[systemd-bugs] [Bug 63312] Apparmor support in ConditionSecurity
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Tue Apr 9 12:26:57 PDT 2013
https://bugs.freedesktop.org/show_bug.cgi?id=63312
--- Comment #4 from Lennart Poettering <lennart at poettering.net> ---
Hmm, so, the current implementation of the SELinux check not only checks
whether SELinux is compiled into the kernel, but also if it is turned on during
runtime. I wonder if we should have the same for AppArmor? Is there a nice way
to check whether AppArmor is actually turned on?
(Also, as a side note, we currently load SELinux, IMA and SMACK policies from
early PID 1, so that they are applied before the first process is started. Do
we want the same for AppArmor?)
--
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/systemd-bugs/attachments/20130409/49b4ebbe/attachment.html>
More information about the systemd-bugs
mailing list