SELinux Mandatory Access Control: juni 2012

woensdag 27 juni 2012

Hard coded types create hard dependencies on selinux policy

Long time no see. I believe that applications like sandbox (sandbox_web_t) and sshd (chroot_user_t) hard code types. I do not like that but my personal opinion aside; This creates hard dependencies on SELinux policy. If you do not have a policy that provides these types then you will end up with broken functionality. I believe one example is that sandbox does not work in Debian because Debian selinux-policy does not provide the types that sandbox requires. That is all folks.

Trademark Information

Linux® is the registered trademark of Linus Torvalds in the U.S. and other countries.

The Fedora trademark is a trademark of Red Hat, Inc. in the United States and other countries.

UNIX is a registered trademark of The Open Group.

Type Enforcement is a trademark of Secure Computing, LLC, a wholly owned subsidiary of McAfee, Inc., registered in the U.S. and in other countries. Neither McAfee nor Secure Computing, LLC, has consented to the use or reference to this trademark by the author outside of this guide.

Apache is a trademark of The Apache Software Foundation.

XFree86 is a trademark of The XFree86 Project, Inc.

Logo designed by Máirín Duffy

All trademarks are the property of their respective holders.

To the extent possible under law, Dominick Grift
has waived all copyright and related or neighboring rights to
this work.

SELinux Mandatory Access Control

woensdag 27 juni 2012

Hard coded types create hard dependencies on selinux policy

Archives

Links

Related Blogs

About Me

Trademark Information