Apparmor weitere Profile: Unterschied zwischen den Versionen

Aus Xinux Wiki
Zur Navigation springen Zur Suche springen
(Die Seite wurde neu angelegt: „=Installation= *apt install apparmor-profile =Reload= *systemctl reload apparmor.service“)
 
 
Zeile 3: Zeile 3:
 
=Reload=
 
=Reload=
 
*systemctl reload apparmor.service
 
*systemctl reload apparmor.service
 +
=Neue Profile=
 +
*aa-status
 +
<pre>
 +
apparmor module is loaded.
 +
30 profiles are loaded.
 +
10 profiles are in enforce mode.
 +
  /usr/bin/man
 +
  /usr/lib/ipsec/charon
 +
  /usr/lib/ipsec/stroke
 +
  apache2//phpmyadmin-a2
 +
  lsb_release
 +
  man_filter
 +
  man_groff
 +
  nvidia_modprobe
 +
  nvidia_modprobe//kmod
 +
  tcpdump
 +
20 profiles are in complain mode.
 +
  /usr/bin/hund
 +
  /usr/bin/katze
 +
  /usr/sbin/dnsmasq
 +
  /usr/sbin/dnsmasq//libvirt_leaseshelper
 +
  apache2
 +
  apache2//DEFAULT_URI
 +
  apache2//HANDLING_UNTRUSTED_INPUT
 +
  avahi-daemon
 +
  identd
 +
  klogd
 +
  mdnsd
 +
  nmbd
 +
  nscd
 +
  ping
 +
  smbd
 +
  smbldap-useradd
 +
  smbldap-useradd///etc/init.d/nscd
 +
  syslog-ng
 +
  syslogd
 +
  traceroute
 +
1 processes have profiles defined.
 +
0 processes are in enforce mode.
 +
0 processes are in complain mode.
 +
1 processes are unconfined but have a profile defined.
 +
  /usr/lib/ipsec/charon (385)
 +
</pre>

Aktuelle Version vom 13. Mai 2022, 09:12 Uhr

Installation

  • apt install apparmor-profile

Reload

  • systemctl reload apparmor.service

Neue Profile

  • aa-status
apparmor module is loaded.
30 profiles are loaded.
10 profiles are in enforce mode.
   /usr/bin/man
   /usr/lib/ipsec/charon
   /usr/lib/ipsec/stroke
   apache2//phpmyadmin-a2
   lsb_release
   man_filter
   man_groff
   nvidia_modprobe
   nvidia_modprobe//kmod
   tcpdump
20 profiles are in complain mode.
   /usr/bin/hund
   /usr/bin/katze
   /usr/sbin/dnsmasq
   /usr/sbin/dnsmasq//libvirt_leaseshelper
   apache2
   apache2//DEFAULT_URI
   apache2//HANDLING_UNTRUSTED_INPUT
   avahi-daemon
   identd
   klogd
   mdnsd
   nmbd
   nscd
   ping
   smbd
   smbldap-useradd
   smbldap-useradd///etc/init.d/nscd
   syslog-ng
   syslogd
   traceroute
1 processes have profiles defined.
0 processes are in enforce mode.
0 processes are in complain mode.
1 processes are unconfined but have a profile defined.
   /usr/lib/ipsec/charon (385)
Abgerufen von „http://wiki.ixheim.de/index.php?title=Apparmor_weitere_Profile&oldid=33202