FYI, quite a bit more work was done on IPC in AppArmor, including the
groundwork for fine-grained network mediation. Fine-grained network
mediation will not land for 14.10, but may land in 15.04-15.10.
** Tags added: aa-feature
** Changed in: apparmor (Ubuntu)
Importance: Wishlist => Medium
-
Thanks a lot!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/796588
Title:
Limit inet and inet6 access by source or destination port
To manage notifications about this bug go to:
https://bugs.launch
like what progress and where to find it?
Its being developed as part of the upstream apparmor project. The socket
labeling portion has landed in ubuntu saucy. This does not allow for control
based on ports or addresses but is the basis for that work.
So what is done is a base socket labeling on
Hi,
can comment a little more on that, like what progress and where to find it? Can
we expect to have it in future? Does it make sense to use dev package that
converges with future versions of ubuntu? Just anything. If i can find it
somewhere else, a link would help me a lot.
--
You received t
No, it has been repeatedly delayed but progress has been made on it. The
new base network patch on which this functionality will be built is in
testing. Further work is still needed to achieve better granularity but
work is being done
--
You received this bug notification because you are a member
It is safe to say it has been on hold, however, this work is still
planned and will hopefully be implemented by 14.04.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/796588
Title:
Limit inet and inet
Two years ago something "should be coming" - is it correctly understood
that this feature is indefinitely on hold?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/796588
Title:
Limit inet and inet6 ac
** Changed in: apparmor (Ubuntu)
Importance: Undecided => Wishlist
** Changed in: apparmor (Ubuntu)
Status: New => Triaged
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/796588
Title:
Limi
Yes, this ability should be coming in Oneiric, and we will hopefully
have some test kernels out soon.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/796588
Title:
Limit inet and inet6 access by sourc
