Two Methods Of Profiling; Standalone Profiling - Novell APPARMOR Admin Manual

U s e r ' s G u i d e
3. To go to the Novell AppArmor directory, type cd /etc/subdo-
main.d/.
4. Type ls to view all the Novell AppArmor profiles that are currently
installed.
5. Delete the profile exiting profile by typing rm profilename.
6. Restart Novell AppArmor by typing
restart in a terminal window.

Two Methods of Profiling

G i v e n t h e s y n t a x f o r N o v e l l A p p A r mo r p r o f i l e s i n " Profile Components
and Syntax" o n p a g e1 7 , o n e could create profiles without using the
tools. However, the effort involved would be substantial. To avoid such
a hassle, use the Novell AppArmor tools to automate the creation and
refinement of profiles.
There are two ways to approach creating Novell AppArmor profiles,
along with tools to support both methods.
• A standalone method ( f o r mo r e i n f o r ma t i o n , r e f e r t o " Standalone
Profiling" o n p a g e5 0 ) , s u i t a b l e f o r p r o f i l i n g s ma l l a p p l i c a t i o n s t h a t
have a finite run time, such as user client applications like mail cli-
ents.
• A systemic method ( f o r mo r e i n f o r ma t i o n , r e f e r t o " Systemic Profil-
ing" o n p a g e5 1 ) , s u i t a b l e f o r p r o f i l i n g l a r g e n u mb e r s o f p r o g r a ms a l l
at once, and for profiling applications that may run for days, weeks,
or continuously across reboots, such as network server applications
like web servers and mail servers.
Automated profile development becomes more manageable with the
Novell security tools:
1. Decide which profiling method suits your needs.
2. Perform a static analysis. Run either genprof or autodep, depend-
ing on the profiling method you have chosen.
3. Enable dynamic learning. Activate learning mode for all profiled
programs.

Standalone Profiling

Standalone profile generation and improvement is managed by a
50
/etc/init.d/subdomain