karl156 wrote: > But for the empty domains these 3 lines are somewhat useless to me. So > there is no simple way to stop this auto adding?
You can define keep_domain in the exception policy. ( http://tomoyo.sourceforge.jp/2.5/chapter-5.html#5.2 ) > I am just thinking if something like this would do the job: > "file execute /\{\*\}/\* keep" You may want to specify keep_domain any from any in the exception policy, which by default suppresses domain transition. > Off-topic: How do I set a placeholder for any number? > "file chmod /path/to/file 0644" works > "file chmod /path/to/file 0-99999" works but is range limited > "file chmod /path/to/file \*" does not work > "file chmod /path/to/file *" does not work You can define number_group like number_group ANY_NUMBER 0-0xFFFFFFFF in the exception policy and refer it using @groupname like file chmod /path/to/file @ANY_NUMBER . ( http://tomoyo.sourceforge.jp/2.5/chapter-6.html#6.3 ) This is past 2 AM. Next response will be after morning. _______________________________________________ tomoyo-users-en mailing list [email protected] http://lists.sourceforge.jp/mailman/listinfo/tomoyo-users-en
