[pkg-apparmor] Bug#807369: apparmor: Apparmor "deny network" not working in Jessie
Simon Ruderich
simon at ruderich.org
Thu Feb 11 16:03:22 UTC 2016
Package: apparmor
Version: 2.10-3
Followup-For: Bug #807369
Control: severity important
Hello,
I just stumbled over this bug when I tried to restrict my local
SSH setup. Without network mediation local UNIX access is a big
problem (DBUS). I'd really like to get this working in Debian,
but in the mean time, it's very important to notify the user that
_NO_ network access is restricted in Debian and that all rule
files are incomplete because the network restrictions are
_IGNORED_.
Please warn the user when installing AppArmor that Debian's
support is incomplete and modify the user space tools so that
they reject or at least warn the user if he uses network settings
so it's clear, that the network is not isolated!
Regards
Simon
--
+ privacy is necessary
+ using gnupg http://gnupg.org
+ public key id: 0x92FEFDB7E44C32F9
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-apparmor-team/attachments/20160211/64482d0a/attachment.sig>
More information about the pkg-apparmor-team
mailing list