AppArmor profile exchange

Find profiles by name | Find profiles by author | Find profiles by name and author | List all profiles | List all users | My profiles | New profile | Anonymous | Login
/usr/lib/firefox/firefox.sh Ivan Susanin Thu Aug 20 23:21:51 +0200 2009 23 views 
#include <tunables/global>

/usr/lib/firefox/firefox.sh flags=(complain) {
  #include <abstractions/audio>
  #include <abstractions/base>
  #include <abstractions/bash>
  #include <abstractions/consoles>
  #include <abstractions/dbus>
  #include <abstractions/fonts>
  #include <abstractions/gnome>
  #include <abstractions/kde>
  #include <abstractions/nameservice>

  audit network inet6 stream,
  audit network stream,


  /bin/basename rcx,
  /bin/bash rix,
  /bin/grep rix,
  /etc/gnome-vfs-2.0/modules/ r,
  /etc/gre.d/ r,
  /etc/gre.d/* r,
  /etc/mailcap r,
  /etc/mime.types r,
  /etc/opt/kde3/**/ r,
  /etc/opt/kde3/share/applications/mimeinfo.cache r,
  owner /home/*/.ICEauthority r,
  owner /home/*/.Xauthority r,
  owner /home/*/.adobe/Flash_Player/*/ r,
  owner /home/*/.config/Trolltech.conf r,
  owner /home/*/.config/qtcurve.gtk-colors rw,
  owner /home/*/.config/qtcurve.gtk-icons rw,
  owner /home/*/.config/qtcurvestylerc r,
  owner /home/*/.fontconfig/* r,
  owner /home/*/.fonts.conf r,
  owner /home/*/.kde/share/config/gtkrc-2.0 r,
  owner /home/*/.kde/share/config/kdeglobals r,
  owner /home/*/.kde4/share/config/gtkrc-2.0 r,
  owner /home/*/.local/share/applications/ r,
  owner /home/*/.local/share/mime/mime.cache r,
  owner /home/*/.macromedia/Flash_Player/** r,
  owner /home/*/.mozilla/extensions/*/ r,
  owner /home/*/.mozilla/firefox/** rwk,
  owner /home/*/.qt/qtrc r,
  owner /home/*/Documents/.etc/mozilla/extensions/*/ r,
  owner /home/*/Documents/.etc/mozilla/extensions/\{ec8030f7-c20a-464f-9b0e-13a3a9e97384\}/ r,
  owner /home/*/Documents/.etc/mozilla/firefox/* r,
  owner /home/*/Documents/.etc/mozilla/firefox/*/ r,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/* rwk,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/*/ rw,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash/*/ w,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache.Trash/Trash/*/ w,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/Cache/* rw,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/adblockplus/* r,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/chrome/* r,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/extensions/** r,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/gm_scripts/* r,
  owner /home/*/Documents/.etc/mozilla/firefox/uz6cq9af.default/searchplugins/* rw,
  owner /home/*/downloads/ w,
  owner /home/draglor/Documents/Temp/ w,
  /opt/kde3/share/applications/ r,
  /opt/kde3/share/applications/kde/ark.desktop r,
  /opt/kde3/share/applications/mimeinfo.cache r,
  owner /proc/*/cmdline r,
  owner /proc/*/maps r,
  /proc/cpuinfo r,
  /proc/meminfo r,
  /usr/bin/file rcx,
  /usr/lib/firefox/firefox mrpx,
  /usr/lib/firefox/firefox.sh rix,
  /usr/share/applications/ r,
  /usr/share/applications/mimeinfo.cache r,
  /usr/share/locale-bundle/de/LC_MESSAGES/* r,
  /usr/share/locale-bundle/ru/LC_MESSAGES/* r,
  /usr/share/mime/application/x-bzip.xml r,
  /usr/share/mozilla/extensions/*/ r,
  /var/cache/gio-2.0/defaults.list r,
  /var/cache/libx11/compose/l4_024_313cb605_00280cc0 r,


  profile /bin/basename flags=(complain) {
    #include <abstractions/base>


    /bin/basename mr,

  }

  profile /usr/bin/file flags=(complain) {
    #include <abstractions/base>


    /etc/magic r,
    /usr/bin/file mr,
    /usr/share/misc/magic.mgc r,

  }
}

Edit | Show | History