Download
Share
Print this page
  1. Manuals
  2. Brands
  3. Novell Manuals
  4. Software
  5. APPARMOR 1.2 - QUICK GUIDE AND
  6. Installation & quick start manual

Novell APPARMOR 1.2 - QUICK GUIDE AND Installation & Quick Start Manual

Hide thumbs

Advertisement

Quick Links

Download this manual
Novell AppArmor
Powered by
Immunix
Installation and
QuickStart Guide
www.novell.com
1.2
09/29/2005

Advertisement

loading
Need help?

Need help?

Do you have a question about the APPARMOR 1.2 - QUICK GUIDE AND and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Novell APPARMOR 1.2 - QUICK GUIDE AND

Summary of Contents for Novell APPARMOR 1.2 - QUICK GUIDE AND

  • Page 1 Novell AppArmor Powered by Immunix Installation and QuickStart Guide www.novell.com 09/29/2005...
  • Page 2 Further, Novell, Inc. reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.
  • Page 3 Third-Party Materials All third-party trademarks are the property of their respective owners. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTIC- ULAR PURPOSE ARE DISCLAIMED.

  • Page 5: Table Of Contents

    Building and Modifying Profiles ....Configuring Novell AppArmor Event Notification and Reports ..Updating Your Profiles ..... . .

  • Page 7: Introduction To Novell Apparmor

    Effective hardening of a computer system requires minimizing the number of programs that mediate privilege then securing the programs as much as possible. With Novell AppArmor, you only need to profile the programs that are exposed to attack in your environment, which drastically reduces the amount of work required to harden your computer.
  • Page 8 This guide outlines the basic tasks that need to be performed with AppArmor to effec- tively harden a system. For more in-depth information, refer to Novell AppArmor Powered by Immunix 1.2 Administration Guide.

  • Page 9: Installing Novell Apparmor

    Users installing either a GNOME or the KDE desktop selection can skip this section, because Novell® AppArmor is installed by default as part of these selections. If installing neither of these desktops or even going for en entirely text-based environ- ment, do the following to install the required packages using the YaST package manager.
  • Page 10 4 Select all these packages for installation then select Accept. YaST resolves any dependencies and installs all the packages for you. 5 After YaST has finished updating the system configuration, select Finish to leave the package manager.

  • Page 11: Enabling Novell Apparmor

    Enabling Novell AppArmor After Novell® AppArmor has been installed, explicitly enable it to make sure that it is started whenever your system boots. Use the YaST System Services (Runlevel) module for this task: 1 Log in as root and start YaST.
  • Page 12 To enable AppArmor temporarily—for the duration of one session only—proceed as follows: 1 Log in as root and start YaST. 2 Start Novell AppArmor → AppArmor Control Panel. 3 Set the AppArmor Status to AppArmor is enabled by clicking Configure → Enable → OK.

  • Page 13: Getting Started With Profiling Applications

    Getting Started with Profiling Applications Prepare a successful deployment of Novell® AppArmor on your system by carefully considering the following items: 1 Determine the applications to profile. Read more on this in Section 4.1, “Choosing the Applications to Profile” (page 13).

  • Page 14: Building And Modifying Profiles

    Immunix 1.2 Administration Guide). 4.2 Building and Modifying Profiles Novell® AppArmor on SUSE Linux ships with a preconfigured set of profiles for the most important applications. In addition to that, you can use AppArmor to create your own profiles for a set of applications defined in /etc/apparmor/README...
  • Page 15 There are two ways of managing profiles. One is to use the graphical front-end provided by the YaST Novell AppArmor modules and the other is to use the command line tools provided by the AppArmor suite itself. Both methods basically work the same way.

  • Page 16: Configuring Novell Apparmor Event Notification And Reports

    4.3 Configuring Novell AppArmor Event Notification and Reports Set up event notification in Novell® AppArmor so you can review security events. Event Notification is an Novell AppArmor feature that informs a specified e-mail recip- ient when systemic Novell AppArmor activity occurs under the chosen severity level.
  • Page 17 1 Make sure that a mail server is running on your system to deliver the event noti- fications. 2 Log in as root and start YaST. Then select Novell AppArmor → AppArmor Control Panel ). 3 In Enable Security Event Notification section, select Configure.

  • Page 18: Updating Your Profiles

    4 Leave YaST after you answered all questions. Your changes are applied to the respective profiles. TIP: For More Information For more information about updating your profiles from the system logs, refer to Section “Updating Profiles from Syslog Entries” (Chapter 3, Building Novell AppArmor Profiles, ↑Novell AppArmor Powered by Immunix 1.2 Administration Guide).

This manual is also suitable for:

Apparmor 1.2