diff --git a/photoprism/apparmor.txt b/photoprism/apparmor.txt
index d20fe3028..d23dd8813 100644
--- a/photoprism/apparmor.txt
+++ b/photoprism/apparmor.txt
@@ -20,9 +20,9 @@ profile photoprism flags=(attach_disconnected,mediate_deleted) {
 
   capability setgid,
   capability setuid,
+  capability dac_override,
   capability sys_admin,
   capability dac_read_search,
-  capability dac_override,
   capability sys_rawio,
 
 # S6-Overlay
@@ -51,9 +51,20 @@ profile photoprism flags=(attach_disconnected,mediate_deleted) {
   /dev/nvme0 mrwkl,
   /dev/nvme1 mrwkl,
   /dev/mmcblk0p1 mrwkl,
-  /dev/ttyUSB0 mrwkl,
   /dev/* mrwkl,
   /tmp/** mrkwl,
+  /dev/sda mrwkl,
+  /dev/sdb mrwkl,
+  /dev/sdc mrwkl,
+  /dev/sdd mrwkl,
+  /dev/sde mrwkl,
+  /dev/sdf mrwkl,
+  /dev/sdg mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/nvme2 mrwkl,
+  /dev/nvme3 mrwkl,
+  /dev/nvme4 mrwkl,
 
   # Data access
   /data/** rw,