mozilla not starting in enforcing mode
Russell Coker
russell at coker.com.au
Wed Jun 23 03:07:59 UTC 2004
On Wed, 23 Jun 2004 08:01, "Charles R. Anderson" <cra at WPI.EDU> wrote:
> On Mon, Jun 21, 2004 at 02:01:37PM +1000, Russell Coker wrote:
> > is staff_home_t. Labelling the file as staff_mozilla_rw_t is not going
> > to work as I think that some programs will unlink and recreate it.
>
> Has any thought been given to automatically, through policy, applying
> certain labels to files as they are created?
Yes that is done. If mozilla creates the file in question and nothing else
unlinks it then things will be fine. However if something else creates it
first or unlinks it and re-creates it then it gets a type that Mozilla may
not be permitted write or read/write access (depending on policy).
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
More information about the fedora-selinux-list
mailing list