[ubuntu-hardened] AppArmor profile for lightdm-guest-session.

Daniel Curtis sidetripping at gmail.com
Tue Jul 16 14:04:26 UTC 2013


Could somebody explain to me why lightdm-guest-session
changed? Some time ago, I checked this profile and there were
more entries. Now it's look like this:

# vim:syntax=apparmor
# Profile for restricting lightdm guest session

#include <tunables/global>

/usr/lib/lightdm/lightdm/lightdm-guest-session-wrapper {
  # Most applications are confined via the main abstraction
  #include <abstractions/lightdm>

  # chromium-browser needs special confinement due to its
sandboxing #include <abstractions/lightdm_chromium-browser>

apparmor_status command shows that there is two profiles in
enforced mode, which are related to a lightdm:


Why it happened? I may be wrong, but I remember, that this
profile was full of policy, restrictions etc. One more thing: I'm
not using a Chromium browser. Could somebody help me with this
issue? Explain it to me and paste a correct profile? What should I

Best regards.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-hardened/attachments/20130716/d7487121/attachment.html>

More information about the ubuntu-hardened mailing list