Desktop apps interoperability
Luke Kenneth Casson Leighton
lkcl at lkcl.net
Mon Mar 28 19:54:50 UTC 2005
On Mon, Mar 28, 2005 at 01:23:39PM -0500, Stephen Smalley wrote:
> On Mon, 2005-03-28 at 19:27 +0100, Luke Kenneth Casson Leighton wrote:
> > ... question: in what ways do you ensure that a security-aware
> > compromised program is only allowed to create certain filetypes?
>
> In the same manner as with a security-unaware program; the domain must
> be allowed create permission to the file type via an allow rule.
... there's nothing special needed? ...
oh - yes, i get it. create filetype.
nothing to do with file_type_auto_trans itself.
l.
More information about the fedora-selinux-list
mailing list