[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: file_type_auto_trans is not sufficient

To: Ivan Gyurdiev <ivg2@xxxxxxxxxxx>
Subject: Re: file_type_auto_trans is not sufficient
From: Luke Kenneth Casson Leighton <lkcl@xxxxxxxx>
Date: Tue, 31 May 2005 22:21:12 +0100
Cc: Karl MacMillan <kmacmillan@xxxxxxxxxx>, "'Stephen Smalley'" <sds@xxxxxxxxxxxxx>, SELinux@xxxxxxxxxxxxx, dwalsh@xxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx
In-reply-to: <1117551440.15167.25.camel@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Mail-followup-to: Ivan Gyurdiev <ivg2@xxxxxxxxxxx>, Karl MacMillan <kmacmillan@xxxxxxxxxx>, 'Stephen Smalley' <sds@xxxxxxxxxxxxx>, SELinux@xxxxxxxxxxxxx, dwalsh@xxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx
References: <200505311412.j4VECK5F030983@xxxxxxxxxxxxxxxxxxxxxxxxxx> <1117551440.15167.25.camel@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-selinux@xxxxxxxxxxxxx
User-agent: Mutt/1.5.5.1+cvs20040105i

On Tue, May 31, 2005 at 10:57:20AM -0400, Ivan Gyurdiev wrote:
> 
> > The other option, of course, is to change the applications to use/create many
> > more directories, each with a separate type to allow the file_type_auto_trans
> > rules to work. Your orbit example might mean that there is a /tmp/orbit
> > directory where all orbit files are created.
> 
> The problem is not multiple source domains - that can be addressed
> through macros. The problem is that those domains use the same directory
> (Usually /tmp, or /home), for their own purposes, and they need the same
> transition (same directory and target class (dir/file)). 
> 
> Because you can have only one transition, this creates a problem.

 ...

 thinking "sideways" again - as i am wont to do.

 how about... a "sideways" solution to this - at the kernel level?

 a "silent" redirection / remount, on a per-application basis?

 no, i'm not joking.

 an option to "mount" which allows a specific APPLICATION (or group of
 applications) to have any files/directories it creates/accesses in a
 subdirectory ACTUALLY occur ELSEWHERE.

 e.g.:

 mount -o redirectexe=/usr/bin/mozilla-firefox /tmp /tmp/mozilla
 mount -o redirectexe=/usr/bin/gnomeshite,/usr/bin/gnomemoreshite /tmp /tmp/gconf

 hm, that could get out-of-hand - the number of programs involved
 that would need redirection..

 *thinks* ... some other mechanism for "grouping" executables...

 you could even hang it off of an selinux context (!) or selinux domain
 (!) such that a set of executables, possibly those executed by
 certain users, would result in filesystem redirection - but not others.

 at your own discretion.

 then, you _could_ specify /tmp/gconf equals "a different file context".

 l.

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.

Follow-Ups:
- Re: file_type_auto_trans is not sufficient
  - From: Chad Sellers
- Re: file_type_auto_trans is not sufficient
  - From: Stephen Smalley

References:
- RE: file_type_auto_trans is not sufficient
  - From: Karl MacMillan
- RE: file_type_auto_trans is not sufficient
  - From: Ivan Gyurdiev

Prev by Date: Re: file_type_auto_trans is not sufficient
Next by Date: Re: gentoo/hardened
Previous by thread: Re: file_type_auto_trans is not sufficient
Next by thread: Re: file_type_auto_trans is not sufficient
Index(es):
- Date
- Thread

This mailing list archive is a service of Copilot Consulting.