[Apparmor-general] profile for proftpd and chrooted users
Dieter Bloms
apparmor at bloms.de
Mon Jul 30 05:40:16 MDT 2007
Hi,
thank you for the quick answer.
On Mon, Jul 30, Crispin Cowan wrote:
> Dieter Bloms wrote:
> > does it make sense to write a profile for proftpd with chrooted users ?
> > I asked because the users get a chroot directory and I have to allow
> > access to / with lrw permissions.
> >
> Wait for openSUSE 10.3. It should include a feature enhancement so that
> the paths used by AppArmor will be absolute with respect to the name
> space, rather than the chroot jail. With this feature in place, AppArmor
> profiles composed with chroot jails will be more secure than either one
> alone.
we use SLES9 and SLES10; will this enhancement go into the SLES version,
or are there other options for me ?
--
Gruß
Dieter
--
I do not get viruses because I do not use MS software.
If you use Outlook then please do not put my email address in your
address-book so that WHEN you get a virus it won't use my address in the
From field.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://forge.novell.com/pipermail/apparmor-general/attachments/20070730/4232c221/attachment.pgp
More information about the Apparmor-general
mailing list