On Fri, Jul 05, 2013 at 05:17:48PM -0700, Seth Arnold wrote:
> On Mon, Jul 01, 2013 at 05:15:07PM -0500, Jamie Strandboge wrote:
>
> > @@ -428,6 +546,7 @@
> > s = "%s# No read paths specified" % prefix
> > if len(read_path) > 0:
> > s = "%s# Specified read permission
On 07/05/2013 04:27 PM, Seth Arnold wrote:
> On Sun, Jun 30, 2013 at 03:07:38AM -0700, John Johansen wrote:
>>> You've very nearly convinced me that for the various forms of on-machine
>>> IPC pairing does not make a lot of sense and the automatic label mechanism
>>> is a better fit.
>>>
>> Ha! I h
On Mon, Jul 01, 2013 at 05:15:07PM -0500, Jamie Strandboge wrote:
> @@ -428,6 +546,7 @@
> s = "%s# No read paths specified" % prefix
> if len(read_path) > 0:
> s = "%s# Specified read permissions" % (prefix)
> +read_path.sort()
> for i in rea
On Sun, Jun 30, 2013 at 03:07:38AM -0700, John Johansen wrote:
> > You've very nearly convinced me that for the various forms of on-machine
> > IPC pairing does not make a lot of sense and the automatic label mechanism
> > is a better fit.
> >
> Ha! I haven't convinced my self. That is I know we c
Steve pointed out that I should document the Perl 5.10.1 minimum version
dependency introduced by Kshitij's de-dup patch. I took the opportunity
to broadly sketch our dependencies in our top-level README.
Thoughts?
Thanks
Signed-off-by: Seth Arnold
=== modified file 'README'
--- README 2
I've checked this into trunk. I'm not sure about checking it into 2.8
though, since it introduces a requirement for Perl >= 5.10.1 via the ~~
operator: http://stackoverflow.com/a/3095066/377270
** Changed in: apparmor
Assignee: Kshitij Gupta (kgupta8592) => AppArmor Developers (apparmor-dev)
Here's the current Perl versions in Debian / Ubuntu world:
Ubuntu packages:
lucid: 5.10.1-8ubuntu2.3, Pocket: updates, Component: main
precise: 5.14.2-6ubuntu2.3, Pocket: updates, Component: main
quantal: 5.14.2-13ubuntu0.2, Pocket: updates, Component: main
raring: 5.14.2-21, Pocket: release, Com
So a quick summary for people to mull over on weekend
1. Pairing vs. no pairing
that is being able to tie mediation to both local and remote attributes
at the same time. The attributes don't have to be addresses, however
the subject labeling is implied (its the profile the rule is defined
Seth Arnold (seth-arnold) has assigned this bug to you for AppArmor:
When using glob, the glob does not check if the entries mentioned
previously is repeated or not. Using a simple check to match against the
previous entry will solve this and prevent such long pointless lists.
| [(A)llow] / (D)en
On Mon, Jul 01, 2013 at 05:15:07PM -0500, Jamie Strandboge wrote:
> +def set_template(self, template, allow_abs_path=True):
> '''Set current template'''
> self.template = template
> +if "../" in template:
> +raise AppArmorException('template "%s" contains "
On Fri, Jul 05, 2013 at 09:59:44AM -0500, Jamie Strandboge wrote:
> >> +if opt.manifest:
> >> +try:
> >> +# should hide this in a common function
> >> +if sys.version_info[0] >= 3:
> >> +f = open(opt.manifest, "r", encoding="utf-8")
> >> +
On 07/03/2013 10:04 PM, Seth Arnold wrote:
> On Mon, Jul 01, 2013 at 05:15:07PM -0500, Jamie Strandboge wrote:
>> Attached is a patch for aa-easyprof that adds significant functionality over
>> what is currently in trunk. I could try to break these out in discrete
>> chunks,
>
> I've got one comm
12 matches
Mail list logo
