[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Let's enable AppArmor by default (why not?)

On viernes, 4 de agosto de 2017 19:31:36 -03 intrigeri wrote:
> Hi!
> tl;dr: I hereby propose we enable AppArmor by default in testing/sid,
> and decide one year later if we want to keep it this way in the
> Buster release.
> My goals when initiating this discussion are:
>  - Get a rough idea of what amount of effort the Debian project is
>    happy (and able) to invest into such proactive security measures.
>  - Learn about any relevant social & technical concerns I am not
>    aware of.
> I don't expect we'll make a decision based on this very proposal:
> I expect the proposal will need to be refined, or abandoned, to take
> into account what we will learn during this preliminary discussion.

From the way you redacted this you made me want to try apparmor. That's 
already a big compliment :-)

For what I read in the proposal and in the thread I do believe we need to at 
least try this for a year.

So my +1 for going ahead.

Hi! I'm a .signature virus! Copy me into your ~/.signature, please!

Lisandro Damián Nicanor Pérez Meyer

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to: