I’m trying to generate AppArmor policies to secure my “major/internet-facing” programs.
Most of those programs are Flatpaks.
Flatpaks already have their own sandboxing mechanism, which uses bwrap and XDG portals.
Does AppArmor have any weird interactions with Flatpak, e. g. blocking too much, or blocking too little, or being unable to block anything without rendering the whole program unusable?
Do AppArmor and Flatpak have any weird interactions?
Submitted 5 months ago by DeltaWingDragon@sh.itjust.works to linux@sh.itjust.works
that_leaflet@lemmy.world 5 months ago
DeltaWingDragon@sh.itjust.works 5 months ago
Doesn’t Flatpak store separate applications for every user? I could see that causing trouble (the Firefox profile only confines on Alice’s account, Bob runs it without any Apparmor profile)
that_leaflet@lemmy.world 5 months ago