AppArmor profile exchange

Find profiles by name | Find profiles by author | Find profiles by name and author | List all profiles | List all users | My profiles | New profile | Anonymous | Login
/usr/bin/zypper dominic Wed Dec 19 22:06:47 +0100 2007 75 views
testing package updates 
#include <tunables/global>
/usr/bin/zypper {
  #include <abstractions/authentication>
  #include <abstractions/base>
  #include <abstractions/consoles>
  #include <abstractions/nameservice>
  #include <abstractions/user-tmp>

  capability fsetid,
  capability ipc_lock,

  /bin/cp ixr,
  /bin/rpm Ux,
  /etc/rpm/ r,
  /etc/rpm/macros.* r,
  /etc/sysconfig/proxy r,
  /etc/sysconfig/storage r,
  /etc/zypp/repos.d/ r,
  /etc/zypp/repos.d/*.repo r,
  /etc/zypp/zypp.conf r,
  /proc/*/mounts r,
  /proc/cpuinfo r,
  /proc/meminfo r,
  /proc/stat r,
  /sys/bus/ r,
  /usr/bin/gpg2 ixr,
  /usr/bin/zypper mr,
  /usr/share/zypp/schema/** r,
  /var/adm/mount/** rw,
  /var/cache/zypp/ r,
  /var/cache/zypp/raw/** rw,
  /var/cache/zypp/zypp.db krw,
  /var/cache/zypp/zypp.db-journal w,
  /var/lib/rpm/ w,
  /var/lib/rpm/Basenames r,
  /var/lib/rpm/Name r,
  /var/lib/rpm/Packages kr,
  /var/lib/zypp/db/languages/ r,
  /var/lib/zypp/db/languages/* r,
  /var/lib/zypp/db/patches/ r,
  /var/lib/zypp/db/patches/* r,
  /var/lib/zypp/db/patterns/ r,
  /var/lib/zypp/db/patterns/* r,
  /var/lib/zypp/db/products/ r,
  /var/lib/zypp/db/products/* r,
  /var/lib/zypp/db/selections/ r,
  /var/log/zypper.log w,
  /var/run/zypp.pid krw,
  /var/tmp/ rw,
}

Edit | Show | History