Hello! While digging into the audit logs, I noticed that "file execute" events dump envp[] info, which contains the variable USERNAME that shows which user has launched the process. This tells me that Akari is able to know which user is launching the program. I was wondering if implementing some sort of process execution restriction by user is something that is being considered or if it has ever been considered and discarded. Curious to know, since I think it could be quite powerful and useful.
Thanks and cheers, Esteban.
_______________________________________________ tomoyo-users-en mailing list tomoyo-users-en@lists.osdn.me https://lists.osdn.me/mailman/listinfo/tomoyo-users-en
