openstack/ansible-hardening
Code Issues Proposed changes
24f3f73717
ansible-hardening/doc/source/developer-notes/V-51363.rst
Major Hayden a841e184de Docs: Update dev notes for Cat 2 controls 
This patch updates the documentation for the developer notes associated
with the Cat 2 (Medium) controls applied by the security role.

Partial-bug: 1583744

Change-Id: Ic342f33942521db009185585a21208a4688f6ed3
2016-05-25 11:38:13 -05:00

8 lines
380 B
ReStructuredText
Raw Blame History

For Ubuntu, the standard AppArmor policies provided by the AppArmor package are
loaded. The OpenStack-Ansible project also configures AppArmor to limit the
actions of containers and reduce the changes (and potential damages) of a
container breakout.
On CentOS 7, the ``selinux-policy-targeted`` package provides SELinux policies
that enforce limits on system services and users.
View Git Blame Copy Permalink