https://github.com/tux3/jenkins-autoarmor
AppArmor confinement for Jenkins jobs
https://github.com/tux3/jenkins-autoarmor
apparmor jenkins
Last synced: 1 day ago
JSON representation
AppArmor confinement for Jenkins jobs
- Host: GitHub
- URL: https://github.com/tux3/jenkins-autoarmor
- Owner: tux3
- Created: 2015-12-03T18:21:59.000Z (almost 10 years ago)
- Default Branch: master
- Last Pushed: 2016-10-03T03:43:15.000Z (about 9 years ago)
- Last Synced: 2025-04-14T10:55:42.460Z (6 months ago)
- Topics: apparmor, jenkins
- Language: Java
- Homepage:
- Size: 33.2 KB
- Stars: 4
- Watchers: 3
- Forks: 2
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# AutoArmor
AutoArmor is a Jenkins plugin to isolate Jenkins jobs from each other and from the system using AppArmor.
## Installation
Build the plugin using Maven, and install it on the Jenkins master.
Then on all the Jenkins slaves that you want to protect:- Install AppArmor,
- Build the autoarmor-genprof and autoarmor-wrapper helpers using CMake
- Install both tools in the system PATH, and set the autoarmor-genprof helper setuid-rootAnd finally in the Jenkins master's system configuration set the AppArmor mode to Enforce to start using AppArmor.
## AppArmor profile configuration
autoarmor-genprof will generate AppArmor profiles on the fly for new Jenkins jobs,
but the profiles can be edited manually. Once a profile exists, autoarmor-genprof will not overwrite it.
The default profile is embedded in autoarmor-genprof.All the profiles can be found in /etc/apparmor.d/autoarmor/.