[apparmor] apparmor support in centos/rhel 7
John Johansen
john.johansen at canonical.com
Sat Mar 15 07:08:54 UTC 2014
On 03/14/2014 12:08 PM, Jeroen Ooms wrote:
> Is there any news on apparmor support in EL7? There have been some
> hopeful mentions here and there, e.g. a user in [1] says "In addition
> to TOMOYO, rh7beta now includes AppArmor". Also there have been a
> bunch of patches [2] for libvirt on the redhat mailing lists that
> suggest apparmor support.
>
> Anyone here know more? Apparmor support in EL would be quite awesome.
>
It does appear that the centos rh7beta kernel does have apparmor available.
With selinux set as the default MAC. To enable it you with need to use
security=apparmor
as part of the grub kernel command line
The userspace front has also seen progress with some apparmor support
being merged into systemd, as well as libvirt, etc.
More information about the AppArmor
mailing list