Security Enhanced Linux
What's New
Frequently Asked Questions
Background
Documents
License
Download
Participating
Mail List
Archives
Remaining Work
Contributors
Related Work
Press Releases
Information Assurance Research
NIARL In-house Research Areas
Mathematical Sciences Program
Sabbaticals
Computer & Information Sciences Research
Technology Transfer
Advanced Computing
Advanced Mathematics
Communications & Networking
Information Processing
Microelectronics
Other Technologies
Technology Fact Sheets
Publications
Related Links
|
SELinux Mailing Listblocking security xattr changes when policy is not loaded
From: Arkadiusz Miskiewicz <arekm_at_pld-linux.org>
Date: Tue, 9 Mar 2004 23:29:42 +0100
The case is that 2.6 selinux enabled kernel but _without_ policy loaded do not allow to change security xattr for root user. The question is why is that? I'm asking because for example I'm using pwconv from pwdutils (which replace shadow-utils + have nice selinux support) and pwconv creates temporary file /etc/shadow.tmpWAjQQd + does rename(). Of course pwconv wants to keep security xattr on shadow file intact so it tries to label /etc/shadow.tmpWAjQQd with same security xattr as /etc/shadow has but ... kernel won't allow it to do that! setfilecon -> invalid argument Solution is to disable copying security xattr in pwconv but then I just loose proper security xattr on shadow and that's bad. Why such restriction is made in kernel? It doesn't give more security to the system. If I get root account (policy not loaded) then I can do anything like replacing kernel with modified one etc, etc.
Blocking security xattr for root in such case smells like security by
obscurity.
-- |
|
Date Posted: Jan 15, 2009 | Last Modified: Jan 15, 2009 | Last Reviewed: Jan 15, 2009 |