How do I use a Whitelist approach for some files with App Armor?
Clash Royale CLAN TAG#URR8PPP up vote
1
down vote
favorite
I'm pretty new to using AppArmor and am unaware of all it's features. I was wondering if it is possible to apply Whitelisting behavior to some files with App Armor?
I think whitelisting and blacklisting is pretty well understood but, just so there are no misunderstanding, here is my definition:
Whitelist Approach to Access: tell App Armor that no Apps are to even be able to read certain files or write in them without being added to a white list (even if they don't have profiles).
Blacklist: as far as I can tell, this is what App Armor uses by default. If an newly installed application does not have an already existing App Profile, it will have access to everything that the user running it has access to (that is, until you make it's App armor profile and specifically interdict it).
That's ok for most applications, but I'd feel much better if for some important files, access is blocked to every app until I give the goahead.
Is there anyway of doing this? If so, can you please tell me how to do it?
security firewall apparmor
asked Apr 22 at 8:10
thebunnyrules
33529
add a comment |Â
up vote
1
down vote
favorite
I'm pretty new to using AppArmor and am unaware of all it's features. I was wondering if it is possible to apply Whitelisting behavior to some files with App Armor?
I think whitelisting and blacklisting is pretty well understood but, just so there are no misunderstanding, here is my definition:
Whitelist Approach to Access: tell App Armor that no Apps are to even be able to read certain files or write in them without being added to a white list (even if they don't have profiles).
Blacklist: as far as I can tell, this is what App Armor uses by default. If an newly installed application does not have an already existing App Profile, it will have access to everything that the user running it has access to (that is, until you make it's App armor profile and specifically interdict it).
That's ok for most applications, but I'd feel much better if for some important files, access is blocked to every app until I give the goahead.
Is there anyway of doing this? If so, can you please tell me how to do it?
security firewall apparmor
asked Apr 22 at 8:10
thebunnyrules
33529
add a comment |Â
up vote
1
down vote
favorite
up vote
1
down vote
favorite
I'm pretty new to using AppArmor and am unaware of all it's features. I was wondering if it is possible to apply Whitelisting behavior to some files with App Armor?
I think whitelisting and blacklisting is pretty well understood but, just so there are no misunderstanding, here is my definition:
Whitelist Approach to Access: tell App Armor that no Apps are to even be able to read certain files or write in them without being added to a white list (even if they don't have profiles).
Blacklist: as far as I can tell, this is what App Armor uses by default. If an newly installed application does not have an already existing App Profile, it will have access to everything that the user running it has access to (that is, until you make it's App armor profile and specifically interdict it).
That's ok for most applications, but I'd feel much better if for some important files, access is blocked to every app until I give the goahead.
Is there anyway of doing this? If so, can you please tell me how to do it?
security firewall apparmor
asked Apr 22 at 8:10
thebunnyrules
33529
I'm pretty new to using AppArmor and am unaware of all it's features. I was wondering if it is possible to apply Whitelisting behavior to some files with App Armor?
I think whitelisting and blacklisting is pretty well understood but, just so there are no misunderstanding, here is my definition:
Whitelist Approach to Access: tell App Armor that no Apps are to even be able to read certain files or write in them without being added to a white list (even if they don't have profiles).
Blacklist: as far as I can tell, this is what App Armor uses by default. If an newly installed application does not have an already existing App Profile, it will have access to everything that the user running it has access to (that is, until you make it's App armor profile and specifically interdict it).
That's ok for most applications, but I'd feel much better if for some important files, access is blocked to every app until I give the goahead.
Is there anyway of doing this? If so, can you please tell me how to do it?
security firewall apparmor
asked Apr 22 at 8:10
thebunnyrules
33529
edited Apr 25 at 2:10
asked Apr 22 at 8:10
thebunnyrules
33529
asked Apr 22 at 8:10
thebunnyrules
33529
asked Apr 22 at 8:10
thebunnyrules
33529
33529
add a comment |Â
add a comment |Â
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1027137%2fhow-do-i-use-a-whitelist-approach-for-some-files-with-app-armor%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password