| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 24 May 2007 11:16:58 +0200 From: Andreas Gruenbacher <agruen@...e.de> To: James Morris <jmorris@...ei.org> Cc: Al Viro <viro@....linux.org.uk>, jjohansen@...e.de, linux-kernel@...r.kernel.org, linux-security-module@...r.kernel.org, linux-fsdevel@...r.kernel.org, chrisw@...s-sol.org, Tony Jones <tonyj@...e.de> Subject: Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook On Thursday 24 May 2007 03:28, James Morris wrote: > On Wed, 23 May 2007, Andreas Gruenbacher wrote: > > This is backwards from what AppArmor does. The policy defines which paths > > may be accessed; all paths not explicitly listed are denied. If files are > > mounted at multiple locations, then the policy may allow access to some > > locations but not to others. That's not a hole. > > I don't know what else you'd call it. AppArmor doesn't label files; it's a different model from SELinux. Its policy defines which processes may access which paths. Even if for some reson the same files were visible elsewhere, the policy wouldn't cover those other paths, and so accessing them would be denied. So again, that's not a security hole. > Would you mind providing some concrete examples of how such a model would > be useful? The model is explained, with examples, in the technical documentation at http://forgeftp.novell.com//apparmor/LKML_Submission-May_07/. Thanks, Andreas - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists