Hello Everyone, I'm new to Tomoyo and feel kind of noob in the ccs policy editor. I'd like to secure my LXC containers with Tomoyo, and as they start in a different namespace, i'd like to set the option "exec.realpath=yes" to the learning profile so that tomoyo understand that the /sbin/init and all subprocesses are "chrooted" in a particular directory - At least i think this is how i should achieve that. The problem is, that when i'm in the profile editor section, i hit "S" to insert a new value in the learning PREFERENCE line, but when hitting "enter", it just doesn't update my profile with the new values... I'm not sure what i'm doing wrong... I also tried to edit the /etc/ccs/profile.conf by hand and to load it into the policy without success...
I'd be very pleased if someone could explain me how to achieve that as it doesn't seem to be documented in the documentation pages. Kind regards, Olivier Ps: I'm using latest patch and utils on 2.6.28 kernel.
_______________________________________________ tomoyo-users-en mailing list [email protected] http://lists.sourceforge.jp/mailman/listinfo/tomoyo-users-en
