yume/yumechi-no-kuni-proxy-worker
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

improve apparmor profile

Browse source 
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
This commit is contained in:
ゆめ 2024-11-15 00:36:38 -06:00
parent 8e683d0fdb
commit 961b30ae4e
No known key found for this signature in database
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
mac/apparmor/yumechi-no-kuni-proxy-worker
View file

@ -26,7 +26,7 @@ profile yumechi-no-kuni-proxy-worker @{prog_path} {
network tcp, network tcp,
network udp, network udp,
network raw, network netlink raw,
deny network (bind) udp, deny network (bind) udp,
change_profile -> yumechi-no-kuni-proxy-worker//serve, change_profile -> yumechi-no-kuni-proxy-worker//serve,
@ -67,6 +67,7 @@ profile yumechi-no-kuni-proxy-worker @{prog_path} {
network tcp, network tcp,
network udp, network udp,
network netlink raw,
deny network (bind) tcp, deny network (bind) tcp,
deny network (bind) udp, deny network (bind) udp,
@ -81,6 +82,9 @@ profile yumechi-no-kuni-proxy-worker @{prog_path} {
include <abstractions/apparmor_api/change_profile> include <abstractions/apparmor_api/change_profile>
include <abstractions/fonts> include <abstractions/fonts>
deny capability,
deny network,
signal (receive) peer=yume-proxy-worker//serve, signal (receive) peer=yume-proxy-worker//serve,
} }
} }