[apparmor] new rule qualifier "quiet" or "noaudit"
Jamie Strandboge
jamie at canonical.com
Fri Jul 6 16:54:16 UTC 2018
On Thu, 2018-05-24 at 07:57 -0700, John Johansen wrote:
>
> What about a new keyword in the place of allow/deny so that
> we could specify that the rule is not specifying an allow or
> a deny but is to be applied to all access attempts that it
> overlaps
>
> audit access w /foo/bar/**,
> quiet access w /foo/bar/**,
>
> this would allow audit to continue to be used as a modifier,
> and also then allow quiet to be used as a modifier for the
> sake of symmetry of the language.
>
I like this.
--
Jamie Strandboge | http://www.canonical.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20180706/7fb4ff17/attachment.sig>
More information about the AppArmor
mailing list