From: "Takesi satoh" <t_mail@mail2Airport.com>
To: <selinux@tycho.nsa.gov>
Subject: netif and node check in RHEL5
Date: Wed, 21 May 2008 06:37:30 -0700 [thread overview]
Message-ID: <0a1101c8bb47$d12c4270$036a010a@mail2world.com> (raw)
[-- Attachment #1: Type: text/plain, Size: 1787 bytes --]
Hello,
I wonder that whether node and netif are checked in RHEL5 or not.
I tried to add some auditallow sentences in RHEL4 at first.
> auditallow unconfined_t node_type: node *;
> auditallow unconfined_t netif_type:netif *;
and executeed some commands such as,
> nc -p -l 8888
> echo "testtest" | nc 127.0.0.1 8888
Then, SELinux generated granted logs such as,
> localhost kernel: audit(1190468263.024:250): avc: granted { tcp_send }
for pid=6057 comm="nc" name="bash" dev=dm-0 ino=686823
scontext=root:system_r:unconfind_t tcontext=root:system_r:node_t
tclass=node
I tried same thing in RHEL5. but no granted logs are found in
/var/log/audit/audit.log.
I created module like below, and after compiling the module, tried
"semodule -i test.pp".
> policy_module(test, 1.0.0)
> gen_require {
> attribute node_type;
> attribute netif_type;
> type unconfined_t;
> }
> auditallow unconfined_t node_type:node *;
> auditallow unconfined_t netif_type:netif *;
>
> ( fc and if file are empty.)
I thought subject domain was not unconfined_t, so I confirmed what user
security context was.
But I logined root( unconfined_t )
Anyway, Does SELinux in RHEL5 checks node and netif ? or just my
mistake?
Regards,
K
Take a perfect family vacation to Orlando. Click Here.
<http://tagline.bidsystem.com/fc/Ioyw36XIxjaEAYbNOPV0Zq9V2bkt0YOrGFBXvN6
j0K6aTh5Me2S2sL/>
<span id=m2wTl><p><font face="Arial, Helvetica, sans-serif" size="2" style="font-size:13.5px">_______________________________________________________________<BR>Get the FREE email that has everyone talking at <a href=http://www.mail2world.com target=new>http://www.mail2world.com</a><br> <font color=#999999>Unlimited Email Storage – POP3 – Calendar – SMS – Translator – Much More!</font></font></span>
[-- Attachment #2: Type: text/html, Size: 2273 bytes --]
next reply other threads:[~2008-05-21 13:38 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-05-21 13:37 Takesi satoh [this message]
2008-05-21 16:50 ` netif and node check in RHEL5 Paul Moore
-- strict thread matches above, loose matches on Subject: below --
2008-05-23 17:05 Takesi satoh
2008-05-23 18:00 ` Paul Moore
2008-05-25 4:24 Takesi satoh
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='0a1101c8bb47$d12c4270$036a010a@mail2world.com' \
--to=t_mail@mail2airport.com \
--cc=selinux@tycho.nsa.gov \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.