(メッセージはありません)
trunk/caitsith
trunk/caitsith-tools/Include.make (diff) trunk/caitsith-tools/caitsith-tools.spec (diff)
trunk/caitsith-tools/kernel_test/ccs_log_test.c (diff) trunk/caitsith-tools/usr_lib_caitsith/init_policy.c (diff)| @@ -25,7 +25,7 @@ | ||
| 25 | 25 | |
| 26 | 26 | %prep |
| 27 | 27 | |
| 28 | -%setup -q -n caitsithtools | |
| 28 | +%setup -q -n caitsith-tools | |
| 29 | 29 | |
| 30 | 30 | %build |
| 31 | 31 |
| @@ -351,7 +351,7 @@ | ||
| 351 | 351 | fprintf(stderr, "Can't write /proc/caitsith/policy interface.\n"); |
| 352 | 352 | goto out; |
| 353 | 353 | } |
| 354 | - cp1 = "POLICY_VERSION=20100903\n" | |
| 354 | + cp1 = "POLICY_VERSION=20120401\n" | |
| 355 | 355 | "quota memory audit 16777216\n" |
| 356 | 356 | "quota memory query 1048576\n" |
| 357 | 357 | "quota audit[1] allowed=1024 denied=1024 unmatched=1024\n"; |
| @@ -3,7 +3,7 @@ | ||
| 3 | 3 | * |
| 4 | 4 | * CaitSith's utilities. |
| 5 | 5 | * |
| 6 | - * Copyright (C) 2005-2011 NTT DATA CORPORATION | |
| 6 | + * Copyright (C) 2005-2012 NTT DATA CORPORATION | |
| 7 | 7 | * |
| 8 | 8 | * Version: 0.1 2012/04/01 |
| 9 | 9 | * |
| @@ -604,17 +604,13 @@ | ||
| 604 | 604 | static const char notifyd_data[] = |
| 605 | 605 | "# This file contains configuration used by caitsith-notifyd command.\n" |
| 606 | 606 | "\n" |
| 607 | -"# caitsith-notifyd is a daemon that notifies the occurrence of policy violation\n" | |
| 608 | -"# in enforcing mode.\n" | |
| 607 | +"# caitsith-notifyd is a daemon that notifies the occurrence of an access\n" | |
| 608 | +"# request that is about to be rejected by CaitSith.\n" | |
| 609 | 609 | "#\n" |
| 610 | -"# time_to_wait is grace time in second before rejecting the request that\n" | |
| 611 | -"# caused policy violation in enforcing mode. For example, if you specify\n" | |
| 612 | -"# 30, you will be given 30 seconds for starting caitsith-queryd command and\n" | |
| 613 | -"# responding to the policy violation event.\n" | |
| 614 | -"# If you specify non 0 value, you need to register caitsith-notifyd command to\n" | |
| 615 | -"# /proc/caitsith/policy as well as caitsith-queryd command, for caitsith-notifyd needs to\n" | |
| 616 | -"# behave as if caitsith-queryd command is running.\n" | |
| 617 | -"# Also, you should avoid specifying too large value (e.g. 3600) because\n" | |
| 610 | +"# time_to_wait is grace time in second before rejecting the request.\n" | |
| 611 | +"# For example, if you specify 30, you will be given 30 seconds for starting\n" | |
| 612 | +"# caitsith-queryd command and responding to the policy violation event.\n" | |
| 613 | +"# You should avoid specifying too large value (e.g. 3600) because\n" | |
| 618 | 614 | "# the request will remain pending for that period if you can't respond.\n" |
| 619 | 615 | "#\n" |
| 620 | 616 | "# action_to_take is a command line you want to use for notification.\n" |
