Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: Jeremy Maitin-Shepard <jbms@xxxxxxx>
- Date: Fri, 25 May 2007 14:13:25 -0400
Jeremy Maitin-Shepard <jbms@xxxxxxx> writes:
[snip]
Well, my point was exactly that App Armor doesn't (as far as I know) do
anything to enforce the argv[0] convention, nor would it in general
prevent a confined program from making a symlink or hard link. Even
disregarding that, it seems very fragile in general to make an suid
program (there would be no point in confining the execution of a
non-suid program) perform essentially access control based on argv[0].
Note that by "confining the execution of a non-suid program", I mean
defining an App Armor profile that prevents the execution of a
particular non-suid program, unless of course the program file itself
contains secret information, which is irrelevant to this discussion.
--
Jeremy Maitin-Shepard
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- References:
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: Casey Schaufler
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: Jeremy Maitin-Shepard
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- Prev by Date: Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- Next by Date: Re: [patch] i386, numaq: enable TSCs again
- Previous by thread: Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- Next by thread: Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- Index(es):
Relevant Pages
|
Loading
