TOMOYO

Fork

[tomoyo-users-en 576] Re: New(bie) Tomoyo User on Mageia 4

• Previous message (by thread): [tomoyo-users-en 575] New(bie) Tomoyo User on Mageia 4
• Next message (by thread): [tomoyo-users-en 579] Re: New(bie) Tomoyo User on Mageia 4
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello.

Claus Reheis wrote:
> When I leave the editor with the "q" key, reboot the system and
> start /usr/sbin/tomoyo-editpolicy, all changes I applied before are lost
> and when starting Skype again its in "learning mode" even if it was in
> "permissive mode" before I was rebooting!

Too bad. tomoyo-editpolicy by default edits on-memory configuration. You need
to run tomoyo-savepolicy before you shutdown in order to copy on-memory
configuration to on-disk configuration.

> 
> Also a error in /var/log/boot.log ist there:
> 
> [FAILED] Failed to start LSB: TOMOYO Linux MAC logging daemon.
> 
> And journalctl -b shows me:
> 
> Command line: BOOT_IMAGE=linux
> root=UUID=65f5a484-73d6-49aa-bc63-7f78f3479b82 splash quiet
> resume=UUID=f641866c-fe7a-4a83-b5cb-0409c738a001 security=tomoyo
> kernel: Calling /sbin/tomoyo-init to load policy. Please wait.
> kernel: TOMOYO: 2.5.0
> kernel: Mandatory Access Control activated.
> tomoyo-auditd[765]: ccs-auditd wird gestartet: tomoyo-auditd

I don't know why "ccs-" prefix is printed here, but

> [remote_ip:remote_port]
> tomoyo-auditd[765]: See /etc/tomoyo/tools/auditd.conf for configuration.
> tomoyo-auditd[765]: [ERROR]
> tomoyo-auditd.service: control process exited, code=exited status=1
> systemd[1]: Failed to start LSB: TOMOYO Linux MAC logging daemon.
> systemd[1]: Unit tomoyo-auditd.service entered failed state.
> systemd[1]: tomoyo-auditd.service: control process exited, code=exited
> status=1
> systemd[1]: Failed to start LSB: TOMOYO Linux MAC logging daemon.
> systemd[1]: Unit tomoyo-auditd.service entered failed state.
> 
> So what is wrong on my setup?

the messages and the exit status 1 suggests that
tomoyo-auditd was invoked by systemd with wrong command line arguments.

  int main(int argc, char *argv[])
  {
  (...snipped...)
  usage:
          fprintf(stderr, "%s [remote_ip:remote_port]\n"
                  "  See %s for configuration.\n", argv[0], CCS_AUDITD_CONF);
          return 1;
  }

Please check the content of tomoyo-auditd.service file.
tomoyo-auditd should be executed without any arguments, unless running for
retrieving access request logs from a remote system via an agent.

Regards.

• Previous message (by thread): [tomoyo-users-en 575] New(bie) Tomoyo User on Mageia 4
• Next message (by thread): [tomoyo-users-en 579] Re: New(bie) Tomoyo User on Mageia 4
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]