[Pkg-anonymity-tools] [torbrowser-launcher] 26/43: Don't make potential AppArmor deny logs about @{PROC}/[0-9]*/task/** and @{PROC}/[0-9]*/fd/ silent.

[Ulrike Uhlig]

This is an automated email from the git hooks/post-receive script.

u-guest pushed a commit to branch master
in repository torbrowser-launcher.

commit 181365b24071d89e19a300a028785d040e30b860
Author: intrigeri <intrigeri at boum.org>
Date:   Thu Aug 14 17:38:06 2014 +0000

    Don't make potential AppArmor deny logs about @{PROC}/[0-9]*/task/** and @{PROC}/[0-9]*/fd/ silent.
    
    These deny rules were added, without any explanation, in commit 04b24660.
    
    I've never seen Firefox try to break these rules. If someone sees that, then I'm
    happy to see the corresponding logs, and then we can research whether the
    consequences of letting Firefox access this file are any worse than the
    consequences of blocking this access.
---
 apparmor/torbrowser.Browser.firefox | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/apparmor/torbrowser.Browser.firefox b/apparmor/torbrowser.Browser.firefox
index 3e6e49e..b7eb70d 100644
--- a/apparmor/torbrowser.Browser.firefox
+++ b/apparmor/torbrowser.Browser.firefox
@@ -21,9 +21,6 @@
   deny /etc/group r,
   deny /etc/mailcap r,
 
-  deny @{PROC}/[0-9]*/task/** r,
-  deny @{PROC}/[0-9]*/fd/ r,
-
   deny /etc/machine-id r,
   deny /var/lib/dbus/machine-id r,
 

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/collab-maint/torbrowser-launcher.git