torproject/torbrowser-launcher
1
0
Fork 0
mirror of https://github.com/torproject/torbrowser-launcher.git synced 2025-02-17 06:37:40 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

AppArmor: silence denied access to /sys/devices/virtual/block/*/uevent.

Browse Source 
I've not found any security-related usage of this kernel interface in the Tor
Browser source tree, and the browser seems to work just fine without having
access to it, so let's make AppArmor silently deny it.

Note that this doesn't change any existing behaviour: only logging is affected.
This commit is contained in:
intrigeri 2015-01-29 16:11:57 +00:00
parent 283fdf1e0e
commit 83f749f0d7
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
apparmor/torbrowser.Browser.firefox
View File

@ -65,6 +65,7 @@
/sys/devices/system/cpu/ r,
/sys/devices/system/cpu/present r,
deny /sys/devices/virtual/block/*/uevent r,
# Should use abstractions/gstreamer instead once merged upstream
/etc/udev/udev.conf r,