using selinux to control user access to files
Daniel J Walsh
dwalsh at redhat.com
Fri May 6 12:04:00 UTC 2005
Hein Coulier wrote:
>hi, newby speaking here (totally lost in the selinux labyrinth).
>What i want to accomplish with selinux is the following : i want to allow
>different end-users (with different roles) to do something with some files.
>I'll give you an example :
>fileA : may be read by roleA and roleB
>fileB : may only be read by roleB ; audited
>fileC : may be read and changed by roleB ; audited
>I read several pdf's, read the o'reilly book, but i seem to be unable to
>achieve my goal.
>Help would be appreciated.
You may want to look at ACLs and Auditing rather than SELinux.
>fedora-selinux-list mailing list
>fedora-selinux-list at redhat.com
More information about the fedora-selinux-list