Hi there, we use apparmor on our production systems and want to test the setup in our test environment based on systemd-nspawn. Therefore, I installed apparmor on the host (debian stretch) and updated GRUB_CMDLINE_LINUX in /etc/default/grub to enable apparmor. I can use apparmor on the host system. However, within my containers, apparmor can not be started. `journalctl -kf` does not print anything when invoking `systemctl start apparmor` on the container and `systemctl status apparmor` just returns "ConditionSecurity=apparmor was not met". Is it possible to run apparmor in a container? Cheers, Matthias
Apparmor in containers
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Apparmor in containers
- From: matthias@xxxxxxxxxxx (Matthias Pfau)
- Date: Tue, 10 Apr 2018 18:16:48 +0200 (CEST)
- Follow-Ups:
- Apparmor in containers
- From: Lennart Poettering
- Apparmor in containers
- Prev by Date: nspawn: how to rename network interfaces?
- Next by Date: Run fuse in nspawn container?
- Previous by thread: How to get rid of audit logs only from the systemd journal?
- Next by thread: Apparmor in containers
- Index(es):
 |