[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: dir permissions

I demand that Wichert Akkerman may or may not have written...

> Previously Russell Coker wrote:
>> For SE Linux I am thinking of making all programs in /usr/games trigger a
>> domain transition to a domain that can't write to regular files in a
>> user's home directory (only to user_home_games_t not user_home_t), can't
>> kill, ptrace, or otherwise molest regular user processes, but can write to
>> /var/games etc.

> So you can't have saved games, customized keybindings, etc. ? Being able to
> write in a homedirectory is pretty essential.

Ensuring that some directory, say ~/.games, exists, attaching relevant
permissions to it then telling the process that that's the user's home
directory might be enough...?

| Darren Salt       | nr. Ashington, | linux (or ds) at
| Linux PC, Risc PC | Northumberland | youmustbejoking
| No Wodniws here   | Toon Army      | demon co uk
|   This space reserved for future expansion

The whole world is a tuxedo and you are a pair of brown shoes.

To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: