anavem.
Back to Glossary
A

AppArmor

AppArmor is a Linux security module that restricts program capabilities using per-program security profiles.

What is AppArmor?

AppArmor is a Linux kernel security module that allows the system administrator to restrict programs' capabilities with per-program profiles, using path-based access control.

AppArmor modes

Enforce (restrictions applied), Complain (logs violations), Disabled.

Common misconceptions

  • "AppArmor equals SELinux" — Different approaches
  • "AppArmor is weaker" — Different, not necessarily weaker
  • "Default profiles are sufficient" — Custom profiles for apps