Re: [PATCH] remove sys_security

From: David S. Miller (davem@redhat.com)
Date: Thu Oct 17 2002 - 18:08:55 EST

Next message: Steve Parker: "Re: 2.5.41 still not testable by end users"
Previous message: Garrett Kajmowicz: "Re: [ANNOUNCE, TRIVIAL, RFC] Linux source strip/bundle script"
In reply to: Chris Wright: "Re: [PATCH] remove sys_security"
Next in thread: Jakob Oestergaard: "Re: [PATCH] remove sys_security"
Reply: Jakob Oestergaard: "Re: [PATCH] remove sys_security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

   From: Chris Wright <chris@wirex.com>
   Date: Thu, 17 Oct 2002 16:04:36 -0700

   the photographer would like it if the mp3 player can't remove files
   in ~/photos/ when it plays a malicious .mp3 file.

LSM doesn't provide anything in this area which can't be done
today. You can protect that directory from malicious programs
today with file/dir protections and running programs with a different
capability set or even with a different euid/egid for file accesses.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Steve Parker: "Re: 2.5.41 still not testable by end users"
Previous message: Garrett Kajmowicz: "Re: [ANNOUNCE, TRIVIAL, RFC] Linux source strip/bundle script"
In reply to: Chris Wright: "Re: [PATCH] remove sys_security"
Next in thread: Jakob Oestergaard: "Re: [PATCH] remove sys_security"
Reply: Jakob Oestergaard: "Re: [PATCH] remove sys_security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Oct 23 2002 - 22:00:37 EST