Stephen Smalley wrote: > > Maybe I am not seeing something after all. Suppose I use the full MLS > > variant and give a user the labels c1,c2. How exactly would it happen > > that in a c1 dir he would automatically create c1 files, and in c1,c2 > > dir c1,c2 files? > > He wouldn't. The first case would violate MLS write-down restrictions. Ah, I see the point now. In some literature, categories are discretionary even when sensitivity levels are used. So a s1:c1 process can write to s1, but not to s0:c1. > Different people have different views of MCS. And it hasn't really > worked out the way it was envisioned. There has been some discussion of > this, including during the SELinux summits (minutes are published). Thanks, I guess I need to read more on that. I've googled the 2007 minutes, but not the other ones. Would you happen to have some links? Regards, Michal Svoboda
Attachment:
pgpsKYfSUnE5G.pgp
Description: PGP signature
