~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

TOMOYO Linux Cross Reference
Linux/Documentation/admin-guide/LSM/index.rst

Version: ~ [ linux-6.11.5 ] ~ [ linux-6.10.14 ] ~ [ linux-6.9.12 ] ~ [ linux-6.8.12 ] ~ [ linux-6.7.12 ] ~ [ linux-6.6.58 ] ~ [ linux-6.5.13 ] ~ [ linux-6.4.16 ] ~ [ linux-6.3.13 ] ~ [ linux-6.2.16 ] ~ [ linux-6.1.114 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.169 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.228 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.284 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.322 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.336 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.9 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~

Diff markup

Differences between /Documentation/admin-guide/LSM/index.rst (Version linux-6.11.5) and /Documentation/admin-guide/LSM/index.rst (Version policy-sample)


  1 ===========================                       
  2 Linux Security Module Usage                       
  3 ===========================                       
  4                                                   
  5 The Linux Security Module (LSM) framework prov    
  6 various security checks to be hooked by new ke    
  7 "module" is a bit of a misnomer since these ex    
  8 loadable kernel modules. Instead, they are sel    
  9 CONFIG_DEFAULT_SECURITY and can be overridden     
 10 ``"security=..."`` kernel command line argumen    
 11 LSMs were built into a given kernel.              
 12                                                   
 13 The primary users of the LSM interface are Man    
 14 (MAC) extensions which provide a comprehensive    
 15 include SELinux, Smack, Tomoyo, and AppArmor.     
 16 MAC extensions, other extensions can be built     
 17 specific changes to system operation when thes    
 18 in the core functionality of Linux itself.        
 19                                                   
 20 The Linux capabilities modules will always be     
 21 followed by any number of "minor" modules and     
 22 For more details on capabilities, see ``capabi    
 23 man-pages project.                                
 24                                                   
 25 A list of the active security modules can be f    
 26 ``/sys/kernel/security/lsm``. This is a comma     
 27 will always include the capability module. The    
 28 order in which checks are made. The capability    
 29 be first, followed by any "minor" modules (e.g    
 30 the one "major" module (e.g. SELinux) if there    
 31                                                   
 32 Process attributes associated with "major" sec    
 33 be accessed and maintained using the special f    
 34 A security module may maintain a module specif    
 35 named after the module. ``/proc/.../attr/smack    
 36 security module and contains all its special f    
 37 in ``/proc/.../attr`` remain as legacy interfa    
 38 subdirectories.                                   
 39                                                   
 40 .. toctree::                                      
 41    :maxdepth: 1                                   
 42                                                   
 43    apparmor                                       
 44    LoadPin                                        
 45    SELinux                                        
 46    Smack                                          
 47    tomoyo                                         
 48    Yama                                           
 49    SafeSetID                                      
                                                      

~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

kernel.org | git.kernel.org | LWN.net | Project Home | SVN repository | Mail admin

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

sflogo.php