Re: two questions

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, 4 Jan 2008, Eric Paris wrote:

> yes, the permission is dyntransition in the process class.  it is
> STRONGLY, let me say that again VERY STRONGLY, suggested that you don't
> make use of this facility.  Basically you lose all seperation between
> those 2 domains.  You don't have any assurance that the process before
> the transition didn't get hacked/corrupted/bugged and is now
> transitioning to a new domain but able to do the wrong things (or
> sometimes even worse not transition to the new domain at all)
> 
> I'm not sure what the rationale was to put it in originally but please
> just find a way to do it on an execve boundary.

Dynamic transitions were added for privileged MLS applications, which 
sometimes need to implement privilege bracketing (i.e. changing security 
level for some operation).  It should be thought of as a legacy MLS 
feature and not otherwise used.


- James
-- 
James Morris
<jmorris@xxxxxxxxx>

--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list

[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux