Re: Stacking Openwall and SELinux?

From: Chris Wright (chrisat_private)
Date: Mon Apr 01 2002 - 19:03:30 PST

  • Next message: Russell Coker: "Re: Stacking Openwall and SELinux?"

    * Russell Coker (russellat_private) wrote:
    > On Mon, 1 Apr 2002 22:51, Stephen Smalley wrote:
    > > > be stacked with SELinux?  In particular, it seems like
    > > > Openwall would be useful to stack with SELinux.
    > >
    > > Not currently.  At present, the SELinux security module only functions as
    > > a primary security module and provides minimal support for using either
    > > the dummy security module (traditional superuser logic) or the
    > > capabilities security module as a secondary security module.  The
    > > recommended configuration is to use SELinux with capabilities.
    > I've just had a look at what the LSM patch provides, it seems that stack 
    > protection is not an option.   As Stephen notes the special sym-link handling 
    > for /tmp doesn't work.
    somehow i missed this.  how does the sym-link handling break?
    linux-security-module mailing list

    This archive was generated by hypermail 2b30 : Mon Apr 01 2002 - 19:05:39 PST