Re: Security issues with local filesystem caching

From: Jeff V. Merkey
Date: Wed Oct 25 2006 - 13:54:06 EST

Next message: Tilman Schmidt: "Re: [2.6.18-rc7-mm1] slow boot"
Previous message: Frank Ch. Eigler: "Re: [Patch 0/5] I/O statistics through request queues"
In reply to: David Howells: "Re: Security issues with local filesystem caching"
Next in thread: David Howells: "Re: Security issues with local filesystem caching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

David Howells wrote:

Jeff V. Merkey <jmerkey@xxxxxxxxxxxxxxxxxxxxx> wrote:

SELinux support addresses all of these issues for B1 level security quite
well with mandatory access controls at the fs layers. In fact, it works so
well, when enabled you cannot even run apache on top of an FS unless
configured properly.

How? The problem I've got is that the caching code would be creating and
accessing files and directories with the wrong security context - that of the
calling process - and not a context suitable for sharing things in the cache
whilst protecting them from userspace as best we can.

Have it access them as 0.0 (root) when you change the fsuid, etc. and I think this would satisfy security concerns. I agree that it sounds like
someone needs to instrument MAC layers with this subsystem.

Jeff

David

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Tilman Schmidt: "Re: [2.6.18-rc7-mm1] slow boot"
Previous message: Frank Ch. Eigler: "Re: [Patch 0/5] I/O statistics through request queues"
In reply to: David Howells: "Re: Security issues with local filesystem caching"
Next in thread: David Howells: "Re: Security issues with local filesystem caching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]