mirror of
https://github.com/trailofbits/algo
synced 2024-11-06 03:20:39 +00:00
c3fcfe5d0d
Make dpdaction great again add 1704 to travis Make EC2 image name more convenient modify apparmor profile
29 lines
580 B
Django/Jinja
29 lines
580 B
Django/Jinja
#include <tunables/global>
|
|
|
|
/usr/sbin/dnsmasq {
|
|
#include <abstractions/base>
|
|
#include <abstractions/nameservice>
|
|
|
|
capability net_bind_service,
|
|
capability setgid,
|
|
capability setuid,
|
|
capability dac_override,
|
|
network inet raw,
|
|
|
|
/etc/dnsmasq.conf r,
|
|
/etc/dnsmasq.d/ r,
|
|
/etc/dnsmasq.d/* r,
|
|
/var/lib/dnsmasq/ r,
|
|
/var/lib/dnsmasq/block.hosts r,
|
|
/etc/dnsmasq.d-available/ r,
|
|
/etc/dnsmasq.d-available/* r,
|
|
|
|
/usr/sbin/dnsmasq mr,
|
|
|
|
/{,var/}run/*dnsmasq*.pid w,
|
|
/{,var/}run/dnsmasq-forwarders.conf r,
|
|
/{,var/}run/dnsmasq/ r,
|
|
/{,var/}run/dnsmasq/* rw,
|
|
|
|
}
|