[prev in list] [next in list] [prev in thread] [next in thread]
List: apparmor-general
Subject: Re: [Apparmor-general] security= kernel cmdline
From: Arkadiusz Miskiewicz <arekm () maven ! pl>
Date: 2008-10-31 15:35:52
Message-ID: 200810311635.52969.arekm () maven ! pl
[Download RAW message or body]
On Friday 31 of October 2008, Marcus Meissner wrote:
> On Fri, Oct 31, 2008 at 02:42:47PM +0100, Arkadiusz Miskiewicz wrote:
> > Recent kernels support security= parameter for "Choose a security module
> > to enable at boot."
> >
> > Right now apparmor doesn't obey it it seems. I used "security=capability"
> > while apparmor was still activated:
> >
> > # dmesg|grep -i appar
> > [ 0.010018] AppArmor: AppArmor initialized
> > [ 1.534344] AppArmor: AppArmor Filesystem Enabled
> >
> > That was on 2.6.27.4 kernel. It would be nice to change apparmor to obey
> > security= option.
>
> There is no capability module anymore I think.
Right.
security=default should do the job (+ a patch that zbyniu@pld made and he
should post it here soon)
Also security_operations structure for apparmor misses
.name = "apparmor",
member. Please add that.
--
Arkadiusz MiĆkiewicz PLD/Linux Team
arekm / maven.pl http://ftp.pld-linux.org/
_______________________________________________
Apparmor-general mailing list
Apparmor-general@forge.novell.com
http://forge.novell.com/mailman/listinfo/apparmor-general
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic