On Mon, 22 Sep 2008, Stephen Smalley wrote: > Patch below for the recent /proc/net bug related to selinux thread on linux-kernel. > If this looks sane, then possibly it should be re-sent on that thread. > > As we are not concerned with fine-grained control over reading of > symlinks in proc, always use the default proc SID for all proc symlinks. > This should help avoid permission issues upon changes to the proc tree > as in the /proc/net -> /proc/self/net example. > This does not alter labeling of symlinks within /proc/pid directories. > ls -Zd /proc/net output before and after the patch should show the difference. I'm not seeing any difference. -- James Morris <jmorris@xxxxxxxxx> -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
