aa-notify - display information about logged AppArmor messages.
aa-notify [option]
aa-notify will display a summary or provide desktop notifications for AppArmor DENIED messages.
aa-notify accepts the following arguments:
poll AppArmor logs and display desktop notifications. Can be used with '-s' option to display a summary on startup.
set the DISPLAY environment variable to $DISPLAY (might be needed if sudo resets $DISPLAY)
search FILE for AppArmor messages
show summary since last login.
show summary for last NUM of days.
user to drop privileges to when running privileged. When used with the -p option, this should be set to the user that will receive desktop notifications. This has no effect when running under sudo.
wait NUM seconds before displaying notifications (for use with -p)
show messages with summaries.
displays a short usage statement.
System-wide configuration for aa-notify is done via /etc/apparmor/notify.conf:
  # set to 'yes' to enable AppArmor DENIED notifications
  show_notifications="yes"
  # only people in use_group can use aa-notify
  use_group="admin"Per-user configuration is done via ~/.apparmor/notify.conf:
  # set to 'yes' to enable AppArmor DENIED notifications
  show_notifications="yes"aa-notify needs to be able to read the logfiles containing the AppArmor DENIED messages.
If you find any additional bugs, please report them to Launchpad at https://bugs.launchpad.net/apparmor/+filebug.
apparmor(7)