ccs-notifyd(8) Notify TOMOYO Linux's policy violation

SYNOPSIS

ccs-notifyd timeout action

DESCRIPTION

This program detects policy violation in enforcing mode and notify users (e.g. send a mail). You can know the first occurence of policy violation in enforcing mode as soon as possible. You may use this program for holding your judgement of the request that violates policy in enforcing mode provided that you can login to the system and start "ccs-queryd" command for responding within timeout seconds.

EXAMPLES

# ccs-notifyd 180 'mail [email protected]'

Wait for 180 seconds before rejecting the request. The occurrence is notified by sending mail to [email protected] (if SMTP service is available).

# ccs-notifyd 0 'curl --data-binary @- https://your.server/path_to_cgi'

Reject the request immediately. The occurrence is notified by executing curl command.

NOTES


 You need to register either path to this program ( /usr/lib/ccs/ccs-notifyd ) or a domain for this program in /proc/ccs/manager before invoking this program if you set non-zero value for timeout.

AUTHORS


 penguin-kernel _at_ I-love.SAKURA.ne.jp

COPYRIGHT

Copyright © 2005-2010 NTT DATA CORPORATION.

This program is free software; you may redistribute it under the terms of the GNU General Public License. This program has absolutely no warranty.