NAME
tomoyo-editpolicy - Edit TOMOYO Linux’s policy
SYNOPSIS
tomoyo-editpolicy [{e|d|p|m|u}] [readonly] [refresh=interval]
[policy_dir|remote_ip:remote_port]
DESCRIPTION
This program edits TOMOYO Linux’s policy currently loaded in the
kernel.
e Set initial screen to exception policy editor.
d Set initial screen to domain policy editor. This is default.
p Set initial screen to profile editor.
m Set initial screen to manager editor.
u Set initial screen to memory usage.
readonly
Browse mode. No editing is allowed.
refresh=interval
Reload automatically for every interval seconds.
policy_dir
Edit policy files stored in policy_dir directory instead for
policy currently loaded. Must starts with / .
remote_ip:remote_port
Edit policy via agent listening at specified IP address and port
number.
EXAMPLES
# tomoyo-editpolicy
Start policy editor with domain policy editor screen.
# tomoyo-editpolicy /etc/tomoyo/192.168.1.1/
Edit policy stored in /etc/tomoyo/192.168.1.1/ directory.
# tomoyo-editpolicy 192.168.1.1:10000
Edit policy via connecting to 192.168.1.1:10000 .
Usage with images are available at
http://tomoyo.sourceforge.jp/en/2.2.x/tool-editpolicy.html
NOTES
You need to register either path to this program ( /usr/sbin/tomoyo-
editpolicy ) or a domain for this program in
/sys/kernel/security/tomoyo/manager before invoking this program.
AUTHORS
penguin-kernel _at_ I-love.SAKURA.ne.jp
Line coloring feature is made by Yoshihiro Kusuno <yocto _at_
users.sourceforge.jp>.
COPYRIGHT
Copyright © 2005-2009 NTT DATA CORPORATION.
This program is free software; you may redistribute it under the terms
of the GNU General Public License. This program has absolutely no
warranty.
SEE ALSO
tomoyo-loadpolicy (8)
tomoyo-editpolicy-agent (8)