On Thu, 2011-02-24 at 10:44 +0000, HarryCiao wrote: > BTW, do we have a way to actually display the label for the > unix_dgram_socket that bond to /dev/log? I think the answer is no at present. netstat -Z claims to report the socket context but is actually just reading /proc/pid/attr/current of the owning process. The owning application can get the context of the socket (inode) via fgetxattr(), but I don't think a third party can presently obtain the context information. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
