Enforce security with AppArmor
It would be great to enforce security of potentially vulnerable applications (like web browser) with AppArmor.
Blueprint information
- Status:
- Complete
- Approver:
- None
- Priority:
- Medium
- Drafter:
- None
- Direction:
- Approved
- Assignee:
- elementary Drive-by Contributors
- Definition:
- Obsolete
- Series goal:
- None
- Implementation:
- Not started
- Milestone target:
- None
- Started by
- Completed by
- Danielle Foré
Related branches
Related bugs
Sprints
Whiteboard
Ubuntu's AppArmor profiles for Firefox and especially Evince can serve as a base to build upon.
bodhi.zazen maintains a collection of AppArmor profiles at http://
He also uses Midori as his main browser, perhaps we can ask him to write a profile for it?
There's also a collection at http://
There doesn't seem to be enough time to look into this for the Luna cycle. Pushing back to revisit in Luna +1 ~DanRabbit.
Agreed. It's a big change with lots of corner cases. --shnatsel
I'm going to mark this as obsolete since it seems the path forward is container formats (snappy or flatpak). --DanRabbit