On Tue, 2003-12-02 at 23:25, Nathan Scott wrote:
> On Mon, Dec 01, 2003 at 12:01:02PM -0600, Chris PeBenito wrote:
> > Here is a patch against -test10 that adds an option for the security.
> > namespace (controlled by a configure option), which is used by SELinux
> > to store it's security labels.
>
> What is the permissions model for the security attribute(s)?
>
> It seems from the patch that nothing is enforced, e.g. for
> setting a new value it seems anyone can do it (which can't
> be right, can it?)...
Actually in terms of SELinux, this is correct, see the very simple ext3
handler (fs/ext3/xattr_security.c), and you'll notice there's not any
capability checks. I'm not familiar with lsm hooks/internals, but I
would assume that the set is checked pretty early, way before it gets
down to the fs. I did turn on SELinux auditing for the set (normally
only denials are audited) to make sure it was getting checked, and it
was.
--
Chris PeBenito
<pebenito@xxxxxxxxxx>
Developer,
Hardened Gentoo Linux
Embedded Gentoo Linux
Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243
Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243
signature.asc
Description: This is a digitally signed message part
|