execstack fun
Daniel J Walsh
dwalsh at redhat.com
Wed Nov 25 19:13:20 UTC 2009
On 11/25/2009 11:25 AM, Jason L Tibbitts III wrote:
>>>>>> "DJW" == Daniel J Walsh <dwalsh at redhat.com> writes:
>
> DJW> Which would mean that any executables executed from the home dir
> DJW> would execute in execmem_t since we do not know if they are
> DJW> java/mono/or some other lang that requiers execmem/execstack.
>
> How would this work for home directories on NFS? (Actually I've always
> been unsure of how NFS home directories are supposed to be handled,
> especially when they're automounted and may be accessed by multiple
> different operating systems.)
>
> - J<
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
>
In the case of nfs homedir, the homedir is labeled nfs_t,
so the transition would have to be
unconfined_t->nfs_t->unconfined_execmem_t
unconfined_t->cifs_t->unconfined_execmem_t
for samba home dirs.
More information about the fedora-selinux-list
mailing list