mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-11-14 23:43:56 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
ecf82c7176
apparmor.d/docs/index.md
Alexandre Pujol ecf82c7176
docs: initial documentation website.
2023-01-29 21:18:22 +00:00

1.2 KiB
Raw Blame History

title
AppArmor.d

AppArmor.d

Full set of AppArmor profiles

!!! danger "Help Wanted"

This project is still in its early development. Help is very welcome 
see [Development](development/)

AppArmor.d is a set of over 1400 AppArmor profiles which aims is to confine most of Linux base applications and processes.

Purpose

  • Confine all root processes such as all systemd tools, bluetooth, dbus, polkit, NetworkManager, OpenVPN, GDM, rtkit, colord.
  • Confine all Desktop environments
  • Confine all user services such as Pipewire, Gvfsd, dbus, xdg, xwayland
  • Confine some "special" user applications: web browser, file browser...
  • Should not break a normal usage of the confined software
  • Fully tested (Work in progress)

See the Concepts page for more detail on the architecture.

Goals

  • Target both desktop and server
  • Support all distributions that support AppArmor:
    • Currently:
      • :material-arch: Archlinux
      • :material-ubuntu: Ubuntu 22.04
      • :material-debian: Debian 11
    • Not (yet) tested on openSUSE
  • Support all major desktop environments:
    • Currently only :material-gnome: Gnome