SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: Question about chsh/chfn/passwd patches This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Stephen Smalley <sds_at_epoch.ncsc.mil> Date: 15 Oct 2003 14:41:30 -0400 On Wed, 2003-10-15 at 14:31, Thorsten Kukuk wrote: > Ok, since I copy always all attributes if I modify /etc/passwd and > /etc/shadow (to make sure to preserve ACLs and security attributes), > I don't need it. The problem with simply preserving attributes via setxattr is that you cannot create the new file immediately with the desired attributes, so there is a window where the new file exists with the default attribute value, typically inherited from the parent directory. Note that this is particularly a concern for /etc/passwd and /etc/shadow, since they live in the same parent directory but have differing protection requirements. The SELinux setfscreatecon() interface (implemented via the /proc/pid/attr/fscreate API) allows a process to set the desired security context for subsequent file creations, similar to the umask. You'll notice that many of the SELinux patches use this interface to set the desired context prior to creating the new file, so that files are immediately created with the right context and are protected accordingly. This is one of the reasons we don't just use the EA patch for coreutils and instead have our own. -- Stephen Smalley <sds@epoch.ncsc.mil> National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Wed 15 Oct 2003 - 14:41:44 EDT This message: [ Message body ] Next message: Thorsten Kukuk: "Re: Question about chsh/chfn/passwd patches" Previous message: Stephen Smalley: "Re: Filesystem problems" In reply to: Thorsten Kukuk: "Re: Question about chsh/chfn/passwd patches" Next in thread: Thorsten Kukuk: "Re: Question about chsh/chfn/passwd patches" Reply: Thorsten Kukuk: "Re: Question about chsh/chfn/passwd patches" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom