Skip to content

Commit

Permalink
interfaces/default: allow owner read on @{PROC}/@{pid}/sessionid
Browse files Browse the repository at this point in the history 
This is used by auditd, and is generally safe to expose.

Signed-off-by: Zeyad Gouda <[email protected]>
  • Loading branch information
@ZeyadYasser @Meulengracht
ZeyadYasser authored and Meulengracht committed Nov 21, 2024
1 parent 34933e3 commit 98cdc21
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions interfaces/apparmor/template.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -267,6 +267,7 @@ var templateCommon = `
@{PROC}/@{pid}/io r,
owner @{PROC}/@{pid}/limits r,
owner @{PROC}/@{pid}/loginuid r,
owner @{PROC}/@{pid}/sessionid r,
@{PROC}/@{pid}/smaps r,
@{PROC}/@{pid}/stat r,
@{PROC}/@{pid}/statm r,
Expand Down

0 comments on commit 98cdc21

Please sign in to comment.