[apparmor] apparmor support in centos/rhel 7

John Johansen john.johansen at canonical.com
Sat Mar 15 07:08:54 UTC 2014


On 03/14/2014 12:08 PM, Jeroen Ooms wrote:
> Is there any news on apparmor support in EL7? There have been some
> hopeful mentions here and there, e.g. a user in [1] says "In addition
> to TOMOYO, rh7beta now includes AppArmor". Also there have been a
> bunch of patches [2] for libvirt on the redhat mailing lists that
> suggest apparmor support.
> 
> Anyone here know more? Apparmor support in EL would be quite awesome.
> 
It does appear that the centos rh7beta kernel does have apparmor available.
With selinux set as the default MAC. To enable it you with need to use
  security=apparmor

as part of the grub kernel command line

The userspace front has also seen progress with some apparmor support
being merged into systemd, as well as libvirt, etc.




More information about the AppArmor mailing list