Difficulty: Beginner
Estimated Time: 10 minutes

Part of OSCON 2016 Tutorial. It might take a few minutes to start, given the number of attendees in the workshop. Give it max 5 minutes :)

Don’t stop now! The next scenario will only take about 10 minutes to complete.

Bane - AppArmor Profile Generator

Step 1 of 2

AppArmor

Download AppArmor Nginx Profile

curl -LO https://raw.githubusercontent.com/katacoda/oscon2016-docker-perf-sec/master/tutorial/2_Security/4_apparmor/docker-nginx

cat docker-nginx

Parse

sudo apparmor_parser -r -W docker-nginx

run with profile

docker run --security-opt "apparmor=docker-nginx" -d --name apparmor-nginx nginx

Execute Into Container: docker exec -it apparmor-nginx bash

Try the following commands:

ping 8.8.8.8
top
touch ~/thing