16:15. Why is there a deny if it's a MAC? Everything should be denied by default anyway. Unless you allowed earlier a wildcard allow and want inside this wilcard selection to deny one single thing? But that would work only when actually writing the rules by hand no?
Thanks for watching! I can make the excuse that the Deny is more of a "Keep Denying" since we are being prompted on what we want to do with the log message entry. I think you are right it is not necessary to have that manual entry created since it was already being denied. The wildcard explanation makes sense to me also.
![Getting Started Vim [On Raspberry Pi Linux]](http://i.ytimg.com/vi/UCdVgy2KnBM/mqdefault.jpg)
![Getting Started Vim [On Raspberry Pi Linux]](/img/tr.png)
best video about AppArmor.
Thanks for watching! Very glad you found it beneficial
16:15. Why is there a deny if it's a MAC? Everything should be denied by default anyway. Unless you allowed earlier a wildcard allow and want inside this wilcard selection to deny one single thing? But that would work only when actually writing the rules by hand no?
Thanks for watching! I can make the excuse that the Deny is more of a "Keep Denying" since we are being prompted on what we want to do with the log message entry. I think you are right it is not necessary to have that manual entry created since it was already being denied. The wildcard explanation makes sense to me also.
Thank you, It`s a very useful video.
Thanks glad to hear it!
any video about restriction of binary execution like (ls) through apparmor
thanks man
Thanks for watching!
It dosent use virculisation? Sand boxing?
Thanks for watching! I am not sure I understand what you mean here
@@OsborneProI think I was asking if Linux mint used virtualized sand boxes which I don't think it does? Great video 👍
@@aaron6841 ah I think you are right. Thanks again!