{"description": "Fapolicyd (File Access Policy Daemon) implements application whitelisting\nto decide file access rights. Applications that are known via a reputation\nsource are allowed access while unknown applications are not. The daemon\nmakes use of the kernel's <tt>fanotify</tt> interface to determine file access rights.", "warnings": [], "requires": [], "conflicts": [], "values": {}, "groups": {}, "rules": ["fapolicy_default_deny", "fapolicyd_prevent_home_folder_access", "package_fapolicyd_installed", "service_fapolicyd_enabled"], "platform": "system_with_kernel", "platforms": ["system_with_kernel"], "inherited_platforms": [], "cpe_platform_names": ["system_with_kernel"], "title": "Application Whitelisting Daemon", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/fapolicyd/group.yml"}