This request supersedes:
request 1005457
(Show diff)
Overview
Loading...
target maintainer
Could you give some context on that? Will other exporters also get AppArmor profile?
author
source maintainer
It is just hardening to prevent misusing this exporter to break out into the system.
Currently only mtail has an AppArmor profile maintained by me: https://build.opensuse.org/package/view_file/server:monitoring/mtail/apparmor-usr.sbin.mtail?expand=1
But in my local setup node-exporter also runs with a home-grown AppArmor profile and I will submit this to the package soon.
Login required, please
login
in order to comment
@STorresi, @aeneas_jaissle, @aldemir_a, @bitshuffler, @bnicholes, @ciriarte, @dakechi, @darix, @deadpoint, @dstoecker, @ecsos, @jcavalheiro, @jubalh, @lrupp, @marostegui, @mcaj, @mge1512, @mnhauke, @mseben, @netmask, @peternixon, @psmt, @rhomann, @schubi2, @shapbot, @worldcitizen, @wrosenauer: review reminder