Re: [PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace

From: Andreas Gruenbacher (agruen@private)
Date: Fri Jan 16 2004 - 15:37:44 PST

Next message: Theodore Ts'o: "Re: [PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"

Previous message: Chris Wright: "[PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"
In reply to: Chris Wright: "[PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"
Next in thread: Theodore Ts'o: "Re: [PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello Chris,

the patch looks fine to me. Thank you all for reacting so quickly.

On Fri, 2004-01-16 at 22:20, Chris Wright wrote:
> Add default hooks for both the dummy and capability code to protect the
> XATTR_SECURITY_PREFIX namespace.  These EAs were fully accessible to
> unauthorized users, so a user that rebooted from an SELinux kernel to a
> default kernel would leave those critical EAs unprotected.

Regards,
-- 
Andreas Gruenbacher <agruen@private>
SUSE Labs, SUSE LINUX AG

Next message: Theodore Ts'o: "Re: [PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"
Previous message: Chris Wright: "[PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"
In reply to: Chris Wright: "[PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"
Next in thread: Theodore Ts'o: "Re: [PATCH 2/2] Default hooks protecting the XATTR_SECURITY_PREFIX namespace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Jan 16 2004 - 15:38:21 PST