| 2010-06-17 22:32:58 |
Jamie Strandboge |
description |
Binary package hint: apparmor
If I do the following:
$ sudo apparmor_parser -R /etc/apparmor.d/usr.bin.evince
$ evince &
$ sudo apparmor_parser -r /etc/apparmor.d/usr.bin.evince
$ sudo aa-status
I get:
1 processes are unconfined but have a profile defined.
/usr/bin/evince (1756)
Good.
If I do:
$ sudo apparmor_parser -R /etc/apparmor.d/usr.bin.firefox
$ firefox &
$ sudo apparmor_parser -r /etc/apparmor.d/usr.bin.firefox
$ sudo aa-status
I get:
0 processes are unconfined but have a profile defined.
This is because the firefox uses the following to define the pathname:
/usr/lib/firefox-3.5.*/firefox { ... }
aa-status should be updated to support path name globbing.
aa-status should support path name glo |
Binary package hint: apparmor
If I do the following:
$ sudo apparmor_parser -R /etc/apparmor.d/usr.bin.evince
$ evince &
$ sudo apparmor_parser -r /etc/apparmor.d/usr.bin.evince
$ sudo aa-status
I get:
1 processes are unconfined but have a profile defined.
/usr/bin/evince (1756)
Good.
If I do:
$ sudo apparmor_parser -R /etc/apparmor.d/usr.bin.firefox
$ firefox &
$ sudo apparmor_parser -r /etc/apparmor.d/usr.bin.firefox
$ sudo aa-status
I get:
0 processes are unconfined but have a profile defined.
This is because the firefox uses the following to define the pathname:
/usr/lib/firefox-3.5.*/firefox { ... }
aa-status should be updated to support path name globbing.
|
|
