Linux ip-172-26-7-228 5.4.0-1103-aws #111~18.04.1-Ubuntu SMP Tue May 23 20:04:10 UTC 2023 x86_64
Apache
: 172.26.7.228 | : 18.224.43.98
Cant Read [ /etc/named.conf ]
5.6.40-24+ubuntu18.04.1+deb.sury.org+1
www-data
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
snap /
core22 /
1722 /
etc /
apparmor.d /
abstractions /
[ HOME SHELL ]
Name
Size
Permission
Action
apparmor_api
[ DIR ]
drwxr-xr-x
ubuntu-browsers.d
[ DIR ]
drwxr-xr-x
X
1.94
KB
-rw-r--r--
apache2-common
978
B
-rw-r--r--
aspell
412
B
-rw-r--r--
audio
1.94
KB
-rw-r--r--
authentication
1.81
KB
-rw-r--r--
base
6.77
KB
-rw-r--r--
bash
1.58
KB
-rw-r--r--
consoles
903
B
-rw-r--r--
crypto
809
B
-rw-r--r--
cups-client
820
B
-rw-r--r--
dbus
694
B
-rw-r--r--
dbus-accessibility
745
B
-rw-r--r--
dbus-accessibility-strict
760
B
-rw-r--r--
dbus-network-manager-strict
1.37
KB
-rw-r--r--
dbus-session
747
B
-rw-r--r--
dbus-session-strict
1010
B
-rw-r--r--
dbus-strict
781
B
-rw-r--r--
dconf
344
B
-rw-r--r--
dovecot-common
675
B
-rw-r--r--
dri-common
542
B
-rw-r--r--
dri-enumerate
392
B
-rw-r--r--
enchant
2.17
KB
-rw-r--r--
exo-open
1.88
KB
-rw-r--r--
fcitx
558
B
-rw-r--r--
fcitx-strict
821
B
-rw-r--r--
fonts
2.22
KB
-rw-r--r--
freedesktop.org
1.37
KB
-rw-r--r--
gio-open
1.51
KB
-rw-r--r--
gnome
3.73
KB
-rw-r--r--
gnupg
459
B
-rw-r--r--
gtk
1.42
KB
-rw-r--r--
gvfs-open
1.15
KB
-rw-r--r--
hosts_access
511
B
-rw-r--r--
ibus
992
B
-rw-r--r--
kde
2.8
KB
-rw-r--r--
kde-globals-write
413
B
-rw-r--r--
kde-icon-cache-write
256
B
-rw-r--r--
kde-language-write
575
B
-rw-r--r--
kde-open5
3.61
KB
-rw-r--r--
kerberosclient
1.25
KB
-rw-r--r--
ldapclient
856
B
-rw-r--r--
libpam-systemd
770
B
-rw-r--r--
likewise
595
B
-rw-r--r--
mdns
554
B
-rw-r--r--
mesa
1.16
KB
-rw-r--r--
mir
694
B
-rw-r--r--
mozc
573
B
-rw-r--r--
mysql
739
B
-rw-r--r--
nameservice
4.29
KB
-rw-r--r--
nis
625
B
-rw-r--r--
nss-systemd
1.22
KB
-rw-r--r--
nvidia
751
B
-rw-r--r--
opencl
370
B
-rw-r--r--
opencl-common
516
B
-rw-r--r--
opencl-intel
672
B
-rw-r--r--
opencl-mesa
636
B
-rw-r--r--
opencl-nvidia
895
B
-rw-r--r--
opencl-pocl
2.84
KB
-rw-r--r--
openssl
648
B
-rw-r--r--
orbit2
197
B
-rw-r--r--
p11-kit
999
B
-rw-r--r--
perl
974
B
-rw-r--r--
php
1.13
KB
-rw-r--r--
php-worker
558
B
-rw-r--r--
php5
208
B
-rw-r--r--
postfix-common
1.32
KB
-rw-r--r--
private-files
1.62
KB
-rw-r--r--
private-files-strict
1.18
KB
-rw-r--r--
python
1.82
KB
-rw-r--r--
qt5
863
B
-rw-r--r--
qt5-compose-cache-write
399
B
-rw-r--r--
qt5-settings-write
514
B
-rw-r--r--
recent-documents-write
466
B
-rw-r--r--
ruby
1008
B
-rw-r--r--
samba
1.13
KB
-rw-r--r--
smbpass
581
B
-rw-r--r--
snap_browsers
1.63
KB
-rw-r--r--
ssl_certs
1.52
KB
-rw-r--r--
ssl_keys
938
B
-rw-r--r--
svn-repositories
1.72
KB
-rw-r--r--
ubuntu-bittorrent-clients
821
B
-rw-r--r--
ubuntu-browsers
1.58
KB
-rw-r--r--
ubuntu-console-browsers
731
B
-rw-r--r--
ubuntu-console-email
718
B
-rw-r--r--
ubuntu-email
1.06
KB
-rw-r--r--
ubuntu-feed-readers
456
B
-rw-r--r--
ubuntu-gnome-terminal
300
B
-rw-r--r--
ubuntu-helpers
3.7
KB
-rw-r--r--
ubuntu-konsole
453
B
-rw-r--r--
ubuntu-media-players
2.3
KB
-rw-r--r--
ubuntu-unity7-base
2.5
KB
-rw-r--r--
ubuntu-unity7-launcher
311
B
-rw-r--r--
ubuntu-unity7-messaging
313
B
-rw-r--r--
ubuntu-xterm
346
B
-rw-r--r--
user-download
987
B
-rw-r--r--
user-mail
