Linux command
aa-complain 命令
安全
权限或系统影响较大,执行前请核对目标。
常用示例
Example
sudo aa-complain [path/to/profile]
Example
sudo aa-complain [path/to/profile1] [path/to/profile2]
Example
sudo aa-complain -d [path/to/profiles]
Example
sudo aa-complain --no-reload [path/to/profile]
说明
aa-complain switches AppArmor security profiles into complain mode. In this mode, security policy is not enforced but access violations are logged to the system log. This is useful for testing and developing new profiles without blocking application functionality.
参数
- -d, --dir /path/to/profiles
- Specifies the directory containing AppArmor profiles; defaults to /etc/apparmor.d
- --no-reload
- Prevents automatic profile reloading after modifications
FAQ
What is the aa-complain command used for?
aa-complain switches AppArmor security profiles into complain mode. In this mode, security policy is not enforced but access violations are logged to the system log. This is useful for testing and developing new profiles without blocking application functionality.
How do I run a basic aa-complain example?
Run `sudo aa-complain [path/to/profile]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does -d, --dir /path/to/profiles do in aa-complain?
Specifies the directory containing AppArmor profiles; defaults to /etc/apparmor.d