Hi, > We discussed some workaround like to write a script and daemon changing > the execution permission of specified applications. Now my question is > that, in the skolelinux, can a similar policy list be set through GOsa > or any other way? It is, technically, perfectly possible, both through standard Unix DAC¹ methods and throush SELinux/ApPArmor or other MAC² implementations. To the extent of what I know, there is no ready-to-use interface to control it in a manageable way. -nik ____ ¹ Discretionary Access Control, like, as you mentioned, file permissions ² Mandatory Access Control, probably using role-based access control
Attachment:
signature.asc
Description: OpenPGP digital signature