Hi Didier,
6 juil. 2020 à 23:42 de didier.gau...@gmail.com:
> man -s7 apparmor seems to indicate (DEBUGGING section) that for the DENY
> messages to appear, you have to "Turn off deny audit quieting" and for the
> ALLOW messages to appear you have to "Force audit mode"
>
Thanks for having
OK, I have read a little bit :-)
Now I understand better the difference between enforce (for production) and
complain (for testing/setup) modes and that they are mutually exclusive.
man aa-genprof seems to indicate that the complain mode is set only during the
generation of the profile: when
Hi,
6 juil. 2020 à 12:05 de didier.gau...@gmail.com:
> Sorry
>
No worries, thanks for replying :)
> I am almost totally Apparmor ignorant but would both set enforce and complain
> modes for your profiles give you the result you expect?
>
I'm afraid not because:
* most of my profiles are
Hello,
Sorry, I am almost totally Apparmor ignorant but would both set enforce and
complain modes for your profiles give you the result you expect?
Hi,
I'm under Debian 10 (kernel 5.4.8-1~bpo10+1) and I installed auditd some weeks
ago.
Issue: I don't get any AppArmor logs like ALLOWED or DENIED in my
/var/log/audit/audit.log while I'm sure I should have some (for example,
aa-genprof seems unable to scan my logs and help me to generate an
5 matches
Mail list logo
