b5a1419370
Accepted submit request 65172 from user licensedigger OBS-URL: https://build.opensuse.org/request/show/65172 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apparmor?expand=0&rev=14
38 lines
1.1 KiB
Plaintext
38 lines
1.1 KiB
Plaintext
---
|
|
profiles/apparmor.d/sbin.syslog-ng | 7 ++++++-
|
|
1 file changed, 6 insertions(+), 1 deletion(-)
|
|
|
|
--- a/profiles/apparmor.d/sbin.syslog-ng
|
|
+++ b/profiles/apparmor.d/sbin.syslog-ng
|
|
@@ -19,12 +19,14 @@
|
|
#include <abstractions/base>
|
|
#include <abstractions/consoles>
|
|
#include <abstractions/nameservice>
|
|
+ #include <abstractions/mysql>
|
|
|
|
capability chown,
|
|
capability dac_override,
|
|
capability fsetid,
|
|
capability fowner,
|
|
capability sys_tty_config,
|
|
+ capability sys_resource,
|
|
|
|
/dev/log w,
|
|
/dev/syslog w,
|
|
@@ -35,11 +37,14 @@
|
|
/etc/hosts.deny r,
|
|
/etc/hosts.allow r,
|
|
/sbin/syslog-ng mr,
|
|
+ /usr/share/syslog-ng/** r,
|
|
# chrooted applications
|
|
@{CHROOT_BASE}/var/lib/*/dev/log w,
|
|
- @{CHROOT_BASE}/var/lib/syslog-ng/syslog-ng.persist rw,
|
|
+ @{CHROOT_BASE}/var/lib/syslog-ng/syslog-ng.persist* rw,
|
|
@{CHROOT_BASE}/var/log/** w,
|
|
@{CHROOT_BASE}/var/run/syslog-ng.pid krw,
|
|
+ @{CHROOT_BASE}/var/run/syslog-ng.ctl rw,
|
|
+ /var/run/syslog-ng/additional-log-sockets.conf r,
|
|
|
|
# Site-specific additions and overrides. See local/README for details.
|
|
#include <local/sbin.syslog-ng>
|