AppArmor

From TeamSpeak Wiki
Revision as of 05:36, 6 January 2021 by Admin (talk | contribs) (Created page with "AppArmor allows you to further shield your TeamSpeak instance from code based attacks. This is a SAMPLE profile and WILL need to eb changed so it works on your system. <block...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

AppArmor allows you to further shield your TeamSpeak instance from code based attacks. This is a SAMPLE profile and WILL need to eb changed so it works on your system.

# Last Modified: Thu Oct 22 19:18:38 2020

  1. include <tunables/global>
  1. vim:syntax=apparmor
  1. AppArmor policy for ts3server
  1. ###AUTHOR###
  1. ###COPYRIGHT###
  1. ###COMMENT###
  1. No template variables specified

/home/teamspeak/teamspeak3-server_linux-amd64/ts3server flags=(complain) {

  #include <abstractions/base>

  network inet dgram,

  network inet stream,

  network inet6 dgram,

  network netlink raw,

  /etc/hosts r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/channel_**/ r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/channel_**/* r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/channel_**/* w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/internal/ r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/internal/avatar_** r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/internal/avatar_** w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/internal/icons/ r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/files/virtualserver_**/internal/icons/icon_** r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/.ts3server_license_accepted r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/query_ip_blacklist.txt r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/query_ip_whitelist.txt r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/GeoLite2-Country.mmdb r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/redist/libmariadb.so.2 r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/libts3_ssh.so r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/libts3db_mariadb.so r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/libts3db_sqlite3.so r,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/ts3server.sqlitedb w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/ts3server.sqlitedb-shm w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/ts3server.sqlitedb-wal w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/ssh_host_rsa_key w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/ts3server.ini w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/ts3server.pid w,

  owner /home/teamspeak/teamspeak3-server_linux-amd64/licensekey.dat w,

Retrieved from ‘https://teamspeak.wiki/index.php?title=AppArmor&oldid=31