944
B
-rw-r--r--
user-manpages
1000
B
-rw-r--r--
user-tmp
760
B
-rw-r--r--
user-write
972
B
-rw-r--r--
video
231
B
-rw-r--r--
vulkan
1.06
KB
-rw-r--r--
wayland
645
B
-rw-r--r--
web-data
811
B
-rw-r--r--
winbind
882
B
-rw-r--r--
wutmp
711
B
-rw-r--r--
xad
984
B
-rw-r--r--
xdg-desktop
782
B
-rw-r--r--
xdg-open
2.23
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : base
# vim:syntax=apparmor # ------------------------------------------------------------------ # # Copyright (C) 2002-2009 Novell/SUSE # Copyright (C) 2009-2011 Canonical Ltd. # # This program is free software; you can redistribute it and/or # modify it under the terms of version 2 of the GNU General Public # License published by the Free Software Foundation. # # ------------------------------------------------------------------ abi <abi/3.0>, include <abstractions/crypto> # (Note that the ldd profile has inlined this file; if you make # modifications here, please consider including them in the ldd # profile as well.) # The __canary_death_handler function writes a time-stamped log # message to /dev/log for logging by syslogd. So, /dev/log, timezones, # and localisations of date should be available EVERYWHERE, so # StackGuard, FormatGuard, etc., alerts can be properly logged. /dev/log w, /dev/random r, /dev/urandom r, # Allow access to the uuidd daemon (this daemon is a thin wrapper around # time and getrandom()/{,u}random and, when available, runs under an # unprivilged, dedicated user). @{run}/uuidd/request r, @{etc_ro}/locale/** r, @{etc_ro}/locale.alias r, @{etc_ro}/localtime r, /etc/writable/localtime r, /usr/share/locale-bundle/** r, /usr/share/locale-langpack/** r, /usr/share/locale/** r, /usr/share/**/locale/** r, /usr/share/zoneinfo/ r, /usr/share/zoneinfo/** r, /usr/share/X11/locale/** r, @{run}/systemd/journal/dev-log w, # systemd native journal API (see sd_journal_print(4)) @{run}/systemd/journal/socket w, # Nested containers and anything using systemd-cat need this. 'r' shouldn't # be required but applications fail without it. journald doesn't leak # anything when reading so this is ok. @{run}/systemd/journal/stdout rw, /usr/lib{,32,64}/locale/** mr, /usr/lib{,32,64}/gconv/*.so mr, /usr/lib{,32,64}/gconv/gconv-modules* mr, /usr/lib/@{multiarch}/gconv/*.so mr, /usr/lib/@{multiarch}/gconv/gconv-modules* mr, # used by glibc when binding to ephemeral ports @{etc_ro}/bindresvport.blacklist r, # ld.so.cache and ld are used to load shared libraries; they are best # available everywhere @{etc_ro}/ld.so.cache mr, @{etc_ro}/ld.so.conf r, @{etc_ro}/ld.so.conf.d/{,*.conf} r, @{etc_ro}/ld.so.preload r, /{usr/,}lib{,32,64}/ld{,32,64}-*.so mr, /{usr/,}lib/@{multiarch}/ld{,32,64}-*.so mr, /{usr/,}lib/tls/i686/{cmov,nosegneg}/ld-*.so mr, /{usr/,}lib/i386-linux-gnu/tls/i686/{cmov,nosegneg}/ld-*.so mr, /opt/*-linux-uclibc/lib/ld-uClibc*so* mr, # we might as well allow everything to use common libraries /{usr/,}lib{,32,64}/** r, /{usr/,}lib{,32,64}/**.so* mr, /{usr/,}lib/@{multiarch}/** r, /{usr/,}lib/@{multiarch}/**.so* mr, /{usr/,}lib/tls/i686/{cmov,nosegneg}/*.so* mr, /{usr/,}lib/i386-linux-gnu/tls/i686/{cmov,nosegneg}/*.so* mr, # FIPS-140-2 versions of some crypto libraries need to access their # associated integrity verification file, or they will abort. /{usr/,}lib{,32,64}/.lib*.so*.hmac r, /{usr/,}lib/@{multiarch}/.lib*.so*.hmac r, # /dev/null is pretty harmless and frequently used /dev/null rw, # as is /dev/zero /dev/zero rw, # recent glibc uses /dev/full in preference to /dev/null for programs # that don't have open fds at exec() /dev/full rw, # Sometimes used to determine kernel/user interfaces to use @{PROC}/sys/kernel/version r, # Depending on which glibc routine uses this file, base may not be the # best place -- but many profiles require it, and it is quite harmless. @{PROC}/sys/kernel/ngroups_max r, # glibc's sysconf(3) routine to determine free memory, etc @{PROC}/meminfo r, @{PROC}/stat r, @{PROC}/cpuinfo r, @{sys}/devices/system/cpu/ r, @{sys}/devices/system/cpu/online r, # glibc's *printf protections read the maps file @{PROC}/@{pid}/{maps,auxv,status} r, # libgcrypt reads some flags from /proc @{PROC}/sys/crypto/* r, # some applications will display license information /usr/share/common-licenses/** r, # glibc statvfs @{PROC}/filesystems r, # glibc malloc (man 5 proc) @{PROC}/sys/vm/overcommit_memory r, # Allow determining the highest valid capability of the running kernel @{PROC}/sys/kernel/cap_last_cap r, # Allow other processes to read our /proc entries, futexes, perf tracing and # kcmp for now (they will need 'read' in the first place). Administrators can # override with: # deny ptrace (readby) ... ptrace (readby), # Allow other processes to trace us by default (they will need 'trace' in # the first place). Administrators can override with: # deny ptrace (tracedby) ... ptrace (tracedby), # Allow us to ptrace read ourselves ptrace (read) peer=@{profile_name}, # Allow unconfined processes to send us signals by default signal (receive) peer=unconfined, # Allow us to signal ourselves signal peer=@{profile_name}, # Checking for PID existence is quite common so add it by default for now signal (receive, send) set=("exists"), # Allow us to create and use abstract and anonymous sockets unix peer=(label=@{profile_name}), # Allow unconfined processes to us via unix sockets unix (receive) peer=(label=unconfined), # Allow us to create abstract and anonymous sockets unix (create), # Allow us to getattr, getopt, setop and shutdown on unix sockets unix (getattr, getopt, setopt, shutdown), # Workaround https://launchpad.net/bugs/359338 until upstream handles stacked # filesystems generally. This does not appreciably decrease security with # Ubuntu profiles because the user is expected to have access to files owned # by him/her. Exceptions to this are explicit in the profiles. While this rule # grants access to those exceptions, the intended privacy is maintained due to # the encrypted contents of the files in this directory. Files in this # directory will also use filename encryption by default, so the files are # further protected. Also, with the use of 'owner', this rule properly # prevents access to the files from processes running under a different uid. # encrypted ~/.Private and old-style encrypted $HOME owner @{HOME}/.Private/ r, owner @{HOME}/.Private/** mrixwlk, # new-style encrypted $HOME owner @{HOMEDIRS}/.ecryptfs/*/.Private/ r, owner @{HOMEDIRS}/.ecryptfs/*/.Private/** mrixwlk, # Include additions to the abstraction include if exists <abstractions/base.d>
Close