- Security contexts are assigned to more than just processes and files.
You and i know that but for a common user i think just separation of
files and processes should suffice.
When all is said and done a Linux system is just a bunch of files
Note that I'm putting together a similar tutorial on Userspace Object
Managers [1]. There are applications - DBus, SE-PGSQL - that use SELinux
contexts on arbitrary objects in the program itself, for example, database
columns. These objects are not necessarily files, but instead they are
in-memory data structures.
I'm going way out there and modelling the behavior of a dog pack - sled
dogs actually - using SELinux contexts. I'll forward to the group for
review when it's done.
Cheers,
-JK
-----
http://www.globalherald.net/jb01
GlobalHerald.NET, the Smarter Social Network! (tm)
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
