Security Enhanced Linux
What's New
Frequently Asked Questions
Background
Documents
License
Download
Participating
Mail List
Archives
Remaining Work
Contributors
Related Work
Press Releases
Information Assurance Research
NIARL In-house Research Areas
Mathematical Sciences Program
Sabbaticals
Computer & Information Sciences Research
Technology Transfer
Advanced Computing
Advanced Mathematics
Communications & Networking
Information Processing
Microelectronics
Other Technologies
Technology Fact Sheets
Publications
Related Links
|
SELinux Mailing ListRE: Sample SELinux policy that's equivalent to standard root?
From: Inger, Slav (S.B.) <vinger_at_ford.com>
Date: Wed, 24 Sep 2003 09:46:18 -0400
> The domain sysadm_t has 99% of the ability that "root" has on a non-SE Because, like I said in the earlier message, I'd like to start with full root permissions and tighten up, instead of doing it the other way around. Basically, I'd like to put together a quick POC where I'd like to demonstrate that while SE root can do everything a regular root can, several files and processes will be off limits to root. Enabling 99% of typical root functionality manually is turning out to be a time consuming process. -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.Received on Wed 24 Sep 2003 - 09:46:39 EDT |
|
Date Posted: Jan 15, 2009 | Last Modified: Jan 15, 2009 | Last Reviewed: Jan 15, 2009 |