On Sun, Nov 14, 2010 at 02:18:05PM +0900, Tetsuo Handa wrote: > Hello. > > Anton Khirnov wrote: > > I see that new numerical parameters were added to many directives, like > > allow_create, allow_ioctl etc. Is there a way to get the old behavior -- > > e.g. allow creating files with any mode, or arbitrary ioctls? > > Please see > http://sourceforge.jp/projects/tomoyo/lists/archive/users-en/2010-October/000222.html > > In addition to above info, you may add > > number_group ANY_NUMBER 0-0xFFFFFFFF > > (for 32bits environments) or > > number_group ANY_NUMBER 0-0xFFFFFFFFFFFFFFFF > > (for 64bits environments) to /sys/kernel/security/tomoyo/exception_policy > and refer it from /sys/kernel/security/tomoyo/domain_policy like > > allow_create /path/to/file @ANY_NUMBER > allow_ioctl /path/to/file @ANY_NUMBER > > etc. > > Regards.
Thanks for the answer, works fine. -- Anton Khirnov
signature.asc
Description: Digital signature
_______________________________________________ tomoyo-users-en mailing list [email protected] http://lists.sourceforge.jp/mailman/listinfo/tomoyo-users-en
