-
**Is your feature request related to a problem? Please describe**.
Improve zero day exploit protections for containers running untrusted code
**Describe the solution you'd like**.
Ability t…
-
Parent issue: https://github.com/freedomofpress/dangerzone/issues/221
If an attacker manages to escape the container, we want to restrict them as much as possible. One way to do so is by using AppA…
-
Hi, I have build success into this folder, give all permission for this, but I cant add to virt manager xml this patch build,
only run with default patch /usr/bin/qemu-system-x86_64.
I use distro De…
-
It looks like AppArmor flags are totally missing from kernel configuration. Debian kernel, on the other hand, is configured as follows:
```
$ grep APPARMOR /boot/config-5.18.0-0.deb11.4-amd64
CONF…
meden updated
2 years ago
-
# Add support for AppArmor
This applies a container process inside VM, not a hypervisor process.
## New feature request
The kata-agent does not support AppArmor currently, so the agent cannot…
-
Migrate debops-contrib.apparmor role into the main playbook, converting the configuration to use parse_kv_items
Remove the custom grub support in the apparmor role and use debops.grub to enable/disab…
-
# Required information
* Distribution: arch linux
* Distribution version: rolling
```shell
❯ lxc-start --version
5.0.3
❯ uname -a
Linux argon 6.5.6-arch2-1 #1 SMP PREEMPT_DYNAMIC Sat, 07 …
-
When the apparmor template is changed, like was done recently to fix issue #1898 via PR #2004, the upstream version was not chagned, which means the [default apparmor profile name](https://github.com/…
-
Komentarze dla postu: https://morfikov.github.io/post/apparmor-profilowanie-aplikacji/
-
From a security standpoint, it is critical that MariaDB is profiled and run with an AppArmor profile so as to prevent future zero-days from being able to exploit a problem in MariaDB's source code to …