SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: [PATCH] SE-PostgreSQL Security Policy This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Christopher J. PeBenito <cpebenito_at_tresys.com> Date: Fri, 7 Mar 2008 15:48:32 -0500 On Fri, 2008-03-07 at 10:52 +0900, Kohei KaiGai wrote: > Christopher J. PeBenito wrote: > > On Wed, 2008-02-27 at 17:00 +0900, Kohei KaiGai wrote: > >> The attached patch provides security policies related to > >> SE-PostgreSQL. [...] > >> +typeattribute unlabeled_t sepgsql_database_type; > >> +typeattribute unlabeled_t sepgsql_table_type; > >> +typeattribute unlabeled_t sepgsql_procedure_type; > >> +typeattribute unlabeled_t sepgsql_blob_type; > > > > Usage of unlabeled_t here is not permitted. > > Is it appropriate manner to deploy optional_policy at kernel/kernel.te? Why is this needed at all? > >> +######################################## > >> +# > >> +# SE-PostgreSQL Administrative domain local policy > >> +# (sepgsql_unconfined_type) > >> + > >> +tunable_policy(`sepgsql_enable_unconfined',` > >> + allow sepgsql_unconfined_type sepgsql_database_type : db_database ;* > >> + allow sepgsql_unconfined_type sepgsql_module_type : db_database { install_module }; > >> + allow sepgsql_unconfined_type sepgsql_table_type : { db_table db_column db_tuple } ;* > >> + allow sepgsql_unconfined_type { sepgsql_procedure_type - sepgsql_user_proc_t } : db_procedure ;* > >> + allow sepgsql_unconfined_type sepgsql_user_proc_t : db_procedure { create drop getattr setattr relabelfrom relabelto }; > >> + allow sepgsql_unconfined_type sepgsql_blob_type : db_blob ;* > >> + allow sepgsql_unconfined_type postgresql_t : db_blob { import export }; > >> + > >> + type_transition { sepgsql_unconfined_type - sepgsql_server_type } sepgsql_database_type : db_procedure sepgsql_proc_t; > >> +',` > >> + type_transition { sepgsql_unconfined_type - sepgsql_server_type } sepgsql_database_type : db_procedure sepgsql_user_proc_t; > >> +') > > > > Why is this tunable? Why is there a different type_transition behavior? > > I intend that users can turn off this tunable during its operation phase > after initial database setting up, to prevent applying unconfined accesses. > > When sepgsql_enable_unconfined is disabled, sepgsql_unconfined_type works > as if they are sepgsql_client_type, because sepgsql_unconfined_domain() interface > associates a domain with sepgsql_(unconfined\|client)_type. The problem is that this is inconsistent with the way other *_unconfined() access works. -- Chris PeBenito Tresys Technology, LLC (410) 290-1411 x150 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Fri 7 Mar 2008 - 15:52:45 EST This message: [ Message body ] Next message: Todd C. Miller: "PATCH: add downgrade test to libsepol test harness" Previous message: James Carter: "Re: [PATCH 1/1] refpolicy: Do not want to transition to sysadm_t when upstart runs a shell" In reply to: Kohei KaiGai: "Re: [PATCH] SE-PostgreSQL Security Policy" Next in thread: KaiGai Kohei: "Re: [PATCH] SE-PostgreSQL Security Policy" Reply: KaiGai Kohei: "Re: [PATCH] SE-PostgreSQL Security Policy" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom