From c36169b334c725ab3e626cf32617da7b87ee6594 Mon Sep 17 00:00:00 2001 From: Julien Morvan Date: Mon, 17 Aug 2015 09:23:39 +0000 Subject: --- contrib/apparmor/gnunet-fs-gtk | 43 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 contrib/apparmor/gnunet-fs-gtk (limited to 'contrib/apparmor/gnunet-fs-gtk') diff --git a/contrib/apparmor/gnunet-fs-gtk b/contrib/apparmor/gnunet-fs-gtk new file mode 100644 index 000000000..0ffb0b38b --- /dev/null +++ b/contrib/apparmor/gnunet-fs-gtk @@ -0,0 +1,43 @@ +# Last Modified: Wed Aug 5 10:53:37 2015 +#include +#include + +profile @{GNUNET_PREFIX}/bin/gnunet-fs-gtk { + #include + #include + #include + #include + #include + +# /dev/shm/LE-* rw, + + owner @{HOME}/.config/gtk-*/bookmarks r, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/download-child/* rw, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/download/ r, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/download/* rw, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/search/ r, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/search/** rw, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/publish-file/ ra, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/publish-file/* rw, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/publish/ ra, + owner @{HOME}/.local/share/gnunet/fs/persistence/gnunet-fs-gtk/publish/* rw, + + #Acces to files to share ? (lets create a gnunet directory in home) + owner @{HOME}/gnunet-fs/ r, + + @{GNUNET_PREFIX}/bin/gnunet-fs-gtk mr, + + @{GNUNET_PREFIX}/share/gnunet-gtk/* r, + + /usr/share/glib-*/schemas/gschemas.compiled r, + + #abstractions/dconf but we need write right here + /run/user/*/dconf/user rw, + + @{HOME}/.cache/thumbnails/normal/*.png r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-fs-publish Px, + + # Site-specific additions and overrides. See local/README for details. + #include +} -- cgit v1.2.3