1;; Copyright (c) 2008 Apple Inc. All Rights reserved. 2;; 3;; sshd - profile for privilege separated children 4;; 5;; WARNING: The sandbox rules in this file currently constitute 6;; Apple System Private Interface and are subject to change at any time and 7;; without notice. 8;; 9 10(version 1) 11 12(deny default) 13 14(allow file-chroot) 15(allow file-read-metadata (literal "/var")) 16 17(allow sysctl-read) 18(allow mach-per-user-lookup) 19(allow mach-lookup 20 (global-name "com.apple.system.notification_center") 21 (global-name "com.apple.system.logger")) 22