[pkg-apparmor] Bug#923273: Bug#923273: Bug#923273: apparmor: nvidia_modprobe named profile is shipped in complain mode
Seth Arnold
seth.arnold at canonical.com
Tue Mar 12 01:02:54 GMT 2019
On Fri, Mar 08, 2019 at 06:57:14PM +0200, Vincas Dargis wrote:
> Since LibreOffice is in complain mode by default, so I doubt this issue
I strongly dislike the idea of shipping any profiles in complain mode. I
would rather the profiles in question be disabled entirely.
Complain mode profiles can chew up essentially unlimited amounts of
non-swappable kernel memory.
Complain mode profiles can chew up a huge amount of disk IO bandwidth
logging ALLOWED messages. All those messages can take a huge amount
of storage.
Complain mode profiles as a default is a very poor user experience.
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-apparmor-team/attachments/20190311/d4be67c3/attachment.sig>
More information about the pkg-apparmor-team
mailing list