> As such, AA can detect whether you did exec("gzip") or exec("gunzip")
That's not actually useful for programs which link the same binary to
multiple names because if you don't consider argv as well I can run
/usr/bin/gzip passing argv of "gunzip" and get one set of policies and
the other set of behaviour.
And then we have user added hardlinks of course.