LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

LSS: Kernel security subsystem reports

LSS: Kernel security subsystem reports

Posted Sep 28, 2012 13:07 UTC (Fri) by spender (subscriber, #23067)
In reply to: LSS: Kernel security subsystem reports by spender
Parent article: LSS: Kernel security subsystem reports

Replace "Obviously the learning SELinux" in the above with "Obviously the learning AppArmor" (typo).

Investigating further, however: the original article claims AppArmor is trying to create a learning mode similar to audit2allow. This makes no sense to me as it's essentially what they have already. The presentation slides and presenter notes contained at: http://kernsec.org/files/apparmor-update.odp also provide no hints as to the basis for the claim in the article. The only mention of learning is in the context of not dumping their existing "learning" logs through the auditing system. Maybe Jake can clear it up for us.

-Brad

(Log in to post comments)

LSS: Kernel security subsystem reports

Posted Sep 29, 2012 10:10 UTC (Sat) by nix (subscriber, #2304) [Link]

Ah, so you are now saying... precisely what I said just above, that in fact AppArmor already does implement this and has for ages. Perhaps you'll take back your repulsive personal attacks?

No, I didn't think so.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds