View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0003829 | libextractor | libextractor main library | public | 2015-06-08 10:32 | 2017-10-12 14:11 |
| Reporter | Christian Grothoff | Assigned To | Christian Grothoff | ||
| Priority | normal | Severity | feature | Reproducibility | unable to reproduce |
| Status | closed | Resolution | fixed | ||
| Platform | i7 | OS | Debian GNU/Linux | OS Version | squeeze |
| Product Version | Git master | ||||
| Target Version | 1.4 | Fixed in Version | 1.4 | ||
| Summary | 0003829: further drop privs on fork if apparmor is available | ||||
| Description | We should use AA profiles to reduce LE privs, and when the main lib forks should (try to) switch to a profile where even local disk IO is not permitted (only the IPC). http://manpages.ubuntu.com/manpages/precise/man2/aa_change_profile.2.html | ||||
| Tags | No tags attached. | ||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2015-06-08 10:32 | Christian Grothoff | New Issue | |
| 2015-06-08 10:33 | Christian Grothoff | Status | new => confirmed |
| 2015-09-09 19:41 | Christian Grothoff | Assigned To | => Christian Grothoff |
| 2015-09-09 19:41 | Christian Grothoff | Status | confirmed => resolved |
| 2015-09-09 19:41 | Christian Grothoff | Resolution | open => fixed |
| 2015-09-09 19:41 | Christian Grothoff | Fixed in Version | => 1.4 |
| 2017-10-12 14:11 | Christian Grothoff | Status | resolved => closed |
