-
platform: Ubuntu 14.10 desktop x64
related apps installed: apparmor, apparmor-docs, apparmor-notify, apparmor-profiles, apparmor-utils
run: sudo tlsdate -V
The output in the terminal appears correct…
-
They are so many profiles now....
maybe have subfolders for local and commonly used files.
A bit like apparmor profiles.
-
I can install snapd in my raspberrypi, but can't snap install wekan because error: cannot install "wekan": snap not found.
I have try it for many time but failed.
Could you help me. thanks!
d…
-
https://github.com/Kicksecure/apparmor-profile-torbrowser/blob/f70f61ed101002f72fa33ff0c746a492c6887ce6/etc/apparmor.d/home.tor-browser.firefox#L101
This rule brings potential side channel (W^X viola…
-
**Describe the bug**
ArmCord appears to be continually scanning through /proc. Under Ubuntu, when ArmCord is installed via a snap, AppArmor objects to ArmCord's attempts to open the /proc/*/cmdline f…
-
The "--privileged" flag does a lot "under the hood"; apart from enabling all capabilities, it also disables apparmor profiles, seccomp profiles, etc.
We should document exactly what the flag does, so…
-
**Describe the bug**
Parsing the JSON output from a shell command runs into an error.
**To Reproduce**
Steps to reproduce the behavior:
1. create `debian11_cis_cnspec` via https://github.com…
-
Add the security options to the `nerdctl run`.
- [x] [Seccomp security profiles for Docker](https://docs.docker.com/engine/security/seccomp/)
- [x] [AppArmor security profiles for Docker](https:…
-
bubblewrap is becoming a popular sandbox tool, so we need be able to use it inside unprivileged docker to containerize solutions.
As you may know `bwrap` works correctly in a privileged container:
…
-
This {ticket,repo} serves as a designated channel for comments from the AppArmor community. We'd like to ask those of whom to audit our policies before we release anything official, bringing to our at…