SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Research Skip Research Menus Research Menu Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: vixie cron patch and also MLS This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] From: Stephen Smalley <sds_at_tislabs.com> Date: Mon, 11 Feb 2002 09:20:51 -0500 (EST) On Mon, 11 Feb 2002, Russell Coker wrote: > >From a quick code inspection it appears that if the user name matches the > start of a line in /etc/security/cron_context then the context of that line > will be used. > > So for the default setup if I get the sysadmin to give me an account named > "sy" then my cron jobs will be run as system_u:system_r:system_crond_t, or if > I get an account named "roo" (actually had a user with that account name > once) then I'd get my cron jobs run as root:sysadm_r:sysadm_crond_t! > > I think that in the get_user_sid() function the following code: > if (strncmp(name, bufp, name_len) == 0) { > Should be changed to: > if (strncmp(name, bufp, name_len) == 0 && bufp[name_len] == ':') { I don't think so. Look again at how 'name' is constructed and 'name_len' is computed. The terminating colon is included. Also, notice that crond performs a check between the user context and the context on the crontab file. Consequently, even if this were a bug, the entrypoint check would likely fail on the user's crontab file. > Also is there any way to determine programmatically if we are running in MLS > mode? Having #ifdef CONFIG_FLASK_MLS in the cron code is ugly and is likely > to cause pain (I don't want to recompile my daemons when switching to/from > MLS mode). > > Also in libsecure/src/get_user_sid.c there's a lot of #ifdef CONFIG_FLASK_MLS > code. So it looks like changing to/from MLS requires a recompile of the > library code and a recompile of all programs linked with -lsecure! > > Is the plan to make MLS mandatory in the near future (IE to drop support for > SE Linux without MLS)? If so then the current situation will probably do (no > point coding too much support for something that's going away). But if the > plan is to continue to support a choice of MLS or non-MLS then I think it > needs to be improved. I agree that this is ugly and needs to be fixed, but I don't know when we are likely to get to it. To date, the MLS policy component has not been a priority. I doubt that it would ever be made "mandatory" - there are plenty of users who will want RBAC/TE but will not care about MLS. -- Stephen D. Smalley, NAI Labs ssmalley@nai.com -- You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Mon 11 Feb 2002 - 09:34:04 EST This message: [ Message body ] Next message: Stephen Smalley: "Re: insmod needs to write to /proc/sys/kernel/tainted" Previous message: Westerman, Mark: "RE: gdm" In reply to: Russell Coker: "vixie cron patch and also MLS" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom