The AppArmor 2.11.95 (2.12 beta 1) tarball has been uploaded to the
AppArmor project page on launchpad.
https://launchpad.net/apparmor/2.12/2.12/+download/apparmor-2.11.95.tar.gz
It should have the md5sum:
77c79c4b4968ea24806fce4bc14c491b
and a detached signature is available at
https:/
On Thu, Oct 26, 2017 at 09:15:42AM -, intrigeri wrote:
> Good news: "Totem → bwrap → totem-video-thumbnailer" now seems to
> work just fine with PUx, contrary to how it was last time I tested :)
> I think that's because Totem started passing "--chdir /" to bwrap,
> and my understanding of bubbl
What about Debian Stable? Is this bwrap needed there and will these fixes land
in Stable? Will it work with PUx there?
--
https://code.launchpad.net/~intrigeri/apparmor-profiles/+git/apparmor-profiles/+merge/332769
Your team AppArmor Developers is subscribed to branch apparmor-profiles:master.
-
@Vincas, I just noticed that you added simon123 as reviewer. Despite the
similarity in name it is not me as I go by the LP ID sdeziel.
--
https://code.launchpad.net/~talkless/apparmor-profiles/+git/apparmor-profiles/+merge/332870
Your team AppArmor Developers is requested to review the proposed m
> On 2017.10.26 20:10, Simon Déziel wrote:
> > They only way to have evince locked in its own profile was to explicitly add
> > "/usr/bin/evince Px," to the TB profile. Add that same line to abstractions
> > /ubuntu-helpers didn't work.
>
> abstractions/ubuntu-helpers is basically (ignoring commen
On 2017.10.26 20:10, Simon Déziel wrote:
> They only way to have evince locked in its own profile was to explicitly add
> "/usr/bin/evince Px," to the TB profile. Add that same line to abstractions
> /ubuntu-helpers didn't work.
abstractions/ubuntu-helpers is basically (ignoring comments)
pro
> What about Debian Stable? Is this bwrap needed there
No, AFAIK Totem in Debian stable doesn't use bwrap and works just fine with
AppArmor enabled (e.g. in Tails).
--
https://code.launchpad.net/~intrigeri/apparmor-profiles/+git/apparmor-profiles/+merge/332769
Your team AppArmor Developers is s
Thanks Vincas for the MR & Simon for the review (that will save me quite some
time)! I'll look into this soon.
--
https://code.launchpad.net/~talkless/apparmor-profiles/+git/apparmor-profiles/+merge/332870
Your team AppArmor Developers is requested to review the proposed merge of
~talkless/appar
Review: Approve
Good news: "Totem → bwrap → totem-video-thumbnailer" now seems to work just
fine with PUx, contrary to how it was last time I tested :) I think that's
because Totem started passing "--chdir /" to bwrap, and my understanding of
bubblewrap.c is that the fallback to cwd = $HOME onl
Steve Beattie:
> Can PUx be used for bwrap instead, to scrub the environment before invoking
> bubblewrap?
No, as said in commit 2194269942c5393b1f657a9117d3839da5dbf279:
We don't scrub environment variables because bwrap will reuse $HOME
(see bwrap(1)) and clean the environment itself.
The proposal to merge lp:~intrigeri/apparmor/audio-OpenAL into lp:apparmor has
been updated.
Status: Needs review => Merged
For more details, see:
https://code.launchpad.net/~intrigeri/apparmor/audio-OpenAL/+merge/330479
--
Your team AppArmor Developers is requested to review the proposed m
> On 2017.10.26 20:10, Simon Déziel wrote:
> > I've been running without the mmap rules for a while and haven't seen any
> problem. As for the sanitized_helper rules, it works as expected where helper
> apps get contained by the thunderbird//sanitized_helper profile (even if they
> have their own p
On 2017.10.26 20:10, Simon Déziel wrote:
> I've been running without the mmap rules for a while and haven't seen any
> problem. As for the sanitized_helper rules, it works as expected where helper
> apps get contained by the thunderbird//sanitized_helper profile (even if they
> have their own pr
I've been running without the mmap rules for a while and haven't seen any
problem. As for the sanitized_helper rules, it works as expected where helper
apps get contained by the thunderbird//sanitized_helper profile (even if they
have their own profile). I tested simple stuff like PDF (evince) a
The proposal to merge ~talkless/apparmor-profiles:fix-thunderbird-attachements
into apparmor-profiles:master has been updated.
Description changed to:
This is modified (no sbin, less explicit) intrigeri patch [0][1] for fixing
Debian bug #855346 [2] that disallows Thunderbird users with AppArmo
Vincas Dargis has proposed merging
~talkless/apparmor-profiles:fix-thunderbird-attachements into
apparmor-profiles:master.
Requested reviews:
AppArmor Developers (apparmor-dev)
For more details, see:
https://code.launchpad.net/~talkless/apparmor-profiles/+git/apparmor-profiles/+merge/332870
On Thu, Oct 26, 2017 at 01:55:17PM +0200, Christian Boltz wrote:
> Hello,
>
> Am Donnerstag, 26. Oktober 2017, 13:50:20 CEST schrieb Christian Boltz:
> > +json_response('changes')["response"] # wait for it to delay
> > deletion of difftemp (and ignore response content)
>
> That's what I
Hi Christian,
On 10/26/2017 06:55 AM, Christian Boltz wrote:
> Hello,
>
> Am Donnerstag, 26. Oktober 2017, 13:50:20 CEST schrieb Christian Boltz:
>> +json_response('changes')["response"] # wait for it to delay
>> deletion of difftemp (and ignore response content)
>
> That's what I get
Hello,
Am Donnerstag, 26. Oktober 2017, 13:50:20 CEST schrieb Christian Boltz:
> +json_response('changes')["response"] # wait for it to delay
> deletion of difftemp (and ignore response content)
That's what I get for rewording the comment - s/ it / response /
so v2 of this simple patc
Hello,
Am Donnerstag, 26. Oktober 2017, 02:10:27 CEST schrieb Goldwyn Rodrigues:
> On 10/25/2017 05:20 PM, Christian Boltz wrote:
> > Am Montag, 23. Oktober 2017, 12:38:34 CEST schrieb Goldwyn Rodrigues:
> >> From: Goldwyn Rodrigues
> >>
> >> Provides the filename in the json format, which can b
The proposal to merge lp:~talkless/apparmor/seven_digit_pid into lp:apparmor
has been updated.
Status: Needs review => Merged
For more details, see:
https://code.launchpad.net/~talkless/apparmor/seven_digit_pid/+merge/331614
--
Your team AppArmor Developers is requested to review the propos
The proposal to merge lp:~intrigeri/apparmor/pass-compiler-flags-binutils into
lp:apparmor has been updated.
Status: Needs review => Merged
For more details, see:
https://code.launchpad.net/~intrigeri/apparmor/pass-compiler-flags-binutils/+merge/326264
--
Your team AppArmor Developers is re
22 matches
Mail list logo
