mozilla not starting in enforcing mode

Stephen Smalley sds at epoch.ncsc.mil
Thu Jun 24 12:33:06 UTC 2004


On Wed, 2004-06-23 at 09:06, Charles R. Anderson wrote:
> I realize that file creation inherits the parent process's context. 
> What I was suggesting was something to override that based on
> filesystem path pattern, parent directory context, or something like
> that.

New files default to the security type of the parent directory, unless
the policy includes a file_type_auto_trans() macro (or type_transition
rule) that specifies a different type based on the creating process
domain, parent directory type, and file class.

-- 
Stephen Smalley <sds at epoch.ncsc.mil>
National Security Agency




More information about the fedora-selinux-list mailing list