1 <!-- Copyright 2014 Dan Parriott (ddpbsd@gmail.com)
2 - This program is a free software; you can redistribute it
3 - and/or modify it under the terms of the GNU General Public
4 - License (version 2) as published by the FSF - Free Software
7 - License details: http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
12 <!-- Modify it at your will. -->
14 <group name="local,syslog,apparmor">
16 <rule id="52000" level="3">
17 <decoded_as>iptables</decoded_as>
18 <match> apparmor=</match>
19 <description>Apparmor grouping</description>
22 <rule id="52001" level="0">
23 <if_sid>52000</if_sid>
24 <status>ALLOWED|STATUS</status>
25 <description>Ignore ALLOWED or STATUS</description>
28 <rule id="52002" level="3">
29 <if_sid>52000</if_sid>
30 <status>DENIED</status>
31 <match> apparmor=</match>
32 <description>Apparmor DENIED</description>
35 <rule id="52003" level="5">
36 <if_sid>52002</if_sid>
37 <extra_data>exec</extra_data>
38 <description>Apparmor DENIED exec operation.</description>
41 <rule id="52004" level="4">
42 <if_sid>52002</if_sid>
43 <extra_data>mknod</extra_data>
44 <description>Apparmor DENIED mknod operation.</description>
47 </group> <!-- SYSLOG,LOCAL -->