Hello.
Peter Moody wrote:
> Is there a way in tomoyo policy syntax to match everything under a
> given directory? If, for example, I want to give firefox the ability
> to read/write everything under /home/${USER}/.mozilla/firefox, do I
> need several rules like:
>
> allow_read/write /home/\*/.mozilla/\*
> allow_read/write /home/\*/.mozilla/\*/\*
> allow_read/write /home/\*/.mozilla/\*/\*/\*
> allow_read/write /home/\*/.mozilla/\*/\*/\*/\*
>
> or is there something like a \*\* operator that means, from here and
> everything under it?
If you are using
"TOMOYO 1.7.1 or later"
or
"TOMOYO 2.2.0 on kernel 2.6.33 and later"
you can use
allow_read/write /home/\*/.mozilla/\{\*\}/\*
to represent
allow_read/write /home/\*/.mozilla/\*/\*
allow_read/write /home/\*/.mozilla/\*/\*/\*
allow_read/write /home/\*/.mozilla/\*/\*/\*/\*
etc.
Regards.
_______________________________________________
tomoyo-users-en mailing list
[email protected]
http://lists.sourceforge.jp/mailman/listinfo/tomoyo-users-en
