Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- dcerouter_1033740:~# cat /etc/apparmor.d/usr.sbin.dhcpd3
- # vim:syntax=apparmor
- # Last Modified: Tue Feb 10 15:02:44 2009
- # Author: Jamie Strandboge <jamie@canonical.com>
- #include <tunables/global>
- /usr/sbin/dhcpd3 {
- #include <abstractions/base>
- #include <abstractions/nameservice>
- #include <abstractions/ssl_keys>
- capability net_bind_service,
- capability net_raw,
- capability setgid,
- capability setuid,
- network inet raw,
- network packet packet,
- /etc/hosts.allow r,
- /etc/hosts.deny r,
- /etc/dhcp3/ r,
- /etc/dhcp3/** r,
- /etc/dhcpd.conf r,
- /etc/dhcpd_ldap.conf r,
- /usr/sbin/dhcpd3 mr,
- /var/lib/dhcp3/dhcpd.leases* lrw,
- /var/log/ r,
- /var/log/** rw,
- /var/run/dhcp3-server/dhcpd.pid w,
- # LTSP. See:
- # http://www.ltsp.org/~sbalneav/LTSPManual.html
- # https://wiki.edubuntu.org/
- /etc/ltsp/ r,
- /etc/ltsp/** r,
- /etc/dhcpd-k12ltsp.conf r,
- /etc/dhcpd.leases* lrw,
- /ltsp/ r,
- /ltsp/** r,
- # Eucalyptus
- /var/run/eucalyptus/net/ r,
- /var/run/eucalyptus/net/** r,
- /var/run/eucalyptus/net/*.pid lrw,
- /var/run/eucalyptus/net/*.leases* lrw,
- /var/run/eucalyptus/net/*.trace lrw,
- # Let dhcpd read bind's config files
- /etc/bind/** r,
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
