Follow Techotopia on Twitter

On-line Guides
All Guides
eBook Store
iOS / Android
Linux for Beginners
Office Productivity
Linux Installation
Linux Security
Linux Utilities
Linux Virtualization
Linux Kernel
System/Network Admin
Programming
Scripting Languages
Development Tools
Web Development
GUI Toolkits/Desktop
Databases
Mail Systems
openSolaris
Eclipse Documentation
Techotopia.com
Virtuatopia.com
Answertopia.com

How To Guides
Virtualization
General System Admin
Linux Security
Linux Filesystems
Web Servers
Graphics & Desktop
PC Hardware
Windows
Problem Solutions
Privacy Policy

  




 

 

AppArmor Admin Guide
Table of Contents Next Page

AppArmor Admin Guide

Novell® AppArmor is designed to provide easy-to-use application security for both servers and workstations. Novell AppArmor is an access control system that lets you specify per program which files the program may read, write, and execute. AppArmor secures applications by enforcing good application behavior without relying on attack signatures, so it can prevent attacks even if they are exploiting previously unknown vulnerabilities.

Novell AppArmor consists of:

  • A library of AppArmor profiles for common Linux* applications describing what files the program needs to access.

  • A library of AppArmor profile foundation classes (profile building blocks) needed for common application activities, such as DNS lookup and user authentication.

  • A tool suite for developing and enhancing AppArmor profiles, so that you can change the existing profiles to suit your needs and create new profiles for your own local and custom applications.

  • Several specially modified applications that are AppArmor enabled to provide enhanced security in the form of unique subprocess confinement, including Apache and Tomcat.

  • The Novell AppArmor–loadable kernel module and associated control scripts to enforce AppArmor policies on your openSUSE® system.

This guide covers the following topics:

Immunizing Programs

Describes the operation of Novell AppArmor and describes the types of programs that should have Novell AppArmor profiles created for them.

Profile Components and Syntax

Introduces the profile components and syntax.

Building and Managing Profiles with YaST

Describes how to use the AppArmor YaST modules to build, maintain and update profiles.

Building Profiles from the Command Line

Describes how to use the AppArmor command line tools to build, maintain and update profiles.

Profiling Your Web Applications Using ChangeHat

Enables you to create subprofiles for the Apache Web server that allow you to tightly confine small sections of Web application processing.

Managing Profiled Applications

Describes how to perform Novell AppArmor profile maintenance, which involves tracking common issues and concerns.

Support

Indicates support options for this product.

Glossary

Provides a list of terms and their definitions.

AppArmor Admin Guide
Table of Contents Next Page

 
 
  Published under the terms fo the GNU General Public License Design by Interspire