support changing Apparmor hats
Bug #1501966 reported by
Simon Déziel
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openssh (Ubuntu) |
New
|
Wishlist
|
Unassigned |
Bug Description
Some older versions of OpenSSH had a patch allowing the daemon to change Apparmor hats to apply different containment profiles to different code paths (AUTHENTICATED, EXEC, PRIVSEP, etc).
This feature would need to be ported to recent OpenSSH versions and sent upstream for inclusion in the portable branch.
Changed in openssh (Ubuntu): | |
importance: | Undecided → Wishlist |
tags: | added: needs-upstream-report |
To post a comment you must log in.
I don't recall that patch ever being in Debian OpenSSH packages, so it would be helpful to track it down and link to it.