/apparmor.d/abstractions/nameservice

http://github.com/brinkman83/bashrc · #! · 79 lines · 67 code · 12 blank · 0 comment · 0 complexity · 2eb2159d6ceaab3a422eccf9f5d788f6 MD5 · raw file 

    

  1. # $Id$
    2. 

  2. # ------------------------------------------------------------------
    3. 

  3. #
    4. 

  4. #    Copyright (C) 2002-2009 Novell/SUSE
    5. 

  5. #    Copyright (C) 2009 Canonical Ltd.
    6. 

  6. #
    7. 

  7. #    This program is free software; you can redistribute it and/or
    8. 

  8. #    modify it under the terms of version 2 of the GNU General Public
    9. 

  9. #    License published by the Free Software Foundation.
    10. 

  10. #
    11. 

  11. # ------------------------------------------------------------------
    12. 

  12. 

  13.   # Many programs wish to perform nameservice-like operations, such as
    14. 

  14.   # looking up users by name or id, groups by name or id, hosts by name
    15. 

  15.   # or IP, etc. These operations may be performed through files, dns,
    16. 

  16.   # NIS, NIS+, LDAP, hesiod, wins, etc. Allow them all here.
    17. 

  17.   /etc/group              r,
    18. 

  18.   /etc/host.conf          r,
    19. 

  19.   /etc/hosts              r,
    20. 

  20.   /etc/ldap.conf          r,
    21. 

  21.   /etc/ldap.secret        r,
    22. 

  22.   /etc/nsswitch.conf      r,
    23. 

  23.   /etc/gai.conf           r,
    24. 

  24.   /etc/passwd             r,
    25. 

  25.   /etc/protocols          r,
    26. 

  26. 

  27.   /etc/resolv.conf        r,
    28. 

  28.   # on systems using resolvconf, /etc/resolv.conf is a symlink to
    29. 

  29.   # /var/run/resolvconf/resolv.conf and a file sometimes referenced in
    30. 

  30.   # /etc/resolvconf/run/resolv.conf
    31. 

  31.   /var/run/resolvconf/resolv.conf r,
    32. 

  32.   /etc/resolvconf/run/resolv.conf r,
    33. 

  33. 

  34.   /etc/samba/lmhosts      r,
    35. 

  35.   /etc/services           r,
    36. 

  36.   # all openldap config
    37. 

  37.   /etc/openldap/*         r,
    38. 

  38.   /etc/ldap/**            r,
    39. 

  39.   # db backend
    40. 

  40.   /var/lib/misc/*.db      r,
    41. 

  41.   # The Name Service Cache Daemon can cache lookups, sometimes leading
    42. 

  42.   # to vast speed increases when working with network-based lookups.
    43. 

  43.   /var/run/.nscd_socket   rw,
    44. 

  44.   /var/run/nscd/socket    rw,
    45. 

  45.   /var/{db,cache,run}/nscd/{passwd,group,services,host}    r,
    46. 

  46.   # nscd renames and unlinks files in it's operation that clients will
    47. 

  47.   # have open
    48. 

  48.   /var/run/nscd/db*  rmix,
    49. 

    50. 

  50.   # The nss libraries are sometimes used in addition to PAM; make sure
    51. 

  51.   # they are available
    52. 

  52.   /lib{,32,64}/libnss_*.so*      mr,
    53. 

  53.   /usr/lib{,32,64}/libnss_*.so*  mr,
    54. 

  54.   /etc/default/nss               r,
    55. 

    56. 

  56.   # avahi-daemon is used for mdns4 resolution
    57. 

  57.   /var/run/avahi-daemon/socket w,
    58. 

    59. 

  59.   # nis
    60. 

  60.   #include <abstractions/nis>
    61. 

    62. 

  62.   # winbind
    63. 

  63.   #include <abstractions/winbind>
    64. 

    65. 

  65.   # likewise
    66. 

  66.   #include <abstractions/likewise>
    67. 

    68. 

  68.   # mdnsd
    69. 

  69.   #include <abstractions/mdns>
    70. 

    71. 

  71.   # kerberos
    72. 

  72.   #include <abstractions/kerberosclient>
    73. 

    74. 

  74.   # TCP/UDP network access
    75. 

  75.   network inet  stream,
    76. 

  76.   network inet6 stream,
    77. 

  77.   network inet  dgram,
    78. 

  78.   network inet6 dgram,
    79.