Dirk Mueller
18cf88956e
* The dkim_status ACL condition may now be used in data ACLs
* The dkim_verbose logging control also enables logging of signing
* The dkim_timestamps signing option now accepts zero to include
a current timestamp but no expiry timestamp.
* The recipients_max main option is now expanded.
* Setting variables for "exim -be" can set a tainted value.
* A dns:fail event.
* The dsearch lookup supports search for a sub-path.
* Include mailtest utility for simple connection checking.
* Add SMTP WELLKNOWN extension.
OBS-URL: https://build.opensuse.org/package/show/server:mail/exim?expand=0&rev=290
34 lines
786 B
Plaintext
34 lines
786 B
Plaintext
# vim:syntax=apparmor
|
|
# Last Modified: Wed May 30 17:00:04 2007
|
|
#include <tunables/global>
|
|
|
|
/usr/sbin/exim {
|
|
#include <abstractions/base>
|
|
#include <abstractions/nameservice>
|
|
#include <abstractions/consoles>
|
|
#include <abstractions/user-mail>
|
|
|
|
capability chown,
|
|
capability dac_override,
|
|
capability fowner,
|
|
capability setgid,
|
|
capability setuid,
|
|
|
|
/etc/aliases r,
|
|
/etc/exim/** r,
|
|
/etc/greylistd/whitelist-hosts r,
|
|
/proc/*/mounts r,
|
|
/proc/loadavg r,
|
|
/proc/net/if_inet6 r,
|
|
/usr/bin/procmail Px,
|
|
/usr/lib/cyrus/bin/deliver Px,
|
|
/usr/lib/majordomo/wrapper px,
|
|
/usr/sbin/exim ixr,
|
|
/var/lib/greylistd/whitelist-hosts r,
|
|
/var/lib/majordomo/lists/* r,
|
|
/var/log/exim/*.log w,
|
|
/var/run/exim.pid w,
|
|
/var/run/greylistd/socket w,
|
|
/var/spool/exim/** rw,
|
|
}
|