File apparmor-profiles-dovecot of Package apparmor.import4985

---
 profiles/apparmor.d/usr.lib.dovecot.deliver |    1 +
 profiles/apparmor.d/usr.lib.dovecot.imap    |    4 ++++
 profiles/apparmor.d/usr.lib.dovecot.pop3    |    1 +
 profiles/apparmor.d/usr.sbin.dovecot        |   11 +++++++----
 4 files changed, 13 insertions(+), 4 deletions(-)

--- a/profiles/apparmor.d/usr.lib.dovecot.deliver
+++ b/profiles/apparmor.d/usr.lib.dovecot.deliver
@@ -17,4 +17,5 @@
   @{HOME}/mail/.imap/** klrw,
   /usr/lib/dovecot/deliver mr,
   /var/mail/* klrw,
+  /var/spool/mail/* klrw,
 }
--- a/profiles/apparmor.d/usr.lib.dovecot.imap
+++ b/profiles/apparmor.d/usr.lib.dovecot.imap
@@ -11,9 +11,13 @@
   @{HOME} r,
   @{HOME}/Maildir/ rw,
   @{HOME}/Maildir/** klrw,
+  @{HOME}/Mail/ rw,
+  @{HOME}/Mail/* klrw,
+  @{HOME}/Mail/.imap/** klrw,
   @{HOME}/mail/ rw,
   @{HOME}/mail/* klrw,
   @{HOME}/mail/.imap/** klrw,
   /usr/lib/dovecot/imap mr,
   /var/mail/* klrw,
+  /var/spool/mail/* klrw,
 }
--- a/profiles/apparmor.d/usr.lib.dovecot.pop3
+++ b/profiles/apparmor.d/usr.lib.dovecot.pop3
@@ -9,6 +9,7 @@
   capability setuid,
 
   /var/mail/* klrw,
+  /var/spool/mail/* klrw,
   @{HOME} r,
   @{HOME}/mail/* klrw,
   @{HOME}/mail/.imap/** klrw,
--- a/profiles/apparmor.d/usr.sbin.dovecot
+++ b/profiles/apparmor.d/usr.sbin.dovecot
@@ -13,9 +13,12 @@
   capability setgid,
   capability setuid,
   capability sys_chroot,
+  capability fsetid,
 
   /etc/dovecot/** r,
   /etc/mtab r,
+  /etc/lsb-release r,
+  /etc/SuSE-release r,
   /usr/lib/dovecot/dovecot-auth Pxmr,
   /usr/lib/dovecot/imap Pxmr,
   /usr/lib/dovecot/imap-login Pxmr,
@@ -26,8 +29,8 @@
   /usr/lib/dovecot/managesieve-login Pxmr,
   /usr/lib/dovecot/ssl-build-param ixr,
   /usr/sbin/dovecot mr,
-  /var/lib/dovecot/ w,
-  /var/lib/dovecot/* krw,
-  /var/run/dovecot/ rw,
-  /var/run/dovecot/** rw,
+  /var/lib/dovecot/ wl,
+  /var/lib/dovecot/* krwl,
+  /var/run/dovecot/ rwl,
+  /var/run/dovecot/** rwl,
 }
openSUSE Build Service is sponsored by