2023-10-16

Registered: 2019-06-12
Posts: 133  

Tomoyo LSM and on by default

I only noticed tomoyo because by default this LSM is configured in kernel on. But in default it's not installed so it's throwing errors.

the MAC module seems.. useful if one was to deploy it.
I see we have other ways to initiate MAC without Tomoyo. But Tomoyo works as a good audit / logging system without MAC it would log with very little interrupts on normal operation. I like tomoyo's tree system. Right now most if not all my logging is only from kprint.

Just curious was there a choice to enable tomoyo but not include the tomoyo-tools by default?
As for MAC has anyone deployed any software with it? By default it is enabled so I would like to get some use out of it.

