On Tue, 2009-11-17 at 08:21 -0600, Dyson, Mark L (IS) wrote: > Iʼll narrow the scope of my initial question a bit, here: can SELinux > support this sort of operation? Some online literature seems to > suggest otherwise but itʼs admittedly a few years old. Yes. It is available in Fedora. Eamon Walsh recently presented at the SELinux Developer Summit and Linux Plumbers Conference http://www.selinuxproject.org/page/Developer_Summit_2009/Abstracts/E_Walsh_X http://linuxplumbersconf.org/ocw/proposals/87 Here's the video from the Plumber's session: http://video.linuxfoundation.org/video/1566 I'm not sure if there is a specific project page, but Eamon will hopefully respond to this thread. > From:owner-selinux@xxxxxxxxxxxxx [mailto:owner-selinux@xxxxxxxxxxxxx] > On Behalf Of Dyson, Mark L (IS) > Sent: Monday, November 16, 2009 10:09 AM > To: selinux@xxxxxxxxxxxxx > Subject: Windows-level enforcement in SELinux? > > > > > Hello, > > Iʼve been tasked to map out a path for migrating a MLS application > from Trusted Solaris to SELinux. Iʼm sure Iʼll have many questions to > come, but after some initial readings one of my first is: > > How does SELinux label individual X-windows in a user session, so that > (for example) data contained in a high-level security window cannot be > copied and then pasted into a lower-level security window? > > Thanks in advance! > Mark > > -- Chris PeBenito Tresys Technology, LLC (410) 290-1411 x150 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
