Linux Today: Linux News On Internet Time.

More on LinuxToday

Linux.com: Protect Your Applications with AppArmor

Aug 24, 2006, 00:45 (6 Talkback[s])
(Other stories by Chris Brown)


Desktop-as-a-Service Designed for Any Cloud ? Nutanix Frame

"AppArmor is a product that Novell acquired when they bought the company Immunix in May 2005. It provides an interesting alternative to traditional security measures. AppArmor works by profiling the applications that it is protecting. A profile records the files that an application needs to access, and the capabilities it needs to exercise, during normal, 'good' operation. Subsequently, a profile can be 'enforced;' that is, attempts by the application to access resources not explicitly permitted by the profile are denied. Properly configured, AppArmor ensures that each profiled application is allowed to do what it is supposed to do, and nothing else.

"The documentation uses the metaphor of 'immunizing' the applications, but the product does not actually prevent an application from being infected or compromised. Rather, it limits the damage that an application can do if this should happen..."

Complete Story

Related Stories: