------------------------ Casey Schaufler casey@schaufler-ca.com 650.906.1780 --- KaiGai Kohei <kaigai@private> wrote: > Date: Sun, 01 Jan 2006 03:11:47 +0900 > From: KaiGai Kohei <kaigai@private> > To: linux-security-module@private, "SELinux(NSA)" > <selinux@private> > Subject: SELinux metadata protection > > Hello > > > Nowaday, I´m considering about a philosophical > theme. > > In my understanding, file-metadata includes > _filename_ similar to filesize > update-timestamp, and so on. Casey takes a deep breath... The filename is not an attribute of the file. The pathname components are data contained in directory entries. The association of path name to inode number is one way. There is no association of path name from file. Really. This is the thing that make audit hard. Yes, I know "It's obvious". It's just not true.
This archive was generated by hypermail 2.1.3 : Mon Jan 02 2006 - 11:05:58 PST