/sys/kernel/security/apparmor/profiles
Virtualized file representing the currently loaded set of profiles.
/etc/apparmor/
Location of AppArmor configuration files.
/etc/apparmor/profiles/extras/
A local repository of profiles shipped with AppArmor, but not enabled by default.
/etc/apparmor.d/
Location of profiles, named with the convention of replacing the
/
in pathnames with .
(not for
the root /
) so profiles are easier to manage. For
example, the profile for the program
/usr/sbin/ntpd
is named
usr.sbin.ntpd
.
/etc/apparmor.d/abstractions/
Location of abstractions.
/etc/apparmor.d/program-chunks/
Location of program chunks.
/proc/*/attr/current
Review the confinement status of a process and the profile that is
used to confine the process. The ps
auxZ
command retrieves this information
automatically.