diff --git a/apparmor.usr.sbin.exim b/apparmor.usr.sbin.exim new file mode 100644 index 0000000..fb1112a --- /dev/null +++ b/apparmor.usr.sbin.exim @@ -0,0 +1,30 @@ +# vim:syntax=apparmor +# Last Modified: Sun May 13 13:10:22 2007 +#include + +/usr/sbin/exim flags=(complain) { + #include + #include + + capability chown, + capability dac_override, + capability fowner, + capability setgid, + capability setuid, + + /etc/aliases r, + /etc/exim/** r, + /etc/greylistd/whitelist-hosts r, + /proc/*/mounts r, + /proc/loadavg r, + /proc/net/if_inet6 r, + /usr/lib/majordomo/wrapper px, + /usr/sbin/exim ixr, + /var/lib/greylistd/whitelist-hosts r, + /var/lib/majordomo/lists/* r, + /var/log/exim/*.log w, + /var/run/exim.pid w, + /var/run/greylistd/socket w, + /var/spool/exim/** rw, + /var/spool/mail/** lrw, +}