/apparmor.d/abstractions/nameservice

http://github.com/brinkman83/bashrc · #! · 79 lines · 67 code · 12 blank · 0 comment · 0 complexity · 2eb2159d6ceaab3a422eccf9f5d788f6 MD5 · raw file

  1. # $Id$
  2. # ------------------------------------------------------------------
  3. #
  4. # Copyright (C) 2002-2009 Novell/SUSE
  5. # Copyright (C) 2009 Canonical Ltd.
  6. #
  7. # This program is free software; you can redistribute it and/or
  8. # modify it under the terms of version 2 of the GNU General Public
  9. # License published by the Free Software Foundation.
  10. #
  11. # ------------------------------------------------------------------
  12. # Many programs wish to perform nameservice-like operations, such as
  13. # looking up users by name or id, groups by name or id, hosts by name
  14. # or IP, etc. These operations may be performed through files, dns,
  15. # NIS, NIS+, LDAP, hesiod, wins, etc. Allow them all here.
  16. /etc/group r,
  17. /etc/host.conf r,
  18. /etc/hosts r,
  19. /etc/ldap.conf r,
  20. /etc/ldap.secret r,
  21. /etc/nsswitch.conf r,
  22. /etc/gai.conf r,
  23. /etc/passwd r,
  24. /etc/protocols r,
  25. /etc/resolv.conf r,
  26. # on systems using resolvconf, /etc/resolv.conf is a symlink to
  27. # /var/run/resolvconf/resolv.conf and a file sometimes referenced in
  28. # /etc/resolvconf/run/resolv.conf
  29. /var/run/resolvconf/resolv.conf r,
  30. /etc/resolvconf/run/resolv.conf r,
  31. /etc/samba/lmhosts r,
  32. /etc/services r,
  33. # all openldap config
  34. /etc/openldap/* r,
  35. /etc/ldap/** r,
  36. # db backend
  37. /var/lib/misc/*.db r,
  38. # The Name Service Cache Daemon can cache lookups, sometimes leading
  39. # to vast speed increases when working with network-based lookups.
  40. /var/run/.nscd_socket rw,
  41. /var/run/nscd/socket rw,
  42. /var/{db,cache,run}/nscd/{passwd,group,services,host} r,
  43. # nscd renames and unlinks files in it's operation that clients will
  44. # have open
  45. /var/run/nscd/db* rmix,
  46. # The nss libraries are sometimes used in addition to PAM; make sure
  47. # they are available
  48. /lib{,32,64}/libnss_*.so* mr,
  49. /usr/lib{,32,64}/libnss_*.so* mr,
  50. /etc/default/nss r,
  51. # avahi-daemon is used for mdns4 resolution
  52. /var/run/avahi-daemon/socket w,
  53. # nis
  54. #include <abstractions/nis>
  55. # winbind
  56. #include <abstractions/winbind>
  57. # likewise
  58. #include <abstractions/likewise>
  59. # mdnsd
  60. #include <abstractions/mdns>
  61. # kerberos
  62. #include <abstractions/kerberosclient>
  63. # TCP/UDP network access
  64. network inet stream,
  65. network inet6 stream,
  66. network inet dgram,
  67. network inet6 dgram,