On Sat, Feb 4, 2012 at 11:48 AM, Jeroen Ooms <[email protected]>wrote:
> I was wondering if anyone tried, or knows if the > apache2-mpm-itk<http://mpm-itk.sesse.net/> module > (which is a mod of mpm-prefork) is compatible with mod-apparmor? > I tested it and it works like a charm. I created a profile /usr/lib/apache2/mpm-itk/apache2 which is identical to the prefork one, with the only difference that the ^HANDLING_UNTRUSTED_INPUT hat by default includes: capability setgid, capability setuid, Which is obvious because this is exactly the purpose of itk. Maybe this file could be included in the libapache2-mod-apparmor package?
-- AppArmor mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
