* Niki Rahimi (narahimiat_private) wrote: > > I see. I am working on getting an LSM version of the Stephanie TPE(Trusted > Path Execution) project. See > http://www.packetfactory.net/projects/stephanie/ for more info. It was > originally written as a kernel patch for OpenBSD 2.4. I was trying to use > the stat functionality to get the attributes of a file's parent directory > before any execution call is allowed to proceed. I'll use this information > in a TPE function that will determine whether the directory is root owned > and/or group or world writeable and return a denial/access value to be > evaluated within the LSM framework. The stat functions make this a pretty > trivial task. I'm open to any suggestions you all might have on this one. Are you using the bprm security checks? You should be able to get the parent inode info from: bprm->file->f_dentry->d_parent->d_inode The inode has i_mode, i_uid, i_gid fields which sounds like all you need. Hope that helps, -chris -- Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net _______________________________________________ linux-security-module mailing list linux-security-moduleat_private http://mail.wirex.com/mailman/listinfo/linux-security-module
This archive was generated by hypermail 2b30 : Wed Jun 05 2002 - 15:12:31 PDT