source: npl/mailserver/kopano_conf/example-config/apparmor.d/usr.sbin.kopano-search

Last change on this file was 1163be4, checked in by Edwin Eefting <edwin@datux.nl>, 7 years ago

Migrated from Zarafa 7.2.4 to Kopano 8.6.6, including webapp
  • Property mode set to 100644
File size: 1.0 KB
RevLine 
[1163be4]1#include <tunables/global>
2
3/usr/sbin/kopano-search {
4  #include <abstractions/base>
5  #include <abstractions/nameservice>
6  #include <abstractions/python>
7  #include <abstractions/user-tmp>
8
9  capability chown,
10  capability dac_override,
11  capability dac_read_search,
12  capability setgid,
13  capability setuid,
14
15  @{PROC}/@{pid}/cmdline r,
16  @{PROC}/@{pid}/mounts r,
17  @{PROC}/@{pid}/status r,
18  @{PROC}/@{pid}/task/@{tid}/comm rw,
19
20  deny /usr/lib/python2.7/dist-packages/kopano_search/*.pyc w,
21
22  # FIXME: it would be nice if search would use search- like pa
23  /dev/shm/* rwl,
24
25  /etc/gss/mech.d/ r,
26  /etc/gss/mech.d/*.conf r,
27
28  /lib/x86_64-linux-gnu/ld-*.so mr,
29  /usr/bin/python2.7 ix,
30  /usr/sbin/kopano-search r,
31
32  /etc/kopano/search.cfg r,
33
34  /bin/dash Pix,
35  /bin/rm Pix,
36  /sbin/ldconfig Pix,
37
38  /etc/mapi/ r,
39  /etc/mapi/kopano.inf r,
40  /etc/mapi/zcontacts.inf r,
41
42  /run/kopano/search.pid rw,
43  /run/kopano/search.pid.lock lrw,
44  /run/kopano/search.sock rw,
45  /run/kopano/*.*-* rw,
46
47  /var/lib/kopano/search/** rwlk,
48  /var/log/kopano/search.log rw,
49}
Note: See TracBrowser for help on using the repository browser.