Created
February 12, 2018 21:43
-
-
Save kyhwana/f8a7c0841a1b8dc3c8f4d6d1ee19cb13 to your computer and use it in GitHub Desktop.
steam ubuntu apparmor
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Last Modified: Sat Feb 10 17:50:50 2018 | |
| #include <tunables/global> | |
| /usr/bin/steam { | |
| #include <abstractions/X> | |
| #include <abstractions/base> | |
| #include <abstractions/bash> | |
| #include <abstractions/lightdm> | |
| #include <abstractions/nameservice> | |
| ptrace trace peer=/usr/bin/steam, | |
| unix, | |
| deny /bin/rm x, | |
| deny /etc/passwd r, | |
| deny /home/*/radare2/** r, | |
| deny /home/*/radare2/libr/anal/libr_anal.so r, | |
| deny /home/*/radare2/libr/asm/libr_asm.so r, | |
| deny /home/*/radare2/libr/bin/libr_bin.so r, | |
| /bin/bash ix, | |
| /home/*/.ICEauthority r, | |
| /home/*/.Xauthority r, | |
| /home/*/.cache/fontconfig/* rw, | |
| /home/*/.config/ r, | |
| /home/*/.config/autostart/ r, | |
| /home/*/.config/user-dirs.dirs r, | |
| /home/*/.local/**/ r, | |
| /home/*/.local/lib/python2.7/site-packages/configparser-3.5.0-py2.7-nspkg.pth r, | |
| /home/*/.local/lib/python2.7/site-packages/jaraco.classes-1.4.1-py3.6-nspkg.pth r, | |
| /home/*/.local/lib/python2.7/site-packages/protobuf-3.3.0-py2.7-nspkg.pth r, | |
| /home/*/.local/lib/python2.7/site-packages/zope.interface-4.4.2-py2.7-nspkg.pth r, | |
| /home/*/.local/share/Steam/** rwux, | |
| /home/*/.local/share/Steam/.save/ w, | |
| /home/*/.local/share/Steam/bootstrap.tar.xz w, | |
| /home/*/.local/share/Steam/logs/bootstrap_log.txt w, | |
| /home/*/.local/share/Steam/package/steam_client_ubuntu12.manifest r, | |
| /home/*/.local/share/Steam/public/steambootstrapper_english.txt r, | |
| /home/*/.local/share/Steam/ubuntu12_32/crashhandler.so r, | |
| /home/*/.local/share/Steam/ubuntu12_32/steam-runtime.checksum r, | |
| /home/*/.local/share/Steam/ubuntu12_32/steam-runtime.tar.xz w, | |
| /home/*/.local/share/Steam/ubuntu12_32/steam-runtime.tmp/ w, | |
| /home/*/.local/share/Steam/ubuntu12_32/steamui.so r, | |
| /home/*/.local/share/vulkan/** rwux, | |
| /home/*/.pki/nssdb/* rw, | |
| /home/*/.steam/** r, | |
| /home/*/.steam/*.vdf.bak w, | |
| /home/*/.steam/registry.vdf rw, | |
| /home/*/.steam/starting w, | |
| /home/*/.steam/steam.pid rw, | |
| /home/*/.steam/steam.pipe r, | |
| /home/@{HOME}/ r, | |
| /home/@{HOME}/.local/share/Steam/** rwux, | |
| /libx32/ r, | |
| /libx32/* r, | |
| /libx32/ld-2.23.so rix, | |
| /proc/*/auxv r, | |
| /proc/*/cmdline r, | |
| /proc/*/environ r, | |
| /proc/*/oom_score_adj w, | |
| /proc/*/status r, | |
| /proc/*/task/ r, | |
| /steamapps/ w, | |
| /tmp/** rw, | |
| /var/cache/fontconfig/ mrwkix, | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment