1 1.1 jruoho Policy: /usr/bin/lynx, Emulation: native Policy: /usr/bin/lynx, Emulation: native 2 1.1 jruoho > native-issetugid: permit 3 1.1 jruoho > native-mprotect: permit 4 1.1 jruoho > native-mmap: permit 5 1.1 jruoho native-__sysctl: permit native-__sysctl: permit 6 1.1 jruoho > native-fsread: filename eq "/var/run/ld.so.hints" then pe 7 1.1 jruoho > native-fstat: permit 8 1.1 jruoho native-close: permit native-close: permit 9 1.1 jruoho native-connect: sockaddr eq "inet-[127.0.0.1]:53" then pe | native-fsread: filename match "/usr/lib/libssl.so.*" then 10 1.1 jruoho native-connect: sockaddr match "inet-\\\[*\\\]:80" then p | native-read: permit 11 1.1 jruoho native-exit: permit | native-fsread: filename match "/usr/lib/libcrypto.so.*" t 12 1.1 jruoho native-fcntl: cmd eq "F_SETFD" then permit | native-fsread: filename match "/usr/lib/libncurses.so.*" 13 1.1 jruoho native-fsread: filename eq "/" then permit | native-fsread: filename match "/usr/lib/libc.so.*" then p 14 1.1 jruoho native-fsread: filename match "/<non-existent filename>: | native-munmap: permit 15 1.1 jruoho native-fsread: filename eq "/etc/lynx.cfg" then permit | native-sigprocmask: permit 16 1.1 jruoho native-fsread: filename eq "/etc/malloc.conf" then permit native-fsread: filename eq "/etc/malloc.conf" then permit 17 1.1 jruoho native-fsread: filename eq "/etc/resolv.conf" then permit | native-getpid: permit 18 1.1 jruoho native-fsread: filename eq "/etc/utmp" then permit < 19 1.1 jruoho native-fsread: filename eq "/home" then permit < 20 1.1 jruoho native-fsread: filename eq "$HOME" then permit < 21 1.1 jruoho native-fsread: filename eq "$HOME/.lynx-keymaps" then per < 22 1.1 jruoho native-fsread: filename eq "$HOME/.lynxrc" then permit < 23 1.1 jruoho native-fsread: filename eq "$HOME/.mailcap" then permit < 24 1.1 jruoho native-fsread: filename eq "$HOME/.mime.types" then permi < 25 1.1 jruoho native-fsread: filename eq "$HOME/.terminfo" then permit < 26 1.1 jruoho native-fsread: filename eq "$HOME/.terminfo.db" then perm < 27 1.1 jruoho native-fsread: filename eq "/obj" then permit < 28 1.1 jruoho native-fsread: filename eq "/tmp" then permit native-fsread: filename eq "/tmp" then permit 29 1.1 jruoho > native-fswrite: filename match "/tmp/lynx-*" then permit 30 1.1 jruoho native-fsread: filename match "/tmp/lynx-*/." then permit native-fsread: filename match "/tmp/lynx-*/." then permit 31 1.1 jruoho > native-fsread: filename eq "$HOME" then permit 32 1.1 jruoho > native-fsread: filename eq "/etc/lynx.cfg" then permit 33 1.1 jruoho > native-fsread: filename eq "/" then permit 34 1.1 jruoho > native-fsread: filename eq "/usr/obj/bin/systrace/." then 35 1.1 jruoho > native-fsread: filename eq "/usr/obj/bin" then permit 36 1.1 jruoho > native-fcntl: permit 37 1.1 jruoho > native-getdirentries: permit 38 1.1 jruoho > native-lseek: permit 39 1.1 jruoho > native-fsread: filename eq "/usr/obj" then permit 40 1.1 jruoho native-fsread: filename eq "/usr" then permit native-fsread: filename eq "/usr" then permit 41 1.1 jruoho native-fsread: filename eq "/usr/bin" then permit native-fsread: filename eq "/usr/bin" then permit 42 1.1 jruoho native-fsread: filename eq "/usr/games" then permit native-fsread: filename eq "/usr/games" then permit 43 1.1 jruoho native-fsread: filename eq "/usr/include" then permit native-fsread: filename eq "/usr/include" then permit 44 1.1 jruoho native-fsread: filename eq "/usr/lib" then permit native-fsread: filename eq "/usr/lib" then permit 45 1.1 jruoho native-fsread: filename match "/usr/lib/libc.so.*" then p < 46 1.1 jruoho native-fsread: filename match "/usr/lib/libcrypto.so.*" t < 47 1.1 jruoho native-fsread: filename match "/usr/lib/libncurses.so.*" < 48 1.1 jruoho native-fsread: filename match "/usr/lib/libssl.so.