Web Application Security (was Re: universe demotion: Moodle)
Kees Cook
kees at ubuntu.com
Fri Jan 29 18:19:42 GMT 2010
Hi,
On Wed, Jan 27, 2010 at 10:51:58AM +0100, Stephan Hermann wrote:
> Is there any good howto/tutorial how to secure a webapp with db access
> etc. with AppArmor?
Marc Deslauriers wrote up some notes on doing it in the apache2 profile:
http://bazaar.launchpad.net/~apparmor-dev/apparmor/master/annotate/head%3A/profiles/apparmor.d/usr.lib.apache2.mpm-prefork.apache2
And you can see an example in the mentioned phpsysinfo profile:
http://bazaar.launchpad.net/~apparmor-dev/apparmor/master/annotate/head%3A/profiles/apparmor.d/apache2.d/phpsysinfo
-Kees
--
Kees Cook
Ubuntu Security Team
More information about the ubuntu-devel
mailing list