Projects in the topic apparmor

rewrite YaST2 AppArmor an idea by cboltz The YaST2 AppArmor module is still based on the Immunix::* perl modules that are deprecated upstream and therefore causes some maintenance "fun". Upstream AppArmor utils were rewritten in python. The idea is to rewrite the YaST2 AppArmor module to use the python modules or JSON interfaces. Updated about 5 years ago. 1 hackers ♥️. Has no hacker: grab it!
AppArmor utils: rewrite more rule types into classes an invention by cboltz While the python-based AppArmor utils (aa-logprof etc.) are much easier to understand and maintain than the old perl code, there are still some terribly long functions like parseprofiledata() in aa.py that are not too easy to understand. Also, using hasher() (a recursive array) as storage can have some strange side effects. Another problem is that test coverage isn't too good, especially for the bigger functions. I already wrote the CapabilityRule and CapabilityRuleset classes (and also the BaseRule and BaseRuleset classes) some months ago, and changed the code to use those classes. This code is already in upstream bzr. Updated about 5 years ago. 1 hackers ♥️.
Create working AppArmor profile for Chromium on openSUSE 13.2 a project by thardeck I think AppArmor is a great tool to add an additional layer of security without much effort. While it is normally easy to create a profile for a simple server program it is much more complex in case of desktop applications. The most vulnerable desktop application is the browser so it would be great to have an AppArmor profile for it. Updated about 5 years ago. 1 hackers ♥️. Has no hacker: grab it!
Get rid of perl-apparmor a project by goldwynr Perl-apparmor is obsolete in the apparmor community. No one is maintaining it. However, opensuse has to keep it to interact with yast, which is the main consumer of perl-apparmor. Getting rid of perl-apparmor would mean: + Creating a new interface (JSON) to interact with outside world (IOW, yast) Updated about 5 years ago. 2 hacker ♥️.

rewrite YaST2 AppArmor

an idea by cboltz

The YaST2 AppArmor module is still based on the Immunix::* perl modules that are deprecated upstream and therefore causes some maintenance "fun". Upstream AppArmor utils were rewritten in python. The idea is to rewrite the YaST2 AppArmor module to use the python modules or JSON interfaces.

Updated about 5 years ago. 1 hackers ♥️. Has no hacker: grab it!

AppArmor utils: rewrite more rule types into classes

an invention by cboltz

While the python-based AppArmor utils (aa-logprof etc.) are much easier to understand and maintain than the old perl code, there are still some terribly long functions like parseprofiledata() in aa.py that are not too easy to understand. Also, using hasher() (a recursive array) as storage can have some strange side effects. Another problem is that test coverage isn't too good, especially for the bigger functions. I already wrote the CapabilityRule and CapabilityRuleset classes (and also the BaseRule and BaseRuleset classes) some months ago, and changed the code to use those classes. This code is already in upstream bzr.

Updated about 5 years ago. 1 hackers ♥️.

Create working AppArmor profile for Chromium on openSUSE 13.2

a project by thardeck

I think AppArmor is a great tool to add an additional layer of security without much effort. While it is normally easy to create a profile for a simple server program it is much more complex in case of desktop applications. The most vulnerable desktop application is the browser so it would be great to have an AppArmor profile for it.

Updated about 5 years ago. 1 hackers ♥️. Has no hacker: grab it!

Get rid of perl-apparmor

a project by goldwynr

Perl-apparmor is obsolete in the apparmor community. No one is maintaining it. However, opensuse has to keep it to interact with yast, which is the main consumer of perl-apparmor. Getting rid of perl-apparmor would mean: + Creating a new interface (JSON) to interact with outside world (IOW, yast)

Updated about 5 years ago. 2 hacker ♥️.