First of all, I would like to thank the developers for TOMOYO Linux. I've been using it for well over a year now quite happily. It's saved me more than once already from some misaimed "rm -rf"'s and a lot of headaches. Thank you!
A friend approached me asking if TOMOYO Linux could lock down a single user, and leave the rest of the system largely untouched. I expected it would be possible, but I have not been able to determine out how to go about it. I figured that it would be best to simply create a locked down domain which the specific user would be domain transitioned into. If necessary, another domain could be created for all other users (which would use use_profile 0). However, I could not figure out how to go about transferring the domains properly based on the user. To lock down the user with uid 1001, I tried to use initialize_domain //lockdown from any initialize_domain //open from any In the exception policy, and <kernel> use_profile 3 use_group 0 task auto_domain_transition <kernel> //lockdown task.uid=1001 task auto_domain_transition <kernel> //open task.uid!=1001 <kernel> //lockdown use_profile 3 use_group 0 <kernel> //open use_profile 0 use_profile 0 in the domain policy. However, it seemed that any program I tried to run would fall under the "<kernel> init" etc domain, and not go into either //lockdown or //open. I've tried to play with keep_domain and no_keep_domain, but couldn't find a way to get it to work out. Am I going about this the proper way, and am just missing? Or is there a completely different way to approach locking down a single user that would be preferable? Thanks, Daniel _______________________________________________ tomoyo-users-en mailing list [email protected] http://lists.sourceforge.jp/mailman/listinfo/tomoyo-users-en
