[apparmor] Regarding using apparmor to harden container configuration
swarna latha
sswarnas at gmail.com
Wed Nov 4 16:31:54 UTC 2020
Hi,
I am trying to use apparmor to harden the rootfs of the container
configuration.
I have few queries regarding this.
1. My process will be using a set of libraries and these libraries might be
writing to some files in the rootfs or need some capabs. I dont see this
files/capabs in my apparmor logs. Is this expected behaviour ?
2. Is there any limitation for apparmor to monitor applications running in
container or is it the same as an application running in the host ?
Can you please clarify the above queries ?
Thanks,
Swarna
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20201104/316af81b/attachment.html>
More information about the AppArmor
mailing list