AppArmor Help

Discussion in 'all things UNIX' started by notthatguy, Sep 17, 2013.

Thread Status:
Not open for further replies.
  1. notthatguy

    notthatguy Registered Member

    Joined:
    Apr 7, 2012
    Posts:
    34
    New Ubuntu user so I apologize if this is a stupid question, I'm attempting to modify files by modifying the files in /etc/apparmor.d I am unable to modify anything in this folder.

    If I try to put my own profile in here it wont copy into the folder, if I try to edit an existing file I get "Permission Denied"

    I am the only user and am set to root, any ideas?

    OS: Xubuntu 13.04
     
  2. notthatguy

    notthatguy Registered Member

    Joined:
    Apr 7, 2012
    Posts:
    34
    Well I managed to edit an existing profile but I had to run Mousepad through the console via root and it allowed me to save my edits.

    Would really like to know why as the only user and with root settings I am unable to touch a single file in that folder through the file manager. Really is making me leary about Linux.
     
  3. Gullible Jones

    Gullible Jones Registered Member

    Joined:
    May 16, 2013
    Posts:
    1,461
    That's how Linux works. You run as a limited user, and su/sudo to root as needed for system tasks; pretty much the same as on Windows 7.

    No offense, BTW, but I'd recommend familiarizing yourself with Linux filesystem permissions and discretionary access control, before you start configuring mandatory access control frameworks like AppArmor. A misconfigured MAC framework can break all kinds of things.
     
  4. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,516
    It's like trying to configure a file/folder or registry entry owned by SYSTEM or TrustedInstaller in Windows, nothing to be leery about. Don't forget to make a disk image before messing with it.
     
  5. notthatguy

    notthatguy Registered Member

    Joined:
    Apr 7, 2012
    Posts:
    34
    Thanks that makes more sense
     
  6. mack_guy911

    mack_guy911 Registered Member

    Joined:
    Mar 21, 2007
    Posts:
    2,677
  7. chronomatic

    chronomatic Registered Member

    Joined:
    Apr 9, 2009
    Posts:
    1,343
    That will open the file in gedit with root access. But unless you know what you're doing, don't mess with apparmor. There should already be a firefox profile in there.
     
Loading...
Thread Status:
Not open for further replies.