[Pkg-privacy-commits] [torbrowser-launcher] 35/48: AppArmor: use the @{pid} tunable instead of hard-coding our own pattern.
Roger Shimizu
rosh at moszumanska.debian.org
Mon Sep 4 16:42:34 UTC 2017
This is an automated email from the git hooks/post-receive script.
rosh pushed a commit to branch debian/sid
in repository torbrowser-launcher.
commit 979b3d29a12c5db1fee5cf5f8dc104f3110a4891
Author: intrigeri <intrigeri at boum.org>
Date: Fri Jun 16 15:44:47 2017 +0000
AppArmor: use the @{pid} tunable instead of hard-coding our own pattern.
---
apparmor/torbrowser.Browser.firefox | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/apparmor/torbrowser.Browser.firefox b/apparmor/torbrowser.Browser.firefox
index 3b8e307..8b0bbdb 100644
--- a/apparmor/torbrowser.Browser.firefox
+++ b/apparmor/torbrowser.Browser.firefox
@@ -28,9 +28,9 @@
deny /etc/machine-id r,
deny /var/lib/dbus/machine-id r,
- owner @{PROC}/[0-9]*/mountinfo r,
- owner @{PROC}/[0-9]*/stat r,
- owner @{PROC}/[0-9]*/task/*/stat r,
+ owner @{PROC}/@{pid}/mountinfo r,
+ owner @{PROC}/@{pid}/stat r,
+ owner @{PROC}/@{pid}/task/*/stat r,
@{PROC}/sys/kernel/random/uuid r,
owner @{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/ r,
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-privacy/packages/torbrowser-launcher.git
More information about the Pkg-privacy-commits
mailing list