I am trying to set up tomoyo with a 32 bit openSUSE 12.3.
The creation of policy runs well and builds the policy as expected.
But when you want to edit policy the following happens:
/usr/sbin/tomoyo-editpolicy Please mount securityfs on /sys/kernel/security/ . You can't use this editor for this kernel.
How can I force 12.3 to boot with securityfs enabled by default?
Thank you.
Just “clicking away” security warnings about a change in repo signature ? Not able to control?
Then please vote for
https://features.opensuse.org/312047
openSUSE should have an efficient web of trust.
O.K. I found out where the errors were. It works now.
a)
one has to watch out on
security=tomoyo
being correctly set in the boot parameters. In my case I was fooled by the new layout in yast in 12.3… and did write the parameter in the fail-safe part. Stupid. And this gives the the “incorrect kernel” warning.
b)
the video in youtube “kickstarting tomoyo in opensuse” gives a wrong command (at least for the new tomoyo-tools and 12.2 and 12.3:
just and only
tomoyo-editpolicy
is the correct one. If you use the command as in the video, then tomoyo-editor opens, apparently normal, but would not register any event.
With the aforementioned command it works very well.