LPIC-3 Exam 303 (Security) — Question 12

Which of the following are differences between AppArmor and SELinux? (Choose TWO correct answers).

Answer options

• A. AppArmor is implemented in user space only. SELinux is a Linux Kernel Module.
• B. AppArmor is less complex and easier to configure than SELinux.
• C. AppArmor neither requires nor allows any specific configuration. SELinux must always be manually configured.
• D. SELinux stores information in extended file attributes. AppArmor does not maintain file specific information and states.
• E. The SELinux configuration is loaded at boot time and cannot be changed later on. AppArmor provides user space tools to change its behavior.

Correct answer: B, D

Explanation

The correct answers are B and D. Answer B is accurate as AppArmor is generally considered easier to configure than SELinux due to its simpler model. Answer D is also correct because SELinux uses extended file attributes for its policies, while AppArmor does not track detailed file information.