Hi all, I had a program which launched by systemd, and had NoNewPrivileges=true in the service file. This program will use GIO subprocess to execute another program2. Program2 will failed to run if applied AppArmor profile to it. But if mark NoNewPrivileges=true out, then everything works fine. Can NoNewPrivileges=true can work with AppArmor together?
Regards, Dirk