On 19/08/2011 06:07, Tetsuo Handa wrote: > You can run TOMOYO 2.4 on Linux 2.6.38/2.6.39/3.0 (if you want to do so) > by simply overwriting security/tomoyo/ directory like > > $ wget -O linux-3.1-rc2.tar.bz2 http://www.kernel.org/pub/linux/kernel/v3.0/testing/linux-3.1-rc2.tar.bz2 > $ tar -jxf linux-3.1-rc2.tar.bz2 --strip 1 linux-3.1-rc2/security/tomoyo/ Works great, thanks! >> BTW, do you have an IRC channel somewhere? > > No. I seldom use IRC. > > Should we create one for TOMOYO? Well if people are willing to discuss some more, then yes, it's a good way to have a good chat :) A channel on irc.freenode.net would be nice! I have just now reserved #tomoyolinux & #tomoyo-linux, let me know if you want one of these. #tomoyo is already taken but you could reclaim it, I guess. While I'm at it, quick question: I can't find a way to create deny rules for the domain, for example "deny file read /etc/shadow" so that Tomoyo does not try to add "file read /etc/shadow" every time the program requests it. There was a similar functionality in AppArmor, it is quite handy for applications known to do stuff that are not necessary. Is this currently possible? Cheers, Milton.
TOMOYO
Fork