git.ipfire.org Git - thirdparty/lxc.git/commit

]> git.ipfire.org Git - thirdparty/lxc.git/commit

projects / thirdparty / lxc.git / commit

author	Jamie Strandboge <jamie@canonical.com>
	Mon, 29 Sep 2014 16:40:52 +0000 (12:40 -0400)
committer	Stéphane Graber <stgraber@ubuntu.com>
	Mon, 29 Sep 2014 16:40:52 +0000 (12:40 -0400)
commit	807f4c9e1eaae674c76fd3a97d0b4a8810004177
tree	57a2e6a70b132692944649eb14d6062542343181	tree
parent	15bc516ea987be2fa3c085010d2e77a32820769c	commit \| diff

apparmor: restrict signal and ptrace for processes

Restrict signal and ptrace for processes running under the container
profile. Rules based on AppArmor base abstraction. Add unix rules for
processes running under the container profile.

Signed-off-by: Jamie Strandboge <jamie@canonical.com>
Acked-by: Serge Hallyn <serge.hallyn@ubuntu.com>
Acked-by: Stéphane Graber <stgraber@ubuntu.com>

config/apparmor/abstractions/container-base		diff \| blob \| blame \| history
config/apparmor/abstractions/container-base.in		diff \| blob \| blame \| history

Mirror of https://github.com/lxc/lxc.git

RSS Atom