More tomoyo and msec news
To celebrate the end-of-the-week, here comes another PlanetMandriva post!
TomoyoGui received some attention this week, and it slowly becomes more and more functional. The performance of huge tomoyo policy parsing was greatly improved (on my running system it has about 3MB in form of a text file), and the dependencies among sub-domains are now calculated.
The gui was improved to simplify the listing of domains, and now it allows you to do a quick search for desired application, and select all sub-domains of a process by double-clicking it. We are now also fully compatible with tomoyo’s ccs-savepolicy and ccs-loadpolicy formats.
Also, I am slowly progressing towards the idea of a application-based profiles (like in AppArmor – may it rest in peace! 
). While tomoyo does not supports that in an easy form (everything is a huge text file), I had some ideas on how to make it work. So in some not-so-far future it will be implemented and described here.
So, as an image says more than a thousand words, some screenshots:
Initial view of tomoyo with some helpful and user-friendly text
Just a double-click away from selecting ACPID subdomains
Peeking into what a domain is allowed to do
Multiple selection of unrelated domains
Besides that, msec also received a few updates – now supporting the SECURE_TMP variable and improved diff_check procedure.
And in other news – the best football team in the world with the best football player in the world scored yet another victory in Brazilian championship . If you missed that, you can always see the goals again thanks to youtube!
For a11y reasons, it’s better to always have a menu + optional toolbar than just a toolbar.
Yep, I was thinking about it. I guess we’ll have a menu bar (like in msec) + toolbar. One think I don’t like in current msec GUI is the lack of any button to save/apply changes and quit, and it is quite frequently asked on bugzilla. So a toolbar should solve this issue.