Disable AppArmor for Docker for ptrace_scope Disable AppArmor for Docker for ptrace_scope docker docker

Disable AppArmor for Docker for ptrace_scope


linux docker gdb ptrace apparmor

AppArmor can be disabled either by running unconfined, or as a privileged container:

  • --security-opt apparmor=unconfined (or apparmor:unconfined for docker 1.10 and below)
  • --privileged

However, a better option is to create a new profile that enables ptrace. You can use the docker AppArmor profile as a starting point (found in /etc/apparmor.d/docker), and append the ptrace peer=@{profile_name}.

You will also need to disable seccomp (unless using privileged), through --security-opt seccomp=unconfined

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last