Commit 8f5c75bc authored by Simon McVittie's avatar Simon McVittie

<abstractions/chaiwala-base>: Mark gvfs access as suspicious

This is an information leak, and should be removed later.
Signed-off-by: default avatarSimon McVittie <simon.mcvittie@collabora.co.uk>
Reviewed-by: André Magalhães's avatarAndré Magalhães <andre.magalhaes@collabora.co.uk>
Differential Revision: https://phabricator.apertis.org/D5725
parent 0f5b4155
......@@ -65,6 +65,9 @@
/usr/lib/@{multiarch}/pango/** mr,
# Access to gvfs, bug 1510
# FIXME: This should not be allowed: only processes that are allowed to
# read all user files should be allowed to read their metadata.
# https://phabricator.apertis.org/T3588
@{HOME}/.local/share/gvfs-metadata/ r,
@{HOME}/.local/share/gvfs-metadata/* r,
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment