Tool and Usage
Karn is a tool to create AppArmor and seccomp profiles. This can be useful to restrict what applications can do for increased security.
Why this tool?
Karn helps to create profiles for applications. This is done with the available security mechanisms found on the system including AppArmor, capabilities, and seccomp.
How it works
By creating files in the TOML format, you tell the tool what an application can do. This could be for example stating which system calls are safe for that application. Karn then processes the TOML file and creates the related profiles.
Usage and audience
Karn is commonly used for application security or system hardening.
- + The source code of this software is available
Author and Maintainers
Karn is under development by Grant Seltzer.