Skip to main content

Apparmor: Against Zero Day Attacks


I have my feed on Ubuntu Forum yesterday. I'm in the security discussion threads and I happen to come across the sticky for apparmor by the ubuntuguru. I like what I'm reading and the article is enjoining ubuntu users to take advantage of apparmor.

Apparmor is an alternative to Selinux. What it does is use application profiles to confine applications to only do what those profiles allow. It can run in complain mode or enforce mode. In complain mode, it basically learns to abide by the profile. The profile itself can be modified when running in complain mode. The user can allow or deny a particular behavior and incorporate that into the new profile. In the enforce mode, applications may proceed as before or be restricted to do a function according to the set profile. What apparmor does is prevent rogue applications from getting increased priveleges and thereby wreak havoc to the system.

Apparmor protects against zero-day attacks. Zero-day attacks are dangerous because the malware is as yet unknown and unclassified. We don't know what they are going to do. There is simply no patch for it. The vulnerability might be known but not fixed yet. Or it is unknown entirely. If an attacker uses an unknown malware to take over an application, that application is prevented by its apparmor profile from doing something worse to the system.

It is a very nice security discussion.

Comments

Popular posts from this blog

Password Issues On Ubuntu Login

I found myself unable to enter my login credentials when prompted to do so in Ubuntu. I think I might have changed it then forget about it. I've been running the current session for more days than I should have. I forget. So what's the solution to my problem. How do I get in to my system now? It involved getting into the grub menu somehow. I am uncertain as to how to do that exactly in your system. So there's a couple of ways to do it (finger's crossed). When booting at system start, use the esc key or the shift key. The first one worked for me. The timing is key. Wait until the bios banner shows then hit the esc key once. I am using Ubuntu 22.04.4 here. I have a current version of grub. The grub menu will give you options and the one you want is: root. Yes you want root privileges to set the root password. It should give you a terminal access where you can issue commands. Type: #mount -rw -o -s remount / ==> this command mounts the filesyste...

New ZFS Pool And the New 4TB Hard Drive

I am using the new pool for my videos and music. Downloading them using my torrent client, transmission. The old pool is raidz2 and now I am using a raidz1 only. But and a big but I gained space of up to 4.5 TB.

2024 So Far

I have a feeling of moving earth or walking off my itchiness. The growing fat in my belly tells me I am failing on many occasions to give in to this urge. My eyes are blurred by morning glory. I remember my father having the same ritual in the morning. After his weak stroke, he couldn't speak much, just a grunt but he would demonstrate with hand how he liked to wash his face. The weather wasn't helping. It's been raining cats and dogs the past week. The province of Rizal was soaked and spilled volumes of water into the bay and Laguna lake. Our Caimito tree was cut to no more than 4 feet from the ground. It was towering above the corrugated sheet metal of our roof. Now it lay horizontal on the yard. I calculated it could be made into a whole table and chairs set by a talented carpenter artist. I showed Lino the two big pieces of trunk that could only be moved if cut by a power saw in place. The road widening project in San Mateo was in the middle stage. One side of the road ...