On Thu, 2008-08-28 at 23:45 -0400, Hong wrote:
> Thanks Dominick, your comments are very helpful.
>
> I have another question. Suppose there is a rule:
> type_transition domain1_type app_exec_t: process domain2_type;
>
> but domain1_type only has execute_no_trans over over app_exec_t:
> allow domain1_type app_exec_t: file execute_no_trans;
>
> Then what'll happen when a process within domain1_type executes a
> program with type app_exec_t? Will it stay in domain1_type or the
> access is denied?
Good question. My bet is that it will be able to execute it but not
transition.
These things can be reproduced and referenced easily. Try it :)
define(`domain_transition_pattern',`
allow $1 $2:file { getattr read execute };
allow $1 $3:process transition;
dontaudit $1 $3:process { noatsecure siginh rlimitinh };
type_transition $1 $2:process $3;
')
--
Dominick Grift <domg472@xxxxxxxxx>
Attachment:
signature.asc
Description: This is a digitally signed message part
