On Mon, 06 Mar 2017 at 16:03:50 +0800, Aphyr Lee wrote: > The use scenario is that I would like to prevent execution from the > writable directory, /tmp. Have you tried mounting /tmp noexec? AppArmor is not the right hammer for every nail. S