https://bugzilla.novell.com/show_bug.cgi?id=660373 https://bugzilla.novell.com/show_bug.cgi?id=660373#c20 Scott Couston <scott@aphofis.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Severity|Minor |Critical --- Comment #20 from Scott Couston <scott@aphofis.com> 2010-12-22 11:12:21 UTC --- Re-Assigned to Critical! After we create user login credentials by the Update Profile Wizard we define an email address. There are NO emails delivered either by way of the address entered in Apparmour's Control Panel. If login credential and email desposal addresses are yet to be created, the notification address must be one of a local host systems address I cannot determine if any user receives either system email notifications, or notifications to the associated email address what-so-ever and I have had Apparmour to deliver them We have NO evidence to show Apparmour does anything...With the Apparmour 'Update Profile Wizard' We don’t know where we are creating a user login, we don't know what is meant by the UI telling us "a repository has been added" Other usage of the Update Profile Wizard, after login credentials have been created and a repository established; offers to either throw the user out of the UI or present the user with huge options like the below. The help pages are badly written or absent of details ; example, a Severity of Notification of 1 is the highest or the lowest value?????? The depth of very technical options for permissions and that effect files/directory/applications is absent or poorly written. The usage of editing a profile has the help displaying the following but no interpenetration. *Clean Exec The Clean Exec option for the discrete profile and unconstrained execute permissions provide added security by stripping the environment that is inherited by the child program of specific variables. These variables are: GCONV_PATH GETCONF_DIR HOSTALIASES LD_AUDIT LD_DEBUG LD_DEBUG_OUTPUT LD_DYNAMIC_WEAK LD_LIBRARY_PATH LD_ORIGIN_PATH LD_PRELOAD LD_PROFILE LD_SHOW_AUXV LD_USE_LOAD_BIAS LOCALDOMAIN LOCPATH MALLOC_TRACE NLSPATH RESOLV_HOST_CONF RES_OPTION TMPDIR TZDIR any yet offers no explanation The UI 'Add Profile Wizard' has NO accessible help screens and asks the user to browse the directory structure from root to find the application's executable files they seek to protect - All without any Help Screens Apparmour's self learning of an executable Application, to both protect and not change the application from normal use; just doesn't work. - Most of the time you end up with an unusable application that IS protected. Apparmour's Security Event Report also offers a browse for log files from the root directory. It also permits the creation of user specific reports. After a Report has been 'run now' the user is dumped out of the UI. Re-entering the Security Reports and clicking on View Archive, the user has another browse from root. I can't find out how to demand execute a default report and be able to view it or able to view any archive file/Log...... None of us are Hacks and its inference is neither helpful nor constructive Off course such a mess is critical - Either it does not work or be dont have the UI tools to make it work and to get notifications and reports demand or otherwise...Its pretty broken all over eh!!!!! -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.