Comment 0 for bug 1045986
Revision history for this message
| Jamie Strandboge (jdstrand) wrote Ubuntu AppArmor policy is sometimes too lenient | #0 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
67d34a1
(Get the code!)
Placeholder description. Dan Rosenberg is planning to blog about some AppArmor profile weaknesses in Ubuntu. This bug will track the work needed to fix it.
This is a continuation of bug #851986, except for PATH and shell scripts. Unfortunately, until we have proper environment filtering support in AppArmor, we will have to employ more bandaids like the sanitized helper. The good news is that environment filtering is on the AppArmor roadmap, and it something we will be targeting in the future releases. I filed bug #1045985 to more easily track the progress of that work.