[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Desktop apps interoperability

To: Stephen Smalley <sds@xxxxxxxxxxxxx>
Subject: Re: Desktop apps interoperability
From: Luke Kenneth Casson Leighton <lkcl@xxxxxxxx>
Date: Mon, 28 Mar 2005 20:54:50 +0100
Cc: Ivan Gyurdiev <ivg2@xxxxxxxxxxx>, selinux@xxxxxxxxxxxxx, fedora-selinux-list@xxxxxxxxxx
In-reply-to: <1112034219.2914.117.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Mail-followup-to: Stephen Smalley <sds@xxxxxxxxxxxxx>, Ivan Gyurdiev <ivg2@xxxxxxxxxxx>, selinux@xxxxxxxxxxxxx, fedora-selinux-list@xxxxxxxxxx
References: <1111985855.1514.70.camel@xxxxxxxxxxxxxx> <20050328100449.GC3430@xxxxxxxx> <1112016992.2914.19.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> <20050328182714.GG3430@xxxxxxxx> <1112034219.2914.117.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-selinux@xxxxxxxxxxxxx
User-agent: Mutt/1.5.5.1+cvs20040105i

On Mon, Mar 28, 2005 at 01:23:39PM -0500, Stephen Smalley wrote:
> On Mon, 2005-03-28 at 19:27 +0100, Luke Kenneth Casson Leighton wrote:
> >  ... question: in what ways do you ensure that a security-aware
> >  compromised program is only allowed to create certain filetypes?
> 
> In the same manner as with a security-unaware program; the domain must
> be allowed create permission to the file type via an allow rule.
 
 ... there's nothing special needed? ... 
 
 oh - yes, i get it.  create filetype.
 nothing to do with file_type_auto_trans itself.

 l.



--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.

Follow-Ups:
- Re: Desktop apps interoperability
  - From: Stephen Smalley

References:
- Desktop apps interoperability
  - From: Ivan Gyurdiev
- Re: Desktop apps interoperability
  - From: Luke Kenneth Casson Leighton
- Re: Desktop apps interoperability
  - From: Stephen Smalley
- Re: Desktop apps interoperability
  - From: Luke Kenneth Casson Leighton
- Re: Desktop apps interoperability
  - From: Stephen Smalley

Prev by Date: Re: [ PATCH ] hal - create netlink socket
Next by Date: Re: Desktop apps interoperability
Previous by thread: Re: Desktop apps interoperability
Next by thread: Re: Desktop apps interoperability
Index(es):
- Date
- Thread

This mailing list archive is a service of Copilot Consulting.