Thunderbird profile should transition to Evince/Totem profiles when running them to open attachments
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
AppArmor Profiles |
New
|
Undecided
|
Unassigned |
Bug Description
With the current Thunderbird profile Evince & Totem are run under sanitized_helper, while some distros ship stricter dedicated profiles for them. This feels wrong.
As written on https:/
IMO we need these rules somewhere on distros that ship the Evince and Totem profiles:
/usr/bin/evince Px,
/usr/bin/totem Px,
I see two ways to do it:
1. Adjust the existing Evince rule in abstractions/
2. Add these rules to the Thunderbird profile.
At first glance it feels like (1) is the cleanest way forward *but* it has a big drawback: it won't work as intended on distros that don't ship Evince/Totem profiles, which feels super wrong in abstractions that are part of the upstream AppArmor tarball. I think that's yet another reason to sit down, take a deep breath, and rethink how & where we're maintaining+
The main drawback of (2) is that any distro that starts shipping the Thunderbird profile will need to either also ship the Evince and Totem profiles, or drop these two lines In Debian that's a mere matter of adding a dependency on apparmor-
See also a related discussion on https:/ /bugs.launchpad .net/ubuntu/ +source/ apparmor/ +bug/1042771.