Text only | Text with Images

Artix Linux Forum

Artix Linux => System => Topic started by: Jack20 on 10 September 2019, 13:37:28

Title: Apparmor and configuration
Post by: Jack20 on 10 September 2019, 13:37:28
Apparmor and configuration

I have to the following questions:

1. Does the artix-kernel have all modules for apparmor?
2. Should the kernel (hardened) be instaled?
3. Apparmor is  together with firejail instaled.(Double package), How should the configuration be made?
4. What is with profiles? How are the profiles generated?

I thank for your help
Title: Re: Apparmor and configuration
Post by: ####### on 11 September 2019, 04:05:57
From /proc/config.gz:
Code: [Select]
CONFIG_SECURITY_APPARMOR=y
CONFIG_SECURITY_APPARMOR_HASH=y
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set

# CONFIG_DEFAULT_SECURITY_APPARMOR is not set

"If AppArmor is not the default security module it can be enabled by passing security=apparmor on the kernel’s command line."
Kernel docs (https://www.kernel.org/doc/html/v4.14/admin-guide/LSM/apparmor.html)
It looks promising from the kernel config aspect, although you might need that command line addition, possibly adding it with /etc/default/grub.
Text only | Text with Images