Karl MacMillan wrote:
-----Original Message----- From: owner-selinux@xxxxxxxxxxxxx [mailto:owner-selinux@xxxxxxxxxxxxx] On Behalf Of Daniel J Walsh Sent: Tuesday, July 05, 2005 3:40 PM To: Colin Walters Cc: selinux@xxxxxxxxxxxxx Subject: Re: Groups in the alternative user solution Colin Walters wrote:
But this does not scale.If the patient app is allow to write a medical record to the users homedir it should be labeled medical_record and not be allowed to be viewed by the user unless he is in running the app. This should not be protected by the homedir file context, it will never scale.
In the case of the doctor being able to assume multiple roles, what context would the patient record app write to the home dir.
RBAC being tied to TE in the homedirs is broken. Currently if we switch a user from user_r to staff_r, he looses access to all his files until a magic relabel happens. If we allow
an expansion of roles available to the user, the problem explodes. Dan -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.