Re: dir permissions
I demand that Wichert Akkerman may or may not have written...
> Previously Russell Coker wrote:
>> For SE Linux I am thinking of making all programs in /usr/games trigger a
>> domain transition to a domain that can't write to regular files in a
>> user's home directory (only to user_home_games_t not user_home_t), can't
>> kill, ptrace, or otherwise molest regular user processes, but can write to
>> /var/games etc.
> So you can't have saved games, customized keybindings, etc. ? Being able to
> write in a homedirectory is pretty essential.
Ensuring that some directory, say ~/.games, exists, attaching relevant
permissions to it then telling the process that that's the user's home
directory might be enough...?
| Darren Salt | nr. Ashington, | linux (or ds) at
| Linux PC, Risc PC | Northumberland | youmustbejoking
| No Wodniws here | Toon Army | demon co uk
| This space reserved for future expansion
The whole world is a tuxedo and you are a pair of brown shoes.
To UNSUBSCRIBE, email to email@example.com
with a subject of "unsubscribe". Trouble? Contact firstname.lastname@example.org