AppArmor is able to restrict what programs can do and access based on policies for those programs.
See AppArmor in the Debian Wiki.
By default (e.g. no auditd installed) log messages from AppArmor are
logged via syslog to the kernel facility which usually ends up under
/var/log/kern.log
.
This role requires at least Ansible v2.1.3
. To install it, run:
ansible-galaxy install debops-contrib.apparmor
More information about debops-contrib.apparmor
can be found in the
official debops-contrib.apparmor documentation.
Please note that this repository is not the upstream repository where changes should be contributed to. Head over to https://github.com/debops/debops where you can find the contents of this repo and where changes are welcome.
You may need to include missing roles from the DebOps common playbook into your playbook.
Try DebOps now for a complete solution to run your Debian-based infrastructure.
License: GPL-3.0
This role is part of DebOps Contrib. README generated by ansigenome.