Back to home page

OSCL-LXR
 
 

     

0001 ======
0002 TOMOYO
0003 ======
0004 
0005 What is TOMOYO?
0006 ===============
0007 
0008 TOMOYO is a name-based MAC extension (LSM module) for the Linux kernel.
0009 
0010 LiveCD-based tutorials are available at
0011 
0012 http://tomoyo.sourceforge.jp/1.8/ubuntu12.04-live.html
0013 http://tomoyo.sourceforge.jp/1.8/centos6-live.html
0014 
0015 Though these tutorials use non-LSM version of TOMOYO, they are useful for you
0016 to know what TOMOYO is.
0017 
0018 How to enable TOMOYO?
0019 =====================
0020 
0021 Build the kernel with ``CONFIG_SECURITY_TOMOYO=y`` and pass ``security=tomoyo`` on
0022 kernel's command line.
0023 
0024 Please see http://tomoyo.osdn.jp/2.5/ for details.
0025 
0026 Where is documentation?
0027 =======================
0028 
0029 User <-> Kernel interface documentation is available at
0030 https://tomoyo.osdn.jp/2.5/policy-specification/index.html .
0031 
0032 Materials we prepared for seminars and symposiums are available at
0033 https://osdn.jp/projects/tomoyo/docs/?category_id=532&language_id=1 .
0034 Below lists are chosen from three aspects.
0035 
0036 What is TOMOYO?
0037   TOMOYO Linux Overview
0038     https://osdn.jp/projects/tomoyo/docs/lca2009-takeda.pdf
0039   TOMOYO Linux: pragmatic and manageable security for Linux
0040     https://osdn.jp/projects/tomoyo/docs/freedomhectaipei-tomoyo.pdf
0041   TOMOYO Linux: A Practical Method to Understand and Protect Your Own Linux Box
0042     https://osdn.jp/projects/tomoyo/docs/PacSec2007-en-no-demo.pdf
0043 
0044 What can TOMOYO do?
0045   Deep inside TOMOYO Linux
0046     https://osdn.jp/projects/tomoyo/docs/lca2009-kumaneko.pdf
0047   The role of "pathname based access control" in security.
0048     https://osdn.jp/projects/tomoyo/docs/lfj2008-bof.pdf
0049 
0050 History of TOMOYO?
0051   Realities of Mainlining
0052     https://osdn.jp/projects/tomoyo/docs/lfj2008.pdf
0053 
0054 What is future plan?
0055 ====================
0056 
0057 We believe that inode based security and name based security are complementary
0058 and both should be used together. But unfortunately, so far, we cannot enable
0059 multiple LSM modules at the same time. We feel sorry that you have to give up
0060 SELinux/SMACK/AppArmor etc. when you want to use TOMOYO.
0061 
0062 We hope that LSM becomes stackable in future. Meanwhile, you can use non-LSM
0063 version of TOMOYO, available at http://tomoyo.osdn.jp/1.8/ .
0064 LSM version of TOMOYO is a subset of non-LSM version of TOMOYO. We are planning
0065 to port non-LSM version's functionalities to LSM versions.
Source navigation ] Diff markup ] Identifier search ] general search ]

This page was automatically generated by the 2.1.0 LXR engine.

The LXR team
Valid CSS 2.1! Valid HTML 4.01!