Profile Components And Syntax; Breaking Down The Apparmor Profile Into Its Parts - Novell APPARMOR Admin Manual
Hide thumbs
Also See for APPARMOR:
- Quick start manual (5 pages) ,
- Installation & quick start manual (4 pages) ,
- Quick start card (7 pages)
Table of Contents
Advertisement
Profile Components and Syntax
Chapter 4 How to Build Novell AppArmor
Profiles
This chapter explains how to build and manage Novell AppArmor pro-
files. You are ready to build Novell AppArmor profiles once you select
t h e p r o g r a ms t o b e p r o f i l e d . F o r h e l p w i t h t h i s , r e f e r t o " What Should
You Immunize?" o n p a g e1 1 .
Profile Components and Syntax
This section details the syntax or makeup of Novell AppArmor profiles.
A n e x a mp l e i l l u s t r a t i n g t h i s s y n t a x i s p r e s e n t e d o n " Breaking Down the
Novell AppArmor Profile Into Its Parts" o n p a g e1 7 .
Breaking Down the Novell AppArmor Profile Into Its
Parts
Novell AppArmor profile components are called Novell AppArmor
Rules. Currently there are two main types of Novell AppArmor rules,
path entries and capability entries. Path entries specify what the pro-
cess can access in the filesystem and Capability entries provide a
more fine-grained control over what a confined process is allowed to
do through other system calls that require privileges. Includes are a
type of meta-rule or directives that pull in path and capability entries
from other files.
17
Advertisement
Table of Contents
