You are not logged in.

Pages: 1

#1 2024-06-18 05:30:38

city538183
Member
Registered: 2024-06-18
Posts: 1

AppArmor is not enabled despite editing /etc/default/grub

I am using GRUB2 as my bootloader and I would like to enable AppArmor. Although I edited "GRUB_CMDLINE_DEFAULT", it still does not start AppArmor. What to do now?

> aa-enabled
No - disabled at boot.

> nano /etc/default/grub
> cat /etc/default/grub
GRUB_DEFAULT=0
GRUB_TIMEOUT=5
GRUB_DISTRIBUTOR="Arch"
GRUB_CMDLINE_DEFAULT="apparmor=1 lsm=lockdown,yama,apparmor loglevel=3 quiet"
GRUB_CMDLINe_LINUX="... cryptdevice=UUID=...:root ..."
GRUB_TOP_LEVEL="/boot/vmlinuz-linux"
...

> reboot
> aa-enabled
No - disabled at boot.

Offline

#2 2024-06-18 13:44:48

V1del
Forum Moderator
Registered: 2012-10-16
Posts: 25,223

Re: AppArmor is not enabled despite editing /etc/default/grub

Compare cat /proc/cmdline

Editing /etc/default/grub  does not apply the resulting configuration until you regenerate the actual config file GRUB uses with 

grub-mkconfig -o /boot/grub/grub.cfg

Offline

Pages: 1

Board footer

Powered by FluxBB