Difference between revisions of "AppArmor"

From Wiki 4 Men
Jump to navigation Jump to search
(Partial import from https://en.wikipedia.org/w/index.php?title=AppArmor&oldid=1173866461)
 
 
Line 1: Line 1:
[[AppArmor]] ("Application Armor") is a Linux kernel security module that allows the system administrator to restrict programs' capabilities with per-program profiles. Profiles can allow capabilities like network access, raw socket access, and the permission to read, write, or execute files on matching paths. AppArmor supplements the traditional Unix discretionary access control (DAC) model by providing mandatory access control (MAC). It has been partially included in the mainline Linux kernel since version 2.6.36 and its development has been supported by Canonical since 2009.
+
[[AppArmor]] ("Application Armor") is a Linux kernel security module that allows the system administrator to restrict programs' capabilities with per-program profiles. Profiles can allow capabilities like network access, raw socket access, and the permission to read, write, or execute files on matching paths. AppArmor supplements the traditional Unix [[discretionary access control]] (DAC) model by providing [[mandatory access control]] (MAC). It has been partially included in the mainline Linux kernel since version 2.6.36 and its development has been supported by Canonical since 2009.
   
 
{{Linux}}
 
{{Linux}}

Latest revision as of 18:45, 6 January 2024

AppArmor ("Application Armor") is a Linux kernel security module that allows the system administrator to restrict programs' capabilities with per-program profiles. Profiles can allow capabilities like network access, raw socket access, and the permission to read, write, or execute files on matching paths. AppArmor supplements the traditional Unix discretionary access control (DAC) model by providing mandatory access control (MAC). It has been partially included in the mainline Linux kernel since version 2.6.36 and its development has been supported by Canonical since 2009.

Articles in this category are applicable to Linux. Much of the information is also applicable to other Unix flavours.

This article contains information imported from the English Wikipedia. In most cases the page history will have details. If you need information on the importation and have difficulty obtaining it please contact the site administrators.

Wikipedia shows a strong woke bias. Text copied over from Wikipedia can be corrected and improved.