[pkg-apparmor] Bug#883256: Bug#883256: Bug#883256: Re: apparmor-profiles-extra: Totem can't access files outside $HOME
Seth Arnold
seth.arnold at canonical.com
Fri Dec 1 23:26:53 UTC 2017
On Fri, Dec 01, 2017 at 12:57:33PM -0800, Seth Arnold wrote:
> > /{media,mnt,srv,wherever/mounts/are}/** r,
>
> You'll probably also need a corresponding line to allow reading
> directories, if the program in question has a file browser interface:
>
> /{media,mnt,srv,wherever/mounts/are}/**/ r,
>
> The / at the end of the entry allows listing directory contents.
I'm sorry, I'm wrong. /srv/** r, will allow directory listings of
all child directories in /srv/, just not /srv/ itself.
So a rule such as
/{media,mnt,srv,wherever/mounts/are}/ r,
would be useful.
Thanks to Christian for finding my mistake.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-apparmor-team/attachments/20171201/ad2d235a/attachment.sig>
More information about the pkg-apparmor-team
mailing list