202
edits
Sandbox/OS X Rule Set: Difference between revisions
Jump to navigation
Jump to search
Annotated Rules
Haftandilian (talk | contribs) (Annotated Rules) |
Haftandilian (talk | contribs) (Annotated Rules) |
||
| Line 387: | Line 387: | ||
</pre> | </pre> | ||
|| Read access to<br> | || | ||
Read access to<br> | |||
/private/var/folders/[^/][^/][^/]+/[^/]com.apple.IconServices<br>and<br> | /private/var/folders/[^/][^/][^/]+/[^/]com.apple.IconServices<br>and<br> | ||
/private/var/folders/[^/][^/][^/]+/[^/][^/]+.mozrunner/extensions/[^/]/chrome/[^/]+/content/[^/]+.j(s|ar) | /private/var/folders/[^/][^/][^/]+/[^/][^/]+.mozrunner/extensions/[^/]/chrome/[^/]+/content/[^/]+.j(s|ar)<br> | ||
Not found on my 10.11 system. | |||
|- | |- | ||
| | | | ||
| Line 395: | Line 397: | ||
" (allow file-write* (var-folders2-regex \"/org\\.chromium\\.[a-zA-Z0-9]*$\"))\n" | " (allow file-write* (var-folders2-regex \"/org\\.chromium\\.[a-zA-Z0-9]*$\"))\n" | ||
</pre> | </pre> | ||
|| Write access to<br> | || | ||
/private/var/folders/[^/][^/][^/]+/[^/]org.chromium.[a-Z0-9]* | Write access to<br> | ||
/private/var/folders/[^/][^/][^/]+/[^/]org.chromium.[a-Z0-9]*<br> | |||
Not found on my 10.11 system. | |||
|- | |- | ||
| | | | ||
| Line 407: | Line 411: | ||
"\n" | "\n" | ||
</pre> | </pre> | ||
|| | || | ||
Read access to | |||
~/Library/Application Support/[^/]+/Extensions/[^/]<br> | |||
~/Library/Application Support/Firefox/Profiles/[^/]+/extensions/<br> | |||
~/Library/Application Support/Firefox/Profiles/[^/]+/weave/<br> | |||
/Library/Application Support/[^/]+/Extension/[^/]/<br> | |||
If these are still needed, the ~/Library rules could be improved to use the specific profile dir, not a regex that matches any of the profiles in the Profiles dir. | |||
|- | |- | ||
| | | | ||