aa-autodep - guess basic AppArmor profile requirements
aa-autodep <executable> [<executable> ...] [-d /path/to/profiles] [-f]
-d --dir /path/to/profiles Specifies where to look for the AppArmor security profile set. Defaults to /etc/apparmor.d. -f --force Overwrites any existing AppArmor profile for the executable with the generated minimal AppArmor profile.
aa-autodep is used to generate a minimal AppArmor profile for a set of executables. This program will generate a profile for binary executable as well as interpreted script programs. At a minimum aa-autodep will provide a base profile containing a base include directive which includes basic profile entries needed by most programs. The profile is generated by recursively calling ldd(1) on the executables listed on the command line. The --force option will overwrite any existing profile for the executable with the newly generated minimal AppArmor profile.
This program does not perform full static analysis of executables, so the profiles generated are necessarily incomplete. If you find any bugs, please report them at <https://bugs.launchpad.net/apparmor/+filebug>.
apparmor(7), apparmor.d(5), aa-complain(1), aa-enforce(1), aa-disable(1), aa_change_hat(2), and <http://wiki.apparmor.net>.
More Linux Commands
move_field(3form) - make and break connections between field
move_field.3form - The function set_form_fields changes the field pointer array of the given form. The array must be terminated by a NULL. The function form_fie
mount.ntfs(8) - Third Generation Read/Write NTFS Driver.....
ntfs-3g is an NTFS driver, which can create, remove, rename, move files, directories, hard links, and streams; it can read and write files, including streams, s
XSetRGBColormaps(3) - allocate, set, or read a standard colo
XSetRGBColormaps.3 - The XAllocStandardColormap function allocates and returns a pointer to a XStandardColormap structure. Note that all fields in the XStandard
sem_close(3) - close a named semaphore - Linux manual page
sem_close() closes the named semaphore referred to by sem, allowing any resources that the system has allocated to the calling process for this semaphore to be
tcsh(1) - C shell with file name completion and command line
tcsh is an enhanced but completely compatible version of the Berkeley UNIX C shell, csh(1). It is a command language interpreter usable both as an interactive l
systemd.target(5) - systemd target configuration files......
A unit configuration file whose name ends in .target encodes information about a target unit of systemd, which is used for grouping units and as well-known sync
ldapwhoami(1) - LDAP who am i? tool - Linux manual page.....
ldapwhoami implements the LDAP Who Am I? extended operation. ldapwhoami opens a connection to an LDAP server, binds, and performs a whoami operation. OPTIONS -V
errx(3) - formatted error messages - Linux manual page......
The err() and warn() family of functions display a formatted error message on the standard error output. In all cases, the last component of the program name, a
getdents(2) - get directory entries - Linux manual page.....
getdents.2 - This is not the function you are interested in. Look at readdir(3) for the POSIX conforming C library interface. This page documents the bare kerne
ipcmk(1) - create various ipc resources - Linux manual page
ipcmk allows you to create shared memory segments, message queues, and semaphore arrays. OPTIONS Resources can be specified with these options: -M, --shmem size
machine-id(5) - local machine ID configuration file.........
The /etc/machine-id file contains the unique machine ID of the local system that is set during installation. The machine ID is a single newline-terminated, hexa
puts(n) - Write to a channel (Local - Linux man page).......
Writes the characters given by string to the channel given by channelId. ChannelId must be an identifier for an open channel such as a Tcl standard channel (std