I've been running without the mmap rules for a while and haven't seen any problem. As for the sanitized_helper rules, it works as expected where helper apps get contained by the thunderbird//sanitized_helper profile (even if they have their own profile). I tested simple stuff like PDF (evince) and patches (gedit).
Looks good to me, thanks! -- https://code.launchpad.net/~talkless/apparmor-profiles/+git/apparmor-profiles/+merge/332870 Your team AppArmor Developers is requested to review the proposed merge of ~talkless/apparmor-profiles:fix-thunderbird-attachements into apparmor-profiles:master. -- AppArmor mailing list AppArmor@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
