AppArmor profile exchange

Find profiles by name | Find profiles by author | Find profiles by name and author | List all profiles | List all users | My profiles | New profile | Anonymous | Login
/usr/bin/opera userusr Wed Aug 05 11:01:29 +0200 2009 24 views 
#include <tunables/global>

/usr/bin/opera flags=(complain) {
  #include <abstractions/base>
  #include <abstractions/bash>

  capability sys_ptrace,

  network dgram,
  network stream,

  /bin/bash rix,
  /bin/grep rix,
  /bin/ls mrix,
  /bin/ps rix,
  /bin/sed mrpx,
  /dev/tty rw,
  /etc/X11/kstylerc r,
  /etc/X11/qt_plugins_3.3rc r,
  /etc/X11/qtrc r,
  /etc/fonts/** r,
  /etc/gtk-2.0/gtk.immodules r,
  /etc/gtk-2.0/gtkrc r,
  /etc/host.conf r,
  /etc/hosts r,
  /etc/mailcap rk,
  /etc/nsswitch.conf r,
  /etc/opera6rc rk,
  /etc/opera6rc.fixed rk,
  /etc/opt/kde3/share/applications/mimeinfo.cache rk,
  /etc/passwd r,
  /etc/resolv.conf r,
  owner /home/*/.ICEauthority r,
  owner /home/*/.Xauthority r,
  owner /home/*/.adobe/Flash_Player/AssetCache/ r,
  owner /home/*/.config/qtcurve.gtk-colors rw,
  owner /home/*/.config/qtcurve.gtk-icons rw,
  owner /home/*/.config/qtcurvestylerc r,
  owner /home/*/.fontconfig/* r,
  owner /home/*/.fonts.conf r,
  owner /home/*/.kde/share/config/gtkrc-2.0 r,
  owner /home/*/.kde/share/config/kcmnspluginrc rwk,
  owner /home/*/.kde/share/config/kdeglobals r,
  owner /home/*/.local/share/icons/ r,
  owner /home/*/.macromedia/Flash_Player/#SharedObjects/ r,
  owner /home/*/.macromedia/Flash_Player/macromedia.com/support/flashplayer/sys/* r,
  owner /home/*/.mozilla/firefox/** r,
  owner /home/*/.mozilla/plugins/ r,
  owner /home/*/.opera/ rw,
  owner /home/*/.opera/* rwk,
  owner /home/*/.opera/cache4/ r,
  owner /home/*/.opera/cache4/* rwk,
  owner /home/*/.opera/cache4/revocation/ r,
  owner /home/*/.opera/cache4/revocation/* rwk,
  owner /home/*/.opera/images/* rwk,
  owner /home/*/.opera/mail/ w,
  owner /home/*/.opera/mail/* rwk,
  owner /home/*/.opera/mail/indexer/* rwk,
  owner /home/*/.opera/mail/lexicon/* rwk,
  owner /home/*/.opera/opcache/ r,
  owner /home/*/.opera/opcache/* rwk,
  owner /home/*/.opera/sessions/ rw,
  owner /home/*/.opera/sessions/* rwk,
  owner /home/*/.opera/skin/ r,
  owner /home/*/.opera/skin/* rk,
  owner /home/*/.opera/styles/user/ r,
  owner /home/*/.opera/styles/user/* rwk,
  owner /home/*/.opera/thumbnails/* rk,
  owner /home/*/.opera/toolbar/ r,
  owner /home/*/.opera/toolbar/* rwk,
  owner /home/*/.opera/vps/ r,
  owner /home/*/.opera/vps/0000/* rwk,
  owner /home/*/.opera/widgets/* rwk,
  owner /home/*/.qt/.kstylerc.lock rwk,
  owner /home/*/.qt/.qt_plugins_3.3rc.lock rwk,
  owner /home/*/.qt/.qtrc.lock rwk,
  owner /home/*/.qt/kstylerc r,
  owner /home/*/.qt/qt_plugins_3.3rc r,
  owner /home/*/.qt/qtrc r,
  /opt/ r,
  /opt/kde3/lib/kde3/plugins/styles/ r,
  /opt/kde3/lib/kde3/plugins/styles/* mr,
  /opt/kde3/lib/lib*so* mr,
  /opt/kde3/share/applications/mimeinfo.cache rk,
  /opt/kde3/share/fonts/** r,
  /opt/kde3/share/icons/ r,
  /opt/kde3/share/icons/crystalsvg/index.theme rk,
  /proc/ r,
  /proc/*/cmdline r,
  owner /proc/*/maps r,
  /proc/*/stat r,
  /proc/*/status r,
  /proc/meminfo r,
  /proc/stat r,
  /proc/sys/kernel/pid_max r,
  /proc/tty/drivers r,
  /proc/uptime r,
  /tmp/.X11-unix/X0 w,
  /usr/ r,
  /usr/X11R6/lib/ r,
  /usr/bin/opera r,
  /usr/lib/ r,
  /usr/lib/** mr,
  /usr/lib/opera/9.52/opera rix,
  /usr/lib/opera/9.52/operaplugincleaner px,
  /usr/lib/opera/9.52/operapluginwrapper rix,
  /usr/lib/opera/9.52/works px,
  /usr/local/ r,
  /usr/local/lib/ r,
  /usr/share/X11/locale/compose.dir r,
  /usr/share/X11/locale/en_US.UTF-8/Compose r,
  /usr/share/X11/locale/en_US.UTF-8/XLC_LOCALE r,
  /usr/share/X11/locale/locale.alias r,
  /usr/share/X11/locale/locale.dir r,
  /usr/share/applications/mimeinfo.cache rk,
  /usr/share/desktop-data/qtrc r,
  /usr/share/fonts/** r,
  /usr/share/ghostscript/fonts/** r,
  /usr/share/icons/ r,
  /usr/share/icons/** rk,
  /usr/share/locale-bundle/cs/LC_MESSAGES/coreutils.mo r,
  /usr/share/locale-bundle/cs/LC_MESSAGES/gtk20-properties.mo r,
  /usr/share/locale-bundle/cs/LC_MESSAGES/gtk20.mo r,
  /usr/share/mime/aliases rk,
  /usr/share/mime/globs rk,
  /usr/share/mime/subclasses rk,
  /usr/share/opera/encoding.bin rk,
  /usr/share/opera/ini/dialog.ini rk,
  /usr/share/opera/ini/fastforward.ini rk,
  /usr/share/opera/ini/font.ini rk,
  /usr/share/opera/ini/pluginpath.ini rk,
  /usr/share/opera/ini/standard_keyboard.ini rk,
  /usr/share/opera/ini/standard_menu.ini rk,
  /usr/share/opera/ini/standard_mouse.ini rk,
  /usr/share/opera/ini/standard_toolbar.ini rk,
  /usr/share/opera/locale/en/search.ini rk,
  /usr/share/opera/locale/english.lng rk,
  /usr/share/opera/skin/ r,
  /usr/share/opera/skin/* rk,
  /usr/share/opera/styles/* rk,
  /usr/share/themes/Gilouche/gtk-2.0/gtkrc r,
  /usr/share/themes/QtCurve/gtk-2.0/gtkrc r,
  /var/cache/fontconfig/* r,
  /var/cache/gio-2.0/defaults.list rk,
  /var/cache/libx11/compose/* r,

}

Edit | Show | History