RuhNetConsulting
/
scriptreplay_ng
mirror of https://github.com/scoopex/scriptreplay_ng
1
0
Fork 0
Code Issues 0 Projects 0 Releases 1 Wiki Activity
Browse Source

Updated rules

audit-shell
Marc Schoechlin 8 years ago
parent
750ed35980
commit
cc4d37dab9
1 changed files with 19 additions and 6 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +19
    -6
      helpers/usr.local.bin.auditshell

+ 19
- 6
helpers/usr.local.bin.auditshell View File

@ -1,4 +1,3 @@
# Apparmor profile for the auditshell # Apparmor profile for the auditshell
#include<tunables/global> #include<tunables/global>
@ -18,13 +17,15 @@
network inet tcp, network inet tcp,
/** lrwix, /** lrwix,
# TCP/UDP network access
network inet stream,
network inet6 stream,
network inet dgram,
network inet6 dgram,
# TCP/UDP network access
network inet stream,
network inet6 stream,
network inet dgram,
network inet6 dgram,
network netlink raw, network netlink raw,
/usr/local/bin/auditshell-sessions cx,
deny /usr/bin/chsh lrwx, deny /usr/bin/chsh lrwx,
deny /var/log/auditshell/ lrwx, deny /var/log/auditshell/ lrwx,
deny /var/log/auditshell/** lrwx, deny /var/log/auditshell/** lrwx,
@ -37,5 +38,17 @@
# interface="org.freedesktop.resolve1.Manager" # interface="org.freedesktop.resolve1.Manager"
# member="Resolve{Address,Hostname,Record,Service}" # member="Resolve{Address,Hostname,Record,Service}"
# peer=(name="org.freedesktop.resolve1"), # peer=(name="org.freedesktop.resolve1"),
} }
profile /usr/local/bin/auditshell-sessions {
#include <abstractions/base>
#include <abstractions/bash>
/** lrwix,
/var/log/auditshell/ lrix,
/var/log/auditshell/** lrix,
deny /usr/bin/chsh lrwx,
}
} }

Write Preview
Loading…
Cancel
Save