Overview

File unix-chkpwd-add-read-capability.path of Package apparmor.39233

--- ./profiles/apparmor.d/unix-chkpwd.orig	2025-04-22 16:25:45.502540282 +0200
+++ ./profiles/apparmor.d/unix-chkpwd	2025-05-05 17:44:05.292446725 +0200
@@ -17,6 +17,8 @@ profile unix-chkpwd /{,usr/}{,s}bin/unix
 
   # To write records to the kernel auditing log.
   capability audit_write,
+  # To read shadow with 000 permissions.
+  capability dac_read_search,
 
   network netlink raw,
openSUSE Build Service is sponsored by
Places