2
# Last Modified: Tue Jun 19 17:37:30 2007
3
#include <tunables/global>
6
#include <abstractions/base>
7
#include <abstractions/nameservice>
8
#include <abstractions/user-tmp>
9
#include <abstractions/mysql>
10
#include <abstractions/winbind>
12
capability dac_override,
13
capability sys_resource,
24
/etc/mysql/conf.d/* r,
27
/usr/share/mysql/** r,
28
/usr/lib/mysql/plugin/*.so* mr,
29
/var/log/mysql.log rw,
30
/var/log/mysql.err rw,
32
/var/lib/mysql/** rwk,
35
/var/run/mysqld/mysqld.pid w,
36
/var/run/mysqld/mysqld.sock w,
38
/sys/devices/system/cpu/ r,
1
# This file is intensionally empty to disable apparmor by default for newer
2
# versions of MariaDB, while providing seamless upgrade from older versions
3
# and from mysql, where apparmor is used.
5
# By default, we do not want to have any apparmor profile for the MariaDB
6
# server. It does not provide much useful functionality/security, and causes
7
# several problems for users who often are not even aware that apparmor
8
# exists and runs on their system.
10
# Users can modify and maintain their own profile, and in this case it will
13
# When upgrading from previous version, users who modified the profile
14
# will be promptet to keep or discard it, while for default installs
15
# we will automatically disable the profile.
added
removed
bakery/debian-5.3/dist/Ubuntu/apparmor-profile
