[apparmor] [Bug 770671] [NEW] Some way control logging per application

Chris Savery 770671 at bugs.launchpad.net
Tue Apr 26 04:33:26 UTC 2011 

Public bug reported:

I couldn't find a place to report feature requests so I'm adding this
here.

AppArmor really needs a way to control logging of denials/violations on
a per profile basis. Right now I have a program that I have restricted
beyond what it wants in order to keep it safe (for me). The program
still works fine but does not have access to some resources. Nonetheless
it still tries regularly (every few seconds) to access these resources.
Right now I have no way to prevent my logs from filling with garbage
messages from these attempts and this makes it hard to see anything
legitimate in the logs.

For now I have added rsyslog rule to filter the apparmor logs into an
independent file but it would be much better if there were a apparmor
profile option to disable or redirect logging just for that profile.

** Affects: apparmor
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of AppArmor
Developers, which is the registrant for AppArmor.
https://bugs.launchpad.net/bugs/770671

Title:
  Some way control logging per application

Status in AppArmor Linux application security framework:
  New

Bug description:
  I couldn't find a place to report feature requests so I'm adding this
  here.

  AppArmor really needs a way to control logging of denials/violations
  on a per profile basis. Right now I have a program that I have
  restricted beyond what it wants in order to keep it safe (for me). The
  program still works fine but does not have access to some resources.
  Nonetheless it still tries regularly (every few seconds) to access
  these resources. Right now I have no way to prevent my logs from
  filling with garbage messages from these attempts and this makes it
  hard to see anything legitimate in the logs.

  For now I have added rsyslog rule to filter the apparmor logs into an
  independent file but it would be much better if there were a apparmor
  profile option to disable or redirect logging just for that profile.

More information about the AppArmor mailing list