Re: Securelevel bitmap patch

Alexander Kjeldaas (astor@guardian.no)
Sun, 29 Mar 1998 23:01:09 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Ragnar Hojland Espinosa: "Configure.help typo"
Previous message: Sean M. Kelly: "Re: Can we stop the GGI war?"
In reply to: Linus Torvalds: "Re: Securelevel bitmap patch"

On Sun, Mar 29, 1998 at 09:17:08PM +0100, Alan Cox wrote:
> > In short, securelevels should be
> > (a) bitmaps
> > (b) per-process
>
> This is capabilities, this is NOT what BSD securelevels are. There was
> a Linux capabilities project. It never got merged, it died AFAIK.
>

It's not dead, it's just not being integrated mostly because of lack
of feedback. Linux-privs works. When 2.2 is out, I'll make a patch for
those interested in using it (I am :-) and hopefully it will get into
2.3 ASAP.

Linux-privs has both capabilities and a system-wide
"securebits". Securebits works as a filter which the per-process
filesystem-given ("suid") capabilities is filtered through. You can't
gain more capabilities than the system-wide "securebits" allow you. So
you can restrict the system just like BSD securelevel. However, the
mapping between "level" and bitmask will be a user-level policy.

astor

-- Alexander Kjeldaas, Guardian Networks AS, Trondheim, Norway http://www.guardian.no/

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu

Next message: Ragnar Hojland Espinosa: "Configure.help typo"
Previous message: Sean M. Kelly: "Re: Can we stop the GGI war?"
In reply to: Linus Torvalds: "Re: Securelevel bitmap patch"