2023-01-29 22:18:22 +01:00
---
title: AppArmor.d
---
2024-02-23 21:14:21 +01:00
<!-- https://youtu.be/9dqHOrM4KHo?t=146
Business Benefits of an LSM
- Increased IT productivity -> ????
- Regulatory Compliance
- Peace of mind: Protect against unknown threats and "zero-days" attacks -->
2023-01-29 22:18:22 +01:00
**Full set of AppArmor profiles**
!!! danger "Help Wanted"
2023-01-31 22:13:35 +01:00
This project is still in its early development. Help is very welcome;
2023-10-27 16:27:23 +02:00
see [Development ](development/index.md )
2023-01-29 22:18:22 +01:00
2024-02-23 21:14:21 +01:00
**AppArmor.d** is a set of over 1500 AppArmor profiles whose aim is to confine most Linux based applications and processes.
2023-01-29 22:18:22 +01:00
**Purpose**
2024-02-23 21:14:21 +01:00
- Confine all root processes such as all `systemd` tools, `bluetooth` , `dbus` , `polkit` , `NetworkManager` , `OpenVPN` , `GDM` , `rtkit` , `colord`
2023-01-29 22:18:22 +01:00
- Confine all Desktop environments
- Confine all user services such as `Pipewire` , `Gvfsd` , `dbus` , `xdg` , `xwayland`
2024-06-07 21:27:26 +02:00
- Confine some *"special"* user applications: web browsers, file managers, etc
2023-01-29 22:18:22 +01:00
- Should not break a normal usage of the confined software
2023-10-27 16:27:23 +02:00
See the [Concepts ](concepts.md )' page for more detail on the architecture.
2023-01-29 22:18:22 +01:00
**Goals**
2023-01-31 22:13:35 +01:00
- Target both desktops and servers
2024-06-07 21:27:26 +02:00
- Support for all distributions that support AppArmor:
* [:material-arch: Arch Linux ](install.md#archlinux )
2023-10-27 16:27:23 +02:00
* [:material-ubuntu: Ubuntu 22.04 ](install.md#ubuntu-debian )
* [:material-debian: Debian 12 ](install.md#ubuntu-debian )
* [:simple-suse: OpenSUSE Tumbleweed ](install.md#opensuse )
2024-06-07 21:27:26 +02:00
- Support for all major desktop environments:
2024-01-28 00:13:43 +01:00
- [x] :material-gnome: Gnome
- [ ] :simple-kde: KDE *(work in progress)*
2023-01-31 22:13:35 +01:00
- Fully tested (Work in progress)
2023-06-13 18:11:30 +02:00
2023-11-09 18:28:33 +01:00
**Presentations**
2024-06-07 21:27:26 +02:00
Building the largest set of AppArmor profiles:
2023-11-09 18:28:33 +01:00
- [Linux Security Summit North America (LSS-NA 2023) ](https://events.linuxfoundation.org/linux-security-summit-north-america/ ) *([Slide](https://lssna2023.sched.com/event/1K7bI/building-the-largest-working-set-of-apparmor-profiles-alexandre-pujol-the-collaboratory-tudublin), [Video](https://www.youtube.com/watch?v=OzyalrOzxE8))*
2024-01-28 00:13:43 +01:00
- [Ubuntu Summit 2023 ](https://events.canonical.com/event/31/ ) *([Slide](https://events.canonical.com/event/31/contributions/209/), [Video](https://www.youtube.com/watch?v=GK1J0TlxnFI))*
2023-06-13 18:11:30 +02:00
2023-12-04 23:31:42 +01:00
**Chat**
A development chat is available on https://matrix.to/#/#apparmor.d:matrix.org