2 .\" This file is part of libsmack
3 .\" Copyright (C) 2012 Intel Corporation
5 .\" This library is free software; you can redistribute it and/or
6 .\" modify it under the terms of the GNU Lesser General Public License
7 .\" version 2.1 as published by the Free Software Foundation.
9 .\" This library is distributed in the hope that it will be useful, but
10 .\" WITHOUT ANY WARRANTY; without even the implied warranty of
11 .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 .\" Lesser General Public License for more details.
14 .\" You should have received a copy of the GNU Lesser General Public
15 .\" License along with this library; if not, write to the Free Software
16 .\" Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20 .\" Brian McGillion <brian.mcgillion@intel.com>
22 .TH "SMACKLOAD" "8" "03/05/2012" "smack-utils 1\&.0"
24 smackload \- Load and unload Smack rules from the kernel
31 is a tool that can be used to load Smack rules into the kernel or to remove rules that have already been loaded. The general use of
33 is to read a set of rules from a file, but it also supports the convenience of loading rules from the command line. This process needs to be started with CAP_MAC_ADMIN capability otherwise it will not have sufficient permission to make the changes. Launching
35 without a path name will allow you to enter rules on the command line, these take the format "%s %s %s\\n"
36 .B (subject object access_type)
37 with ^D terminating the session and writing the rules to the kernel. The
39 refers to the access modes that are from the set "rwaxt", which refer to read, write, append, execute and transmute access respectively
42 Clear the specified rules from the kernel
44 The path to the file from which to read the rules
49 returns 0 and 1 on failure.
projects / framework / security / smack.git / blob