ポリシー仕様
内容
/sys/kernel/security/tomoyo/ インタフェース
- /sys/kernel/security/tomoyo/audit
- /sys/kernel/security/tomoyo/domain_policy
- /sys/kernel/security/tomoyo/exception_policy
- /sys/kernel/security/tomoyo/manager
- /sys/kernel/security/tomoyo/profile
- /sys/kernel/security/tomoyo/query
- /sys/kernel/security/tomoyo/self_domain
- /sys/kernel/security/tomoyo/stat
- /sys/kernel/security/tomoyo/version
- /sys/kernel/security/tomoyo/.process_status
- acl_group
- aggregator
- reset_domain
- no_reset_domain
- initialize_domain
- no_initialize_domain
- keep_domain
- no_keep_domain
- address_group
- number_group
- path_group
- file execute
- file read
- file write
- file append
- file getattr
- file create
- file unlink
- file chown
- file chgrp
- file chmod
- file mkdir
- file rmdir
- file mkfifo
- file mksock
- file mkblock
- file mkchar
- file truncate
- file symlink
- file link
- file rename
- file ioctl
- file mount
- file unmount
- file chroot
- file pivot_root
- misc env
- network inet
- network unix
- use_group
- use_profile
- task manual_domain_transition
- quota_exceeded
- transition_failed
- Chapter 10: 条件付きアクセス許可の使用 を参照ください。