/0000:00:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/0000:01:00.0/resource r, /sys/devices/pci0000:00/0000:00:0b.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:08.1/resource r, /sys/devices/pci0000:00/0000:00:0e.0/0000:02:0a.0/resource r, /sys/devices/pci0000:00/0000:00:0e.0/resource r, /sys/devices/pci0000:00/0000:00:18.0/resource r, /sys/devices/pci0000:00/0000:00:18.1/resource r, /sys/devices/pci0000:00/0000:00:18.2/resource r, /sys/devices/pci0000:00/0000:00:18.3/resource r, /usr/bin/Xorg mr, /usr/lib/ mr, /usr/share/X11/xkb/rules/base r, /usr/share/fonts/ r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.alias r, /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType/fonts.dir r, /var/lib/gdm/:0.Xauth r, /var/lib/xkb/server-0.xkm rw, /var/log/Xorg.0.log rw, /var/log/Xorg.0.log.old w, /var/run/acpid.socket w, }	about 1 year ago		122	igoriii	Edit	History
ubuntu-gutsy	/usr/bin/gnome-screensaver	#include <tunables/global> /usr/bin/gnome-screensaver { #include <abstractions/base> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> #include <abstractions/user-tmp> /home//.Xauthority r, /proc//mounts r, /usr/bin/gnome-screensaver mr, /usr/lib/gnome-screensaver/gnome-screensaver-gl-helper Px, }	over 2 years ago	gnome	92	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/qmqpd	# $Id: usr.lib.postfix.qmqpd 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/qmqpd { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/qmqpd rmix, }	9 months ago		37	stive	Edit	History
ubuntu-gutsy	/usr/bin/xine	#include <tunables/global> /usr/bin/xine { #include <abstractions/base> /usr/bin/xine mr, }	over 2 years ago	gnome	97	hbpteam	Edit	History
ubuntu-gutsy	/usr/bin/kchmviewer	#include <tunables/global> /usr/bin/kchmviewer { #include <abstractions/base> /usr/bin/kchmviewer mr, }	over 2 years ago	gnome	128	hbpteam	Edit	History
ubuntu-gutsy	/usr/sbin/jabberd2-router	#include <tunables/global> /usr/sbin/jabberd2-router flags=(complain) { #include <abstractions/base> /usr/sbin/jabberd2-router mr, }	about 1 year ago		77	igoriii	Edit	History
ubuntu-gutsy	/usr/bin/pidgin	#include <tunables/global> /usr/bin/pidgin flags=(complain) { #include <abstractions/base> /usr/bin/pidgin mr, }	about 1 year ago		71	guyome	Edit	History
ubuntu-gutsy	/usr/bin/xsane	#include <tunables/global> /usr/bin/xsane { #include <abstractions/base> /usr/bin/xsane mr, }	over 2 years ago	gnome	133	hbpteam	Edit	History
ubuntu-gutsy	/usr/lib/postfix/verify	# $Id: usr.lib.postfix.verify 90 2006-08-04 19:13:59Z seth_arnold $ # ------------------------------------------------------------------ # # Copyright (C) 2002-2006 Novell/SUSE # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ #include <tunables/global> /usr/lib/postfix/verify { #include <abstractions/base> #include <abstractions/kerberosclient> #include <abstractions/nameservice> #include <program-chunks/postfix-common> /usr/lib/postfix/verify rmix, }	9 months ago		55	stive	Edit	History
ubuntu-gutsy	/home/timbus/Desktop/mugen/mugen	#include <tunables/global> /home/timbus/Desktop/mugen/mugen flags=(complain) { #include <abstractions/base> /home/timbus/Desktop/mugen/mugen mr, }	over 2 years ago	Uh	123	timbus	Edit	History
ubuntu-gutsy	/usr/bin/nautilus	#include <tunables/global> /usr/bin/nautilus { #include <abstractions/base> #include <abstractions/bash> #include <abstractions/dbus> #include <abstractions/gnome> #include <abstractions/nameservice> /etc/gnome/defaults.list r, /etc/sound/events/.soundlist r, /home//* rw, /home//.Trash/ rw, /home//.config/ r, /home//.config/user-dirs.dirs r, /home//.gnome/gnome-vfs/.trash_entry_cache rw, /home//.gnome2/ rw, /home//.gnome2/nautilus-scripts/ rw, /home//.gnome2_private/ w, /home//.icons/ r, /home//.kde/share/config/kdeglobals r, /home//.nautilus/metafiles/* rw, /home//.thumbnails/normal/ r, /home//.thumbnails/normal/.png r, /home//Desktop/ rw, /home//Desktop/ rw, /home//Documents/ rw, /home//Music/ rw, /home//Pictures/ rw, /home//Public/ rw, /home//Templates/ rw, /home//Videos/ rw, /home//themes/ r, /home/void/ rw, /proc//mounts r, /proc/filesystems r, /proc/meminfo r, /tmp/* klrw, /usr/bin/evince Px, /usr/bin/nautilus mr, /usr/lib/nautilus-cd-burner/mapping-daemon Px, /usr/local/share/applications/ r, /usr/local/share/applications/.cache r, /usr/local/share/icons/ r, /usr/share/applications/ r, /usr/share/applications/.cache r, /usr/share/applications/.desktop r, /usr/share/gdm/applications/ r, /usr/share/gdm/applications/.cache r, /usr/share/mime/application/.xml r, /usr/share/nautilus/ui/.xml r, }	over 2 years ago	gnome	129	hbpteam	Edit	History