[systemd-devel] Can AppArmor be used with NoNewPrivileges=true enabled
嵩智
dirksu at gmail.com
Fri Aug 18 05:25:28 UTC 2023
Hi all,
I had a program which launched by systemd, and had NoNewPrivileges=true in
the service file. This program will use GIO subprocess to execute another
program2. Program2 will failed to run if applied AppArmor profile to it.
But if mark NoNewPrivileges=true out, then everything works fine. Can
NoNewPrivileges=true can work with AppArmor together?
Regards,
Dirk
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/systemd-devel/attachments/20230818/199febe7/attachment.htm>
More information about the systemd-devel
mailing list