TOMOYO

Fork

[tomoyo-users-en 337] Re: Tomoyo: reload changed policy

• Previous message (by thread): [tomoyo-users-en 336] Re: Tomoyo: reload changed policy
• Next message (by thread): [tomoyo-users-en 338] Re: Tomoyo: reload changed policy
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 14 May 2011 22:42:50 +0900
Tetsuo Handa <from-****@I-lov*****> wrote:

> Right. Only programs or domains registered to
> /sys/kernel/security/tomoyo/manager are permitted to modify policy via
> /sys/kernel/security/tomoyo/ interface.

Great!

> You can do
> 
> # echo /path/to/your/program >> /etc/tomoyo/manager.conf
> # tomoyo-loadpolicy -m < /etc/tomoyo/manager.conf
> 
> Please note that /sys/kernel/security/tomoyo/ interface interprets
> input as append operation unless a line starts with "delete " keyword.

I would like to replace the whole policy every time. Not only manage a
domain or a domain's entry. Is that possible too? 

• Previous message (by thread): [tomoyo-users-en 336] Re: Tomoyo: reload changed policy
• Next message (by thread): [tomoyo-users-en 338] Re: Tomoyo: reload changed policy
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]