What, exactly, is AppArmor? What does it seek to do? If you are looking for clarification, Crispin Cowan gives a nice overview. However:
This document is intended to specify the security goal that AppArmor is
intended to achieve, so that users can evaluate whether AppArmor will
meet their needs, and kernel developers can evaluate whether AppArmor is
living up to its claims. This document is *not* a general purpose
explanation of how AppArmor works, nor is it an explanation for why one
might want to use AppArmor rather than some other system.
The link for this article located at Kernel Trap is no longer available.
