"Why is it that difficult to understand that I do not ask you to make ubuntu more tight, but to split the configuration into two parts to allow users to make it more tight if they want without breaking the package updates?"
Ok, so this is a 3rd separate bug report in addition to the other two: not having the policy be conffiles which could be implemented as splitting out the system bits from the user bits. The apparmor developers have discussed how a distribution should ship profiles generally for a long time and there is no completely satisfactory answer. What resulted from these discussions was the /etc/apparmor.d/local mechanism. Files in this directory are not conffiles and will not be updated on upgrades. You can use this to fine tune profiles as desired. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/900324 Title: apparmor profile provides too much access To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/900324/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
