Re: TOMOYO in linux-next

From: Bodo Eggert
Date: Fri Mar 27 2009 - 09:04:44 EST

Next message: Steven Rostedt: "Re: [PATCH][GIT PULL] tracing/wakeup: move access to wakeup_cpu intospinlock"
Previous message: Al Viro: "Re: Issues with using fanotify for a filesystem indexer"
In reply to: Pavel Machek: "Re: TOMOYO in linux-next"
Next in thread: Pavel Machek: "Re: TOMOYO in linux-next"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 27 Mar 2009, Pavel Machek wrote:
> On Fri 2009-03-27 10:28:07, Bodo Eggert wrote:
> > Pavel Machek <pavel@xxxxxx> wrote:

> > > I don't think merging that is good idea. Security should be doable
> > > without making shell-like glob matching...
> >
> > How do you suppose a security system should handle mozilla modifying
> > ~/.bashrc differently from downloading something to ~/pr0n.jpg?
>
> How does shell-like glob matching help there? You'd need to parse
> /etc/passwd to find all ~ directories...

That is, if you'd use HOME=`dd if=/dev/urandom ...`.

If you have your users in /home/user, you can tell /home/*/.*
is bad, /home/*/[^.]* is OK.

How would you exclude mozilla from writing to .* then? ".a" is bad,
".b" is bad ...? or "A" is OK, "a" is OK, "zzzzzzzzzzzzz" is OK"?
Either way, you'd need several universes to store the security profile.
--
The enemy diversion you have been ignoring will be the main attack.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Steven Rostedt: "Re: [PATCH][GIT PULL] tracing/wakeup: move access to wakeup_cpu intospinlock"
Previous message: Al Viro: "Re: Issues with using fanotify for a filesystem indexer"
In reply to: Pavel Machek: "Re: TOMOYO in linux-next"
Next in thread: Pavel Machek: "Re: TOMOYO in linux-next"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]