On Wed, 23 Jun 2004 08:01, "Charles R. Anderson" <cra@xxxxxxx> wrote: > On Mon, Jun 21, 2004 at 02:01:37PM +1000, Russell Coker wrote: > > is staff_home_t. Labelling the file as staff_mozilla_rw_t is not going > > to work as I think that some programs will unlink and recreate it. > > Has any thought been given to automatically, through policy, applying > certain labels to files as they are created? Yes that is done. If mozilla creates the file in question and nothing else unlinks it then things will be fine. However if something else creates it first or unlinks it and re-creates it then it gets a type that Mozilla may not be permitted write or read/write access (depending on policy). -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page
