home *** CD-ROM | disk | FTP | other *** search
/ Personal Computer World 2009 February / PCWFEB09.iso / Software / Linux / Kubuntu 8.10 / kubuntu-8.10-desktop-i386.iso / casper / filesystem.squashfs / etc / apparmor.d / abstractions / nameservice < prev    next >
Text File  |  2008-10-08  |  2KB  |  81 lines
  1. # $Id: nameservice 946 2007-08-24 00:22:06Z seth_arnold $
  2. # ------------------------------------------------------------------
  3. #
  4. #    Copyright (C) 2002-2005 Novell/SUSE
  5. #
  6. #    This program is free software; you can redistribute it and/or
  7. #    modify it under the terms of version 2 of the GNU General Public
  8. #    License published by the Free Software Foundation.
  9. #
  10. # ------------------------------------------------------------------
  11.  
  12.   # Many programs wish to perform nameservice-like operations, such as
  13.   # looking up users by name or id, groups by name or id, hosts by name
  14.   # or IP, etc. These operations may be performed through files, dns,
  15.   # NIS, NIS+, LDAP, hesiod, wins, etc. Allow them all here.
  16.   /etc/group              r,
  17.   /etc/host.conf          r,
  18.   /etc/hosts              r,
  19.   /etc/ldap.conf          r,
  20.   /etc/ldap.secret        r,
  21.   /etc/nsswitch.conf      r,
  22.   /etc/gai.conf           r,
  23.   /etc/passwd             r,
  24.   /etc/protocols          r,
  25.  
  26.   /etc/resolv.conf        r,
  27.   # on systems using resolvconf, /etc/resolv.conf is a symlink to
  28.   # /var/run/resolvconf/resolv.conf
  29.   /var/run/resolvconf/resolv.conf r,
  30.  
  31.   /etc/samba/lmhosts      r,
  32.   /etc/services           r,
  33.   # all openldap config
  34.   /etc/openldap/*         r,
  35.   /etc/ldap/**            r,
  36.   # db backend
  37.   /var/lib/misc/*.db      r,
  38.   # The Name Service Cache Daemon can cache lookups, sometimes leading
  39.   # to vast speed increases when working with network-based lookups.
  40.   /var/run/.nscd_socket   rw,
  41.   /var/run/nscd/socket    rw,
  42.   /var/run/nscd/passwd    rmix,
  43.   /var/run/nscd/group     rmix,
  44.   /var/db/nscd/{passwd,group,services,hosts} r,
  45.   # nscd renames and unlinks files in it's operation that clients will
  46.   # have open
  47.   /var/run/nscd/db*  rmix,
  48.  
  49.   # The nss libraries are sometimes used in addition to PAM; make sure
  50.   # they are available
  51.   /lib64/libnss_*.so*         mr,
  52.   /lib/libnss_*.so*           mr,
  53.   /usr/lib64/libnss_*.so*     mr,
  54.   /usr/lib/libnss_*.so*       mr,
  55.   /etc/default/nss            r,
  56.  
  57.   # avahi-daemon is used for mdns4 resolution
  58.   /var/run/avahi-daemon/socket w,
  59.  
  60.   # nis
  61.   #include <abstractions/nis>
  62.  
  63.   # winbind
  64.   #include <abstractions/winbind>
  65.  
  66.   # likewise
  67.   #include <abstractions/likewise>
  68.  
  69.   # mdnsd
  70.   #include <abstractions/mdns>
  71.  
  72.   # kerberos
  73.   #include <abstractions/kerberosclient>
  74.  
  75.   # TCP/UDP network access
  76.   network inet  stream,
  77.   network inet6 stream,
  78.   network inet  dgram,
  79.   network inet6 dgram,
  80.  
  81.