| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <alpine.LRH.2.00.1011290904540.15604@tundra.namei.org> Date: Mon, 29 Nov 2010 09:05:31 +1100 (EST) From: James Morris <jmorris@...ei.org> To: Casey Schaufler <casey@...aufler-ca.com> cc: LSM <linux-security-module@...r.kernel.org>, LKLM <linux-kernel@...r.kernel.org> Subject: Re: [PATCH] Smack: UDS revision On Wed, 24 Nov 2010, Casey Schaufler wrote: > > Subject: [PATCH] Smack: UDS revision > > This patch addresses a number of long standing issues > with the way Smack treats UNIX domain sockets. > > All access control was being done based on the label of > the file system object. This is inconsistant with the > internet domain, in which access is done based on the > IPIN and IPOUT attributes of the socket. As a result > of the inode label policy it was not possible to use > a UDS socket for label cognizant services, including > dbus and the X11 server. > > Support for SCM_PEERSEC on UDS sockets is also provided. > > Signed-off-by: Casey Schaufler <casey@...aufler-ca.com> (I'm guessing you wanted me to apply this). Applied to git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6#next -- James Morris <jmorris@...ei.org> -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists