Desktop apps interoperability

Ivan Gyurdiev ivg2 at
Mon Mar 28 15:05:58 UTC 2005

On Mon, 2005-03-28 at 16:09 +0200, Tom wrote:
> On Mon, Mar 28, 2005 at 08:46:24AM -0500, Ivan Gyurdiev wrote:
> > I was suggesting that content should be kept in a sub-folder of /home,
> > not that it should be kept somewhere else. I'm sorry for the
> > misunderstanding. I am suggesting that this folder(s) should be
> > standartized somehow. I am saying that settings should be kept separate.
> ah! What you want is /home/tom/.etc/ ?

Something like that - yes.

> Aunt Ellie downloads a movie. It goes into the Download folder (or
> really anywhere, it doesn't matter much). She drags the movie icon to
> the movie player and lets it drop. Movie plays.
> Behind the scenes, the file is relabeled or moved into another
> directory where mplayer can access it.

How does this relate to the SElinux work to secure the X server?
Should the desktop environment be trusted?

.. so what you're saying is that nautilus (running as user_t, which has
read access to the file in question, as well as appropriate relabel
access), should determine its mime type, or use the DND target app, and
associate a context with that, which the mime handler can play, then
relabel file to that context (can't copy - what if it's huge?).... and
do this for every mime handler I attempt to open it with?

Ivan Gyurdiev <ivg2 at>
Cornell University

More information about the fedora-selinux-list mailing list