Re: [PATCH] remove sys_security

David S. Miller (davem@redhat.com)
Thu, 17 Oct 2002 16:08:55 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Steve Parker: "Re: 2.5.41 still not testable by end users"
Previous message: Garrett Kajmowicz: "Re: [ANNOUNCE, TRIVIAL, RFC] Linux source strip/bundle script"
Next in thread: Jakob Oestergaard: "Re: [PATCH] remove sys_security"
Reply: Jakob Oestergaard: "Re: [PATCH] remove sys_security"

From: Chris Wright <chris@wirex.com>
Date: Thu, 17 Oct 2002 16:04:36 -0700

the photographer would like it if the mp3 player can't remove files
in ~/photos/ when it plays a malicious .mp3 file.

LSM doesn't provide anything in this area which can't be done
today. You can protect that directory from malicious programs
today with file/dir protections and running programs with a different
capability set or even with a different euid/egid for file accesses.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Steve Parker: "Re: 2.5.41 still not testable by end users"
Previous message: Garrett Kajmowicz: "Re: [ANNOUNCE, TRIVIAL, RFC] Linux source strip/bundle script"
Next in thread: Jakob Oestergaard: "Re: [PATCH] remove sys_security"
Reply: Jakob Oestergaard: "Re: [PATCH] remove sys_security"