Comment 0 for bug 595714

Binary package hint: apparmor

If I do the following:
$ sudo apparmor_parser -R /etc/apparmor.d/usr.bin.evince
$ evince &
$ sudo apparmor_parser -r /etc/apparmor.d/usr.bin.evince
$ sudo aa-status

I get:
1 processes are unconfined but have a profile defined.
   /usr/bin/evince (1756)

Good.

If I do:
$ sudo apparmor_parser -R /etc/apparmor.d/usr.bin.firefox
$ firefox &
$ sudo apparmor_parser -r /etc/apparmor.d/usr.bin.firefox
$ sudo aa-status

I get:
0 processes are unconfined but have a profile defined.

This is because the firefox uses the following to define the pathname:
/usr/lib/firefox-3.5.*/firefox { ... }

aa-status should be updated to support path name globbing.
aa-status should support path name glo