SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Research Skip Research Menus Research Menu Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: MCS policy patch This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] From: Russell Coker <russell_at_coker.com.au> Date: Sat, 4 Feb 2006 10:10:22 +1100 On Saturday 04 February 2006 06:31, James Morris <jmorris@namei.org> wrote: > Also, do we need dynamic transitions at all in MCS? We aren't using them yet in any other policy, but it seemed correct to add the constraint as I did. Of course we could just force the dynamic transition to stay at the same level. > > Also the same restriction is placed on creation and relabelto for files, > > directories etc. > > I thought we already had this. For relabelto yes, but not for creation. Therefore it was possible to create objects that you could not relabel. > > It still doesn't place any MCS restrictions on read/write for file system > > objects other than files, but allowing for example a process to create a > > directory in a context that it could not relabel a directory to or from > > is bogus. > > I'm still not sure what the best model is for directories. I've had a > couple of people email and say they want files created under an MCS > labeled directory to inherit the label. Is it even possible to do that without kernel code changes? Currently it seems that the limit in this regard is the low level of the process. Also I think we want to go slowly on this and preserve the "targeted" design goal of breaking as few things as possible. We can (and will) add further constraints at later times. > I like the idea of keeping things as absolutely as simple as possible, and > leaving MCS as a user-oriented discretionary tool, where the end user (and > not the admin) is responsible for labeling all of their own files > indivdually. I agree. -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Fri 3 Feb 2006 - 18:10:53 EST This message: [ Message body ] Next message: Daniel J Walsh: "Re: MCS policy patch" Previous message: Frank Mayer: "SELinux Symposium: Second Keynote Speaker announced" In reply to: James Morris: "Re: MCS policy patch" Next in thread: Daniel J Walsh: "Re: MCS policy patch" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom