SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: [PATCH] Gentoo-specific initrc This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Chris PeBenito <pebenito_at_gentoo.org> Date: Sun, 19 Sep 2004 19:31:22 -0400 On Sun, 2004-09-19 at 17:04, Russell Coker wrote: > On Sun, 19 Sep 2004 23:08, Chris PeBenito <pebenito@gentoo.org> wrote: > > > +allow initrc_t etc_runtime_t:dir read; > > > > > > Your patch doesn't include any .fc entries to label a directory as > > > etc_runtime_t. > > > > This is going to appear in my types.fc patch. The directory I'm > > referring to is not specific to initrc. > > What is the purpose of a etc_runtime_t directory? Currently any process that > can create files as etc_runtime_t can write to a directory labelled as etc_t. Good point, I'll send an updated patch when sourceforge cvs starts responding again for me. I guess I got a little overzealous on the labeling. > Are you planning to change that? No, unless I can think of (or someone tells me) a reason to do that. -- Chris PeBenito <pebenito@gentoo.org> Developer, Hardened Gentoo Linux Embedded Gentoo Linux Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243 Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. application/pgp-signature attachment: This is a digitally signed message part Received on Sun 19 Sep 2004 - 19:32:22 EDT This message: [ Message body ] Next message: Joshua Brindle: "Re: [RFC] Upstream policy handling" Previous message: Joshua Brindle: "Re: [RFC] Upstream policy handling" In reply to: Russell Coker: "Re: [PATCH] Gentoo-specific initrc" Next in thread: Christopher J. PeBenito: "Re: [PATCH] Gentoo-specific initrc" Reply: Christopher J. PeBenito: "Re: [PATCH] Gentoo-specific initrc" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom