ccs-notifyd − Notify TOMOYO Linux’s policy violation
ccs-notifyd timeout action
This program detects policy violation in enforcing mode and notify users (e.g. send a mail). You can know the first occurence of policy violation in enforcing mode as soon as possible. You may use this program for holding your judgement of the request that violates policy in enforcing mode provided that you can login to the system and start "ccs−queryd" command for responding within timeout seconds.
# ccs−notifyd 180 ’mail admin AT example DOT com’
Wait for 180 seconds before rejecting the request. The occurrence is notified by sending mail to admin AT example DOT com (if SMTP service is available).
# ccs−notifyd 0 ’curl −−data−binary @− https://your.server/path_to_cgi’
Reject the request immediately. The occurrence is notified by executing curl command.
You need to register either path to this program ( /usr/lib/ccs/ccs-notifyd ) or a domain for this program in /proc/ccs/manager before invoking this program if you set non-zero value for timeout.
penguin-kernel _at_ I-love.SAKURA.ne.jp
Copyright © 2005-2008 NTT DATA CORPORATION.
This program is free software; you may redistribute it under the terms of the GNU General Public License. This program has absolutely no warranty.
ccs-queryd (8)