Re: Open then gates
On Saturday 15 May 2010 22:07:44 Robert Klotzner wrote:
> There is a reason why things like selinux are developed.
http://en.wikipedia.org/wiki/Discretionary_Access_Control
http://en.wikipedia.org/wiki/Mandatory_access_control
Yes. The design of Unix permissions is based on the DAC principle, allowing
users to mess up and disclose their own confidential data or other people's
data that they are entrusted with is part of the design.
With a MAC system such as SE Linux you can deny users the ability to
inappropriately share data. With SE Linux in Squeeze you will be able to
control file based sharing via category sets and/or by assigning users to
different SE Linux identities. For user A to read data from user B the users
will need to have the same SE Linux identity and user A will need to have a
"level" in the MCS system that is equal or superior to the level of user B.
One of many possible uses of MCS would be to have a category for each user in
a group and have their manager/teacher/whatever have the set of all categories
to enable reading all their files. Of course that simplistic model would only
work in an organisation with less than 1024 users.
Reply to: