cheat/cheat/cheatsheets/apparmor

# Desc: Apparmor will protect the system by confining programs to a limited set of resources.

# To activate a profile:
sudo aa-enforce usr.bin.firefox
# OR
export _PROFILE_='usr.bin.firefox' sudo $(rm /etc/apparmor.d/disable/$_PROFILE_ ; cat /etc/apparmor.d/$_PROFILE_ | apparmor_parser -a )

# TO disable a profile:
sudo aa-disable usr.bin.firefox
# OR
export _PROFILE_='usr.bin.firefox' sudo $(ln -s /etc/apparmor.d/$_PROFILE_ /etc/apparmor.d/disable/ && apparmor_parser -R /etc/apparmor.d/$_PROFILE_)

# To list profiles loaded:
sudo aa-status
# OR
sudo apparmor_status

# List of profiles aviables: /etc/apparmor.d/
Add a description 2013-09-13 00:26:42 +02:00			`# Desc: Apparmor will protect the system by confining programs to a limited set of resources.`

Add apparmor 2013-09-13 00:21:50 +02:00			`# To activate a profile:`
			`sudo aa-enforce usr.bin.firefox`
			`# OR`
			`export _PROFILE_='usr.bin.firefox' sudo $(rm /etc/apparmor.d/disable/$_PROFILE_ ; cat /etc/apparmor.d/$_PROFILE_ \| apparmor_parser -a )`

			`# TO disable a profile:`
			`sudo aa-disable usr.bin.firefox`
			`# OR`
			`export _PROFILE_='usr.bin.firefox' sudo $(ln -s /etc/apparmor.d/$_PROFILE_ /etc/apparmor.d/disable/ && apparmor_parser -R /etc/apparmor.d/$_PROFILE_)`

			`# To list profiles loaded:`
			`sudo aa-status`
			`# OR`
			`sudo apparmor_status`

			`# List of profiles aviables: /etc/apparmor.d/`