Browse Source

Merge pull request 'Add AppArmor profiles' (#303) from asymptotically/wownero:apparmor into master

Reviewed-on: #303
pull/304/head
jwinterm 2 months ago
parent
commit
83a26b1291
2 changed files with 42 additions and 0 deletions
  1. +23
    -0
      utils/apparmor/usr.bin.wownero-wallet-cli
  2. +19
    -0
      utils/apparmor/usr.bin.wownerod

+ 23
- 0
utils/apparmor/usr.bin.wownero-wallet-cli View File

@ -0,0 +1,23 @@
#include <tunables/global>
# Change to wherever you store your wallet files and start wallet from.
@{WALLET_DIR} = /home/*/Documents/Wownero
profile wownero-wallet-cli /usr/{,local/}bin/wownero-wallet-cli {
#include <abstractions/base>
#include <abstractions/openssl>
# TODO: Use <abstractions/nameservice> when it is fixed.
/etc/gai.conf r,
/etc/host.conf r,
/etc/hosts r,
/etc/nsswitch.conf r,
/etc/resolv.conf r,
/etc/inputrc r,
/etc/terminfo/** r,
owner /home/*/.wow-shared-ringdb/* rwk,
owner @{WALLET_DIR}/* rwk,
}

+ 19
- 0
utils/apparmor/usr.bin.wownerod View File

@ -0,0 +1,19 @@
#include <tunables/global>
profile wownerod /usr/{,local/}bin/wownerod {
#include <abstractions/base>
#include <abstractions/openssl>
/etc/inputrc r,
/etc/terminfo/** r,
/sys/devices/**/rotational r,
owner /home/*/.wownero/{,/testnet/,/stagenet/} w,
owner /home/*/.wownero/{,/testnet/,/stagenet/}lmdb/ w,
owner /home/*/.wownero/{,/testnet/,/stagenet/}lmdb/* rwk,
owner /home/*/.wownero/{,/testnet/,/stagenet/}p2pstate.bin rw,
owner /home/*/.wownero/{,/testnet/,/stagenet/}wownero.conf r,
owner /home/*/.wownero/{,/testnet/,/stagenet/}wownero.log w,
}

Loading…
Cancel
Save