Bug #9534: Tighten AppArmor policy
Mount a tmpfs on /var/tmp, to mitigate the hardlinks permissions open by the user-tmp AppArmor abstraction
- Assignee changed from intrigeri to anonym
- % Done changed from 10 to 40
- QA Check set to Ready for QA
Passes the test suite on Jenkins. Note: I did not verify that what I did indeed results in a tmpfs being mounted on
/var/tmp (because 1. I was optimistic; and 2. you would have to check it anyway while reviewing'n'merging). So if you prefer, reassign to me and I'll check myself.