xref: /linux/Documentation/admin-guide/LSM/tomoyo.rst (revision 4b132aacb0768ac1e652cf517097ea6f237214b9)
1======
2TOMOYO
3======
4
5What is TOMOYO?
6===============
7
8TOMOYO is a name-based MAC extension (LSM module) for the Linux kernel.
9
10LiveCD-based tutorials are available at
11
12https://tomoyo.sourceforge.net/1.8/ubuntu12.04-live.html
13https://tomoyo.sourceforge.net/1.8/centos6-live.html
14
15Though these tutorials use non-LSM version of TOMOYO, they are useful for you
16to know what TOMOYO is.
17
18How to enable TOMOYO?
19=====================
20
21Build the kernel with ``CONFIG_SECURITY_TOMOYO=y`` and pass ``security=tomoyo`` on
22kernel's command line.
23
24Please see https://tomoyo.sourceforge.net/2.6/ for details.
25
26Where is documentation?
27=======================
28
29User <-> Kernel interface documentation is available at
30https://tomoyo.sourceforge.net/2.6/policy-specification/index.html .
31
32Materials we prepared for seminars and symposiums are available at
33https://sourceforge.net/projects/tomoyo/files/docs/ .
34Below lists are chosen from three aspects.
35
36What is TOMOYO?
37  TOMOYO Linux Overview
38    https://sourceforge.net/projects/tomoyo/files/docs/lca2009-takeda.pdf
39  TOMOYO Linux: pragmatic and manageable security for Linux
40    https://sourceforge.net/projects/tomoyo/files/docs/freedomhectaipei-tomoyo.pdf
41  TOMOYO Linux: A Practical Method to Understand and Protect Your Own Linux Box
42    https://sourceforge.net/projects/tomoyo/files/docs/PacSec2007-en-no-demo.pdf
43
44What can TOMOYO do?
45  Deep inside TOMOYO Linux
46    https://sourceforge.net/projects/tomoyo/files/docs/lca2009-kumaneko.pdf
47  The role of "pathname based access control" in security.
48    https://sourceforge.net/projects/tomoyo/files/docs/lfj2008-bof.pdf
49
50History of TOMOYO?
51  Realities of Mainlining
52    https://sourceforge.net/projects/tomoyo/files/docs/lfj2008.pdf
53