Hallo zusammen, kann mir jemand die apparmor Status Ausgabe erklären ? Ich versteh nie welche Dinge nun wirklich scharf gestellt sind. Also mit dem Befahl aa-status bekommt man die Ausgabe : tux:~/scripts # aa-status apparmor module is loaded. 60 profiles are loaded. 58 profiles are in enforce mode. /usr/bin/lessopen.sh /usr/bin/locate /usr/bin/updatedb /usr/lib/colord /usr/share/gitweb/gitweb.cgi apache2 apache2//DEFAULT_URI apache2//HANDLING_UNTRUSTED_INPUT apache2//phpsysinfo avahi-daemon dnsmasq dnsmasq//libvirt_leaseshelper docker-default dovecot dovecot-anvil dovecot-auth dovecot-config dovecot-deliver dovecot-dict dovecot-dovecot-auth dovecot-dovecot-lda dovecot-dovecot-lda//sendmail dovecot-imap dovecot-imap-login dovecot-lmtp dovecot-log dovecot-managesieve dovecot-managesieve-login dovecot-pop3 dovecot-pop3-login dovecot-script-login dovecot-ssl-params dovecot-stats ghostscript identd klogd libvirtd libvirtd//qemu_bridge_helper lsb_release mdnsd nmbd nscd ntpd nvidia_modprobe nvidia_modprobe//kmod php-fpm ping samba-bgqd smbd smbldap-useradd smbldap-useradd///etc/init.d/nscd syslog-ng syslogd traceroute virt-aa-helper virtqemud virtqemud//qemu_bridge_helper winbindd 2 profiles are in complain mode. /etc/apparmor.d/usr.lib64.firefox.firefox.sh ghostscript///usr/bin/hpijs 0 profiles are in kill mode. 0 profiles are in unconfined mode. 45 processes have profiles defined. 45 processes are in enforce mode. /usr/sbin/avahi-daemon (869) avahi-daemon /watchtower (8906) docker-default /usr/bin/coolwsd (8913) docker-default /usr/local/bin/php (9037) docker-default /usr/sbin/mariadbd (9064) docker-default /usr/sbin/php-fpm7.4 (9082) docker-default /usr/sbin/nginx (9152) docker-default /bin/dash (9264) docker-default /usr/bin/inotifywait (9266) docker-default /usr/local/bin/php (9339) docker-default /usr/local/bin/php (9360) docker-default /usr/local/bin/php (9361) docker-default /usr/local/bin/php (9362) docker-default /usr/local/bin/php (9363) docker-default /usr/sbin/nginx (9409) docker-default /usr/sbin/nginx (9410) docker-default /usr/sbin/nginx (9411) docker-default /usr/sbin/nginx (9412) docker-default /usr/bin/coolforkit (9510) docker-default /usr/bin/coolforkit (9514) docker-default /usr/sbin/cron (9539) docker-default /usr/sbin/php-fpm7.4 (9540) docker-default /usr/sbin/php-fpm7.4 (9541) docker-default /usr/sbin/php-fpm7.4 (9542) docker-default /usr/sbin/php-fpm7.4 (9543) docker-default /usr/sbin/php-fpm7.4 (9544) docker-default /usr/sbin/php-fpm7.4 (9545) docker-default /usr/sbin/php-fpm7.4 (9546) docker-default /usr/sbin/php-fpm7.4 (9547) docker-default /usr/sbin/php-fpm7.4 (9548) docker-default /usr/sbin/php-fpm7.4 (9549) docker-default /usr/sbin/php-fpm7.4 (9562) docker-default /usr/sbin/php-fpm7.4 (9690) docker-default /usr/sbin/dovecot (1403) dovecot /usr/lib/dovecot/anvil (1423) dovecot-anvil /usr/lib/dovecot/auth (10332) dovecot-auth /usr/lib/dovecot/auth (10333) dovecot-auth /usr/lib/dovecot/config (1425) dovecot-config /usr/lib/dovecot/log (1424) dovecot-log /usr/lib/dovecot/stats (4054) dovecot-stats /usr/sbin/nmbd (1406) nmbd /usr/lib64/samba/samba-bgqd (1529) samba-bgqd /usr/sbin/smbd (1499) smbd /usr/sbin/smbd (1527) smbd /usr/sbin/smbd (1528) smbd 0 processes are in complain mode. 0 processes are unconfined but have a profile defined. 0 processes are in mixed mode. 0 processes are in kill mode. Was ist denn nun "enforced" ? Der obere Teil der Liste oder der untere oder beide ?? Danke für Kommentare Lothar
participants (2)
-
Lothar
-
Ulf Volmer