"As we seek to secure our infrastructure, it is imperative that nobody falls victim to the belief that it cannot happen to them. We all need to check our systems for intrusion." http://www.theregister.co.uk/2011/10/04/linux_repository_res/ I wish mrk would do an Apparmor for dummies !
App Armor is in need of a GUI for mainstream deployment, the command line is much faster but not everyone's cup of tea unfortunately.
Not an issue for me, so if you know of some "easy" reading on the subject, maybe we could have a thread on that?
Well, I'm not sure if it's easy reading , but a comprehensive AppArmor guide can be found here. @linuxforall: The SuSE GUI contained in YaST is also covered starting here.
You're both welcome! For Ubuntu users there is also https://help.ubuntu.com/community/AppArmor , of course, and https://wiki.ubuntu.com/DebuggingApparmor. It's also a good idea not to modify the profiles in /etc/apparmor.d themselves (which will be overwritten when, e.g., a new FF version is installed) but the respective ones in /etc/apparmor.d/local instead. But please read the README file in that directory, particularly the last sentence (priority of deny rules in the shipped profiles).