search

roddhjav / apparmor.d

Full set of AppArmor profiles (~ 1500 profiles)
https://apparmor.pujol.io
GNU General Public License v2.0
468 stars 46 forks source link

iotop needs netlink raw #615

Open cboltz opened 3 days ago

cboltz commented 3 days ago

Running iotop on Tumbleweed, the audit.log shows denials for netlink raw. Needed rules:

 network (getattr) netlink raw,
 network (receive) netlink raw,
 network (send) netlink raw,

which can be merged to

 network (getattr, receive, send) netlink raw,
roddhjav commented 2 days ago

Would adding network netlink raw, be enough? and quite similar?

cboltz commented 2 days ago

That is a bit more permissive, but will of course also work.