Carlos E. R. wrote:
On Saturday, 2009-12-12 at 17:15 +1100, Basil Chupin wrote:
Is AppArmor designed to be the beginning of such protection for oS (I cannot find any dox for AppArmor in 11.2 for what it is supposed to do)?
No, AA can not protect you from a trojan.
AA protects the system from a previously configured program doing something outside it limits.
Say, you install a text browser. Then you set up an AA profile for that program (it is not done out of the box). If, one day, that text browser tries to open a shell, and this is not an action defined in the profile, it will be stopped. If it tries, say, to read a security log, and this is not allwed in the profile, it will be stopped.
AA only protects those programs (services, normally) that have been profiled in advance.
No, you can set up a very restrictive system that will only allow what has been previously configured. Besides, AppArmor doesn't protect programs, it protects your system against programs. /Per -- Per Jessen, Zürich (0.0°C) -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org