About This Guide

Novell® AppArmor is designed to provide easy-to-use application security for both servers and workstations. Novell AppArmor is an access control system that lets you specify per program which files the program may read, write, and execute. AppArmor secures applications by enforcing good application behavior without relying on attack signatures, so can prevent attacks even if they are exploiting previously unknown vulnerabilities.

Novell AppArmor consists of:

This guide covers the following topics:

Immunizing Programs

Describes the operation of Novell AppArmor.

Selecting Programs to Immunize

Describes the types of programs that should have Novell AppArmor profiles created for them.

Building Novell AppArmor Profiles

Describes how to use the Novell AppArmor tools to immunize your own programs and third-party programs that you may have installed on your SUSE Linux system. It also helps you to add, edit, or delete profiles that have been created for your applications.

Managing Profiled Applications

Describes how to perform Novell AppArmor profile maintenance, which involves tracking common issues and concerns.

Profiling Your Web Applications Using ChangeHat Apache

Enables you to create subprofiles for the Apache Web server that allow you to tightly confine small sections of Web application processing.

Support

Indicates support options for this product.

Glossary

Provides a list of terms and their definitions.

[Note]Note

Novell AppArmor ships with any SUSE Linux–based Novell operating system. Text references to SUSE Linux apply to SUSE Linux OSS, the SUSE Linux retail product, and the SUSE Linux Enterprise product family.

1. Feedback

We want to hear your comments and suggestions about this manual and the other documentation included with this product. Please use the User Comments feature at the bottom of each page of the online documentation and enter your comments there.