xref: /linux/Documentation/admin-guide/LSM/tomoyo.rst (revision c771600c6af14749609b49565ffb4cac2959710d) 
15ea672c7SKees Cook======
25ea672c7SKees CookTOMOYO
35ea672c7SKees Cook======
45ea672c7SKees Cook
55ea672c7SKees CookWhat is TOMOYO?
65ea672c7SKees Cook===============
75ea672c7SKees Cook
85ea672c7SKees CookTOMOYO is a name-based MAC extension (LSM module) for the Linux kernel.
95ea672c7SKees Cook
105ea672c7SKees CookLiveCD-based tutorials are available at
115ea672c7SKees Cook
12*c6144a21STetsuo Handahttps://tomoyo.sourceforge.net/1.8/ubuntu12.04-live.html
13*c6144a21STetsuo Handahttps://tomoyo.sourceforge.net/1.8/centos6-live.html
145ea672c7SKees Cook
155ea672c7SKees CookThough these tutorials use non-LSM version of TOMOYO, they are useful for you
165ea672c7SKees Cookto know what TOMOYO is.
175ea672c7SKees Cook
185ea672c7SKees CookHow to enable TOMOYO?
195ea672c7SKees Cook=====================
205ea672c7SKees Cook
215ea672c7SKees CookBuild the kernel with ``CONFIG_SECURITY_TOMOYO=y`` and pass ``security=tomoyo`` on
225ea672c7SKees Cookkernel's command line.
235ea672c7SKees Cook
24*c6144a21STetsuo HandaPlease see https://tomoyo.sourceforge.net/2.6/ for details.
255ea672c7SKees Cook
265ea672c7SKees CookWhere is documentation?
275ea672c7SKees Cook=======================
285ea672c7SKees Cook
295ea672c7SKees CookUser <-> Kernel interface documentation is available at
30*c6144a21STetsuo Handahttps://tomoyo.sourceforge.net/2.6/policy-specification/index.html .
315ea672c7SKees Cook
325ea672c7SKees CookMaterials we prepared for seminars and symposiums are available at
33*c6144a21STetsuo Handahttps://sourceforge.net/projects/tomoyo/files/docs/ .
345ea672c7SKees CookBelow lists are chosen from three aspects.
355ea672c7SKees Cook
365ea672c7SKees CookWhat is TOMOYO?
375ea672c7SKees Cook  TOMOYO Linux Overview
38*c6144a21STetsuo Handa    https://sourceforge.net/projects/tomoyo/files/docs/lca2009-takeda.pdf
395ea672c7SKees Cook  TOMOYO Linux: pragmatic and manageable security for Linux
40*c6144a21STetsuo Handa    https://sourceforge.net/projects/tomoyo/files/docs/freedomhectaipei-tomoyo.pdf
415ea672c7SKees Cook  TOMOYO Linux: A Practical Method to Understand and Protect Your Own Linux Box
42*c6144a21STetsuo Handa    https://sourceforge.net/projects/tomoyo/files/docs/PacSec2007-en-no-demo.pdf
435ea672c7SKees Cook
445ea672c7SKees CookWhat can TOMOYO do?
455ea672c7SKees Cook  Deep inside TOMOYO Linux
46*c6144a21STetsuo Handa    https://sourceforge.net/projects/tomoyo/files/docs/lca2009-kumaneko.pdf
475ea672c7SKees Cook  The role of "pathname based access control" in security.
48*c6144a21STetsuo Handa    https://sourceforge.net/projects/tomoyo/files/docs/lfj2008-bof.pdf
495ea672c7SKees Cook
505ea672c7SKees CookHistory of TOMOYO?
515ea672c7SKees Cook  Realities of Mainlining
52*c6144a21STetsuo Handa    https://sourceforge.net/projects/tomoyo/files/docs/lfj2008.pdf
53