You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the proxy v2 architecture, it should be relatively straightforward for us to confine the proxy under apparmor, as it needs no file access and should only be making outbound requests on port 80/443.
The text was updated successfully, but these errors were encountered:
I tried to do this today but aa-genprof didn't really work, it generated all the log events but processed them for the profile. Will spend a bit more time poking at it before trying something else.
Because this is a static Rust binary, it ends up being super simple, we
just need to import the abstractions for DNS, OpenSSL and TLS certs.
Fixes#1889.
In the proxy v2 architecture, it should be relatively straightforward for us to confine the proxy under apparmor, as it needs no file access and should only be making outbound requests on port 80/443.
The text was updated successfully, but these errors were encountered: