diff --git a/docs/development/structure.md b/docs/development/structure.md index 44c6e6ea..1281b4af 100644 --- a/docs/development/structure.md +++ b/docs/development/structure.md @@ -122,7 +122,7 @@ Here is an overview of the current children profile: This profile supposes the pager is reading its data from stdin, not from a file on disk. -3. **`child-systemctl`**: Common systemctl action. Do not use it too much as most +3. **`child-systemctl`**: Common `systemctl` action. Do not use it too much as most of the time you will need more privilege than what this profile is giving you. @@ -130,7 +130,7 @@ Here is an overview of the current children profile: Chromium based browsers share a similar structure. Therefore, they share the same abstraction: [`abstractions/chromium`][chromium] that includes most of the profile content. -This abstraction requires the following variables definied in the profile header: +This abstraction requires the following variables defined in the profile header: ```sh @{name} = chromium @{domain} = org.chromium.Chromium diff --git a/docs/enforce.md b/docs/enforce.md index 72c8310a..19ac020b 100644 --- a/docs/enforce.md +++ b/docs/enforce.md @@ -37,17 +37,3 @@ In `dists/apparmor.d.spec`, replace `%make_build` by `make enforce` #### Partial install Use the `make enforce` command to build instead of `make` - -## Track profiles in complain mode - -The [`dists/flags`](https://github.com/roddhjav/apparmor.d/tree/main/dists/flags) directory tracks the profile that have been forced in complain mode. It is used for profile that are not considered stable. Files in this directory should respect the following format: ` `, flags should be comma separated. - -For instance, to move `adb` in complain mode, edit **[`dists/flags/main.flags`](https://github.com/roddhjav/apparmor.d/blob/main/dists/flags/main.flags)** and add the following line: -```sh -adb complain -``` - -Beware, flags defined in this file overwrite flags in the profile. So you may need to add other flags. Example for `gnome-shell`: -```sh -gnome-shell attach_disconnected,mediate_deleted,complain -```