OXIESEC PANEL
- Current Dir:
/
/
etc
/
apparmor.d
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
05/20/2025 05:23:23 PM
rwxr-xr-x
📁
abstractions
-
05/09/2024 07:14:29 AM
rwxr-xr-x
📁
cache
-
05/19/2025 07:54:53 AM
rwxr-xr-x
📁
disable
-
10/21/2019 03:48:36 PM
rwxr-xr-x
📁
force-complain
-
04/24/2018 02:47:41 PM
rwxr-xr-x
📁
local
-
10/28/2024 08:41:33 AM
rwxr-xr-x
📁
lxc
-
05/09/2024 07:15:54 AM
rwxr-xr-x
📄
lxc-containers
198 bytes
11/23/2018 04:49:34 AM
rw-r--r--
📄
sbin.dhclient
3.12 KB
03/26/2018 09:00:31 PM
rw-r--r--
📁
tunables
-
05/09/2024 07:14:29 AM
rwxr-xr-x
📄
ubuntu_pro_apt_news
1.98 KB
09/06/2024 11:58:19 PM
rw-r--r--
📄
ubuntu_pro_esm_cache
7.33 KB
09/06/2024 11:58:19 PM
rw-r--r--
📄
usr.bin.lxc-start
125 bytes
11/23/2018 04:49:34 AM
rw-r--r--
📄
usr.bin.man
2.79 KB
04/07/2018 11:14:41 AM
rw-r--r--
📄
usr.lib.snapd.snap-confine.real
27.82 KB
05/29/2023 12:10:12 PM
rw-r--r--
📄
usr.sbin.mysqld
1.75 KB
01/21/2020 02:10:07 PM
rw-r--r--
📄
usr.sbin.rsyslogd
1.51 KB
04/24/2018 01:15:46 PM
rw-r--r--
📄
usr.sbin.slapd
1.2 KB
05/12/2022 01:52:38 PM
rw-r--r--
📄
usr.sbin.tcpdump
1.42 KB
02/10/2023 06:11:16 PM
rw-r--r--
Editing: usr.sbin.tcpdump
Close
# vim:syntax=apparmor #include <tunables/global> /usr/sbin/tcpdump { #include <abstractions/base> #include <abstractions/nameservice> #include <abstractions/user-tmp> capability net_raw, capability setuid, capability setgid, capability dac_override, network raw, network packet, # for -D @{PROC}/bus/usb/ r, @{PROC}/bus/usb/** r, # for finding an interface @{PROC}/[0-9]*/net/dev r, /sys/bus/usb/devices/ r, /sys/class/net/ r, /sys/devices/**/net/* r, # for -j capability net_admin, # for tracing USB bus, which libpcap supports /dev/usbmon* r, /dev/bus/usb/ r, /dev/bus/usb/** r, # for init_etherarray(), with -e /etc/ethers r, # for USB probing (see libpcap-1.1.x/pcap-usb-linux.c:probe_devices()) /dev/bus/usb/**/[0-9]* w, # for -z /{usr/,}bin/gzip ixr, /{usr/,}bin/bzip2 ixr, # for -F and -w audit deny @{HOME}/.* mrwkl, audit deny @{HOME}/.*/ rw, audit deny @{HOME}/.*/** mrwkl, audit deny @{HOME}/bin/ rw, audit deny @{HOME}/bin/** mrwkl, owner @{HOME}/ r, owner @{HOME}/** rw, # for -r, -F and -w /**.[pP][cC][aA][pP] rw, # for convenience with -r (ie, read pcap files from other sources) /var/log/snort/*log* r, /usr/sbin/tcpdump mr, # allow printing to stdout/stderr when inside a container # (LP: #1667016) /dev/pts/* rw, # Site-specific additions and overrides. See local/README for details. #include <local/usr.sbin.tcpdump> }