Originally Posted by
aeronutt
If using linux needs this (apparmor) in order to be secure, and apparmor is this difficult to get right, then I'd argue linux isn't secure.
What makes you think it is hard to use? One command is all it takes to start enforcing AppArmor.
Code:
sudo /etc/init.d/apparmor start
Originally Posted by
Gentoo64
You don't need apparmor... the average user shouldn't need to touch it. But as it's there, built into Ubuntu, no harm in learning it if you're interested in security.
Things like apparmor, grsec, selinux are mostly for server type systems, but nothing stopping anyone using any of them on a desktop. They're certainly not pointless, but as a normal desktop user shouldn't be doing much, they shouldn't be needed either.
If someone exploits a program, apparmor just limits what they can then access, but security updates usually fix exploits anyway. So the main one basically is just to stay up to date. But even running very out of date software, I doubt the average joe would be at much risk anyway.
The average Joe probably clicks lot of links while surfing the net. All it takes is one with a bad script to hijack/compromise a system when not using AppArmor.
Bookmarks