~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

TOMOYO Linux Cross Reference
Linux/Documentation/admin-guide/LSM/apparmor.rst

Version: ~ [ linux-6.12-rc7 ] ~ [ linux-6.11.7 ] ~ [ linux-6.10.14 ] ~ [ linux-6.9.12 ] ~ [ linux-6.8.12 ] ~ [ linux-6.7.12 ] ~ [ linux-6.6.60 ] ~ [ linux-6.5.13 ] ~ [ linux-6.4.16 ] ~ [ linux-6.3.13 ] ~ [ linux-6.2.16 ] ~ [ linux-6.1.116 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.171 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.229 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.285 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.323 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.336 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.12 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~

Diff markup

Differences between /Documentation/admin-guide/LSM/apparmor.rst (Architecture ppc) and /Documentation/admin-guide/LSM/apparmor.rst (Architecture mips)

  1 ========                                            1 ========
  2 AppArmor                                            2 AppArmor
  3 ========                                            3 ========
  4                                                     4 
  5 What is AppArmor?                                   5 What is AppArmor?
  6 =================                                   6 =================
  7                                                     7 
  8 AppArmor is MAC style security extension for t      8 AppArmor is MAC style security extension for the Linux kernel.  It implements
  9 a task centered policy, with task "profiles" b      9 a task centered policy, with task "profiles" being created and loaded
 10 from user space.  Tasks on the system that do      10 from user space.  Tasks on the system that do not have a profile defined for
 11 them run in an unconfined state which is equiv     11 them run in an unconfined state which is equivalent to standard Linux DAC
 12 permissions.                                       12 permissions.
 13                                                    13 
 14 How to enable/disable                              14 How to enable/disable
 15 =====================                              15 =====================
 16                                                    16 
 17 set ``CONFIG_SECURITY_APPARMOR=y``                 17 set ``CONFIG_SECURITY_APPARMOR=y``
 18                                                    18 
 19 If AppArmor should be selected as the default      19 If AppArmor should be selected as the default security module then set::
 20                                                    20 
 21    CONFIG_DEFAULT_SECURITY="apparmor"              21    CONFIG_DEFAULT_SECURITY="apparmor"
 22    CONFIG_SECURITY_APPARMOR_BOOTPARAM_VALUE=1      22    CONFIG_SECURITY_APPARMOR_BOOTPARAM_VALUE=1
 23                                                    23 
 24 Build the kernel                                   24 Build the kernel
 25                                                    25 
 26 If AppArmor is not the default security module     26 If AppArmor is not the default security module it can be enabled by passing
 27 ``security=apparmor`` on the kernel's command      27 ``security=apparmor`` on the kernel's command line.
 28                                                    28 
 29 If AppArmor is the default security module it      29 If AppArmor is the default security module it can be disabled by passing
 30 ``apparmor=0, security=XXXX`` (where ``XXXX``      30 ``apparmor=0, security=XXXX`` (where ``XXXX`` is valid security module), on the
 31 kernel's command line.                             31 kernel's command line.
 32                                                    32 
 33 For AppArmor to enforce any restrictions beyon     33 For AppArmor to enforce any restrictions beyond standard Linux DAC permissions
 34 policy must be loaded into the kernel from use     34 policy must be loaded into the kernel from user space (see the Documentation
 35 and tools links).                                  35 and tools links).
 36                                                    36 
 37 Documentation                                      37 Documentation
 38 =============                                      38 =============
 39                                                    39 
 40 Documentation can be found on the wiki, linked     40 Documentation can be found on the wiki, linked below.
 41                                                    41 
 42 Links                                              42 Links
 43 =====                                              43 =====
 44                                                    44 
 45 Mailing List - apparmor@lists.ubuntu.com           45 Mailing List - apparmor@lists.ubuntu.com
 46                                                    46 
 47 Wiki - http://wiki.apparmor.net                    47 Wiki - http://wiki.apparmor.net
 48                                                    48 
 49 User space tools - https://gitlab.com/apparmor     49 User space tools - https://gitlab.com/apparmor
 50                                                    50 
 51 Kernel module - git://git.kernel.org/pub/scm/l     51 Kernel module - git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor
~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~
kernel.org | git.kernel.org | LWN.net | Project Home | SVN repository | Mail admin

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

sflogo.php