diff options
| author |  Vladimir Schowalter <VladimirSchowalter20@users.noreply.github.com> | 2017-08-02 18:12:02 +0100 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2017-08-02 18:12:02 +0100 |
| commit | c5e188cbda3aa074da69aa575262c69f5d5882bb (patch) | |
| tree | e3e531e044fd66f6627aa08985b3a0d6cbaa3275 | |
| parent | get_mempolicy syscall was temporarily removed from the default seccomp list. ... (diff) | |
| download | firejail-c5e188cbda3aa074da69aa575262c69f5d5882bb.tar.gz firejail-c5e188cbda3aa074da69aa575262c69f5d5882bb.tar.zst firejail-c5e188cbda3aa074da69aa575262c69f5d5882bb.zip | |
Apparmor: add local configuration
| -rw-r--r-- | Makefile.in | 2 | ||||
| -rw-r--r-- | etc/firejail-default | 1 | ||||
| -rw-r--r-- | etc/firejail-local | 1 |
3 files changed, 4 insertions, 0 deletions
diff --git a/Makefile.in b/Makefile.in index dabd9aa15..34a9eb856 100644 --- a/Makefile.in +++ b/Makefile.in | |||
| @@ -128,6 +128,8 @@ ifeq ($(HAVE_APPARMOR),-DHAVE_APPARMOR) | |||
| 128 | # install apparmor profile | 128 | # install apparmor profile |
| 129 | sh -c "if [ ! -d $(DESTDIR)/$(sysconfdir)/apparmor.d ]; then install -d -m 755 $(DESTDIR)/$(sysconfdir)/apparmor.d; fi;" | 129 | sh -c "if [ ! -d $(DESTDIR)/$(sysconfdir)/apparmor.d ]; then install -d -m 755 $(DESTDIR)/$(sysconfdir)/apparmor.d; fi;" |
| 130 | install -c -m 0644 etc/firejail-default $(DESTDIR)/$(sysconfdir)/apparmor.d/. | 130 | install -c -m 0644 etc/firejail-default $(DESTDIR)/$(sysconfdir)/apparmor.d/. |
| 131 | sh -c "if [ ! -d $(DESTDIR)/$(sysconfdir)/apparmor.d/local ]; then install -d -m 755 $(DESTDIR)/$(sysconfdir)/apparmor.d/local; fi;" | ||
| 132 | install -c -m 0644 etc/firejail-local $(DESTDIR)/$(sysconfdir)/apparmor.d/local/. | ||
| 131 | endif | 133 | endif |
| 132 | # man pages | 134 | # man pages |
| 133 | install -m 0755 -d $(DESTDIR)/$(mandir)/man1 | 135 | install -m 0755 -d $(DESTDIR)/$(mandir)/man1 |
diff --git a/etc/firejail-default b/etc/firejail-default index 092fcbbcc..619e8a6ec 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
| @@ -154,4 +154,5 @@ remount, | |||
| 154 | umount, | 154 | umount, |
| 155 | pivot_root, | 155 | pivot_root, |
| 156 | 156 | ||
| 157 | #include <local/firejail-local> | ||
| 157 | } | 158 | } |
diff --git a/etc/firejail-local b/etc/firejail-local new file mode 100644 index 000000000..cddf44f13 --- /dev/null +++ b/etc/firejail-local | |||
| @@ -0,0 +1 @@ | |||
| # Site-specific additions and overrides for 'firejail-default' | |||