File tree Expand file tree Collapse file tree 1 file changed +6
-4
lines changed
Expand file tree Collapse file tree 1 file changed +6
-4
lines changed Original file line number Diff line number Diff line change @@ -10,13 +10,15 @@ AppArmor for better security for container payloads.
1010To use AppArmor on a system, one must:
1111
12121 . Install the ` apparmor ` package.
13- 2 . Set the ` APPARMOR ` variable in ` /etc/default/apparmor ` to ` enforce ` or
14- ` complain ` .
15- 3 . Set ` apparmor=1 security=apparmor ` on the kernel commandline.
13+ 2 . Set ` apparmor=1 security=apparmor ` on the kernel commandline.
1614
17- To accomplish the third step, consult [ the documentation on how to modify the
15+ To accomplish the second step, consult [ the documentation on how to modify the
1816kernel cmdline] ( ./../kernel.md#cmdline ) .
1917
18+ The ` APPARMOR ` variable in ` /etc/default/apparmor ` controls how profiles will be
19+ loaded at boot, the value is set to ` complain ` by default and corresponds to
20+ AppArmor modes (` disable ` , ` complain ` , ` enforce ` ).
21+
2022AppArmor tools [ aa-genprof(8)] ( https://man.voidlinux.org/aa-genprof.8 ) and
2123[ aa-logprof(8)] ( https://man.voidlinux.org/aa-logprof.8 ) require either
2224configured [ syslog] ( ../services/logging.md ) or a running
You can’t perform that action at this time.
0 commit comments