27Eyl
Getting apparmor to profile a program inside docker container
I'm looking to profile a service running inside a specific docker container. I went through the documentation of aa-genprof and aa-autodep and both take program as input to profile. I can't seem to find a way to point those programs to profile a binary inside the docker container.
I tried mounting the directory of the program inside the container and then referencing that program, but its logs are not captured in audit.log. Thoughts?
Is there some other way I can build a profile for that docker container?