*" then < 49 1.1 jruoho native-fsread: filename eq "/usr/libdata" then permit native-fsread: filename eq "/usr/libdata" then permit 50 1.1 jruoho native-fsread: filename eq "/usr/libexec" then permit native-fsread: filename eq "/usr/libexec" then permit 51 1.1 jruoho native-fsread: filename eq "/usr/lkm" then permit native-fsread: filename eq "/usr/lkm" then permit 52 1.1 jruoho native-fsread: filename eq "/usr/local" then permit native-fsread: filename eq "/usr/local" then permit 53 1.1 jruoho native-fsread: filename eq "/usr/mdec" then permit native-fsread: filename eq "/usr/mdec" then permit 54 1.1 jruoho native-fsread: filename eq "/usr/obj" then permit | native-fsread: filename eq "/home" then permit 55 1.1 jruoho native-fsread: filename eq "/usr/obj/bin" then permit | native-fsread: filename eq "/obj" then permit 56 1.1 jruoho native-fsread: filename eq "/usr/obj/bin/systrace/." then | native-fsread: filename eq "$HOME/.lynxrc" then permit 57 1.1 jruoho > native-fsread: filename match "/<non-existent filename>: 58 1.1 jruoho native-fsread: filename eq "/usr/obj/bin/systrace/.mailca native-fsread: filename eq "/usr/obj/bin/systrace/.mailca 59 1.1 jruoho > native-fsread: filename eq "$HOME/.mailcap" then permit 60 1.1 jruoho native-fsread: filename eq "/usr/obj/bin/systrace/.mime.t native-fsread: filename eq "/usr/obj/bin/systrace/.mime.t 61 1.1 jruoho > native-fsread: filename eq "$HOME/.mime.types" then permi 62 1.1 jruoho > native-sigaction: permit 63 1.1 jruoho > native-ioctl: permit 64 1.1 jruoho > native-fsread: filename eq "$HOME/.terminfo.db" then perm 65 1.1 jruoho > native-fsread: filename eq "$HOME/.terminfo" then permit 66 1.1 jruoho native-fsread: filename eq "/usr/share/misc/terminfo.db" native-fsread: filename eq "/usr/share/misc/terminfo.db" 67 1.1 jruoho > native-pread: permit 68 1.1 jruoho > native-write: permit 69 1.1 jruoho > native-fsread: filename eq "$HOME/.lynx-keymaps" then per 70 1.1 jruoho native-fsread: filename eq "/var/run/dev.db" then permit native-fsread: filename eq "/var/run/dev.db" then permit 71 1.1 jruoho native-fsread: filename eq "/var/run/ld.so.hints" then pe | native-fsread: filename eq "/etc/utmp" then permit 72 1.1 jruoho native-fstat: permit < 73 1.1 jruoho native-fswrite: filename match "/tmp/lynx-*" then permit < 74 1.1 jruoho native-getdirentries: permit < 75 1.1 jruoho native-getpid: permit < 76 1.1 jruoho native-gettimeofday: permit < 77 1.1 jruoho native-ioctl: permit < 78 1.1 jruoho native-issetugid: permit < 79 1.1 jruoho native-lseek: permit < 80 1.1 jruoho native-mmap: permit < 81 1.1 jruoho native-mprotect: prot eq "PROT_READ" then permit < 82 1.1 jruoho native-mprotect: prot eq "PROT_READ|PROT_EXEC" then permi < 83 1.1 jruoho native-mprotect: prot eq "PROT_READ|PROT_WRITE" then perm < 84 1.1 jruoho native-mprotect: prot eq "PROT_READ|PROT_WRITE|PROT_EXEC" < 85 1.1 jruoho native-munmap: permit < 86 1.1 jruoho native-nanosleep: permit < 87 1.1 jruoho native-poll: permit native-poll: permit 88 1.1 jruoho native-pread: permit | native-nanosleep: permit 89 1.1 jruoho native-read: permit | native-gettimeofday: permit 90 1.1 jruoho native-recvfrom: permit | native-fsread: filename eq "/etc/resolv.conf" then permit 91 1.1 jruoho native-select: permit < 92 1.1 jruoho native-sendto: true then permit < 93 1.1 jruoho native-sigaction: permit < 94 1.1 jruoho native-sigprocmask: permit < 95 1.1 jruoho native-socket: sockdom eq "AF_INET" and socktype eq "SOCK native-socket: sockdom eq "AF_INET" and socktype eq "SOCK 96 1.1 jruoho > native-connect: sockaddr eq "inet-[127.0.0.1]:53" then pe 97 1.1 jruoho > native-sendto: true then permit 98 1.1 jruoho > native-select: permit 99 1.1 jruoho > native-recvfrom: permit 100 1.1 jruoho native-socket: sockdom eq "AF_INET" and socktype eq "SOCK native-socket: sockdom eq "AF_INET" and socktype eq "SOCK 101 1.1 jruoho native-write: permit | native-connect: sockaddr match "inet-\\\[*\\\]:80" then p 102 1.1 jruoho > native-exit: permit 103
Indexes created Tue Sep 30 11:09:46 GMT 2025