* Fast User Switching and security / SELinux
@ 2006-12-19 22:14 Karl MacMillan
2006-12-19 23:04 ` David Zeuthen
0 siblings, 1 reply; 2+ messages in thread
From: Karl MacMillan @ 2006-12-19 22:14 UTC (permalink / raw)
To: fedora-devel-list, SELinux Mail List
Reading through http://fedoraproject.org/wiki/Desktop/FastUserSwitching,
I had two questions.
1) Any work ongoing to look at the security of this solution. For
example, the proposed fix for device ownership allows multiple users to
use devices simultaneously. This could have serious security
implications (e.g., monitoring VIOP calls made by another user).
2) Some work will likely be needed for this to work well with SELinux,
particularly as we are looking at locking down user apps as an option in
the future (evolution, firefox, etc.). This may also include XACE
(http://blogs.sun.com/alanc/entry/xace_merged_into_xorg_for - just
ignore the trusted extensions notes). Any current plans on tackling this?
Thanks - Karl
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Fast User Switching and security / SELinux
2006-12-19 22:14 Fast User Switching and security / SELinux Karl MacMillan
@ 2006-12-19 23:04 ` David Zeuthen
0 siblings, 0 replies; 2+ messages in thread
From: David Zeuthen @ 2006-12-19 23:04 UTC (permalink / raw)
To: Development discussions related to Fedora Core; +Cc: SELinux Mail List
On Tue, 2006-12-19 at 17:14 -0500, Karl MacMillan wrote:
> Reading through http://fedoraproject.org/wiki/Desktop/FastUserSwitching,
> I had two questions.
>
> 1) Any work ongoing to look at the security of this solution. For
> example, the proposed fix for device ownership allows multiple users to
> use devices simultaneously. This could have serious security
> implications (e.g., monitoring VIOP calls made by another user).
No code yet, plans include using ACL's on device nodes and have *some*
way of specifying whether a device of a given class can have multiple
owners or not. Preferably specifying this so it can be locked down.
Whether the driver in question support multiple openers (it varies, even
within the same class e.g. ALSA) is another question.
All this will probably mean replacing pam-console with *something*, not
a bad idea anyway since pam-console is one reason that e.g. udev takes a
long time to start. It just does a lot of work on every uevent that it
doesn't need to do.
Again, no code is written yet. For discussion please follow up on the
Wiki page, not on this mailing list (as such, Karl, please add notes to
the Wiki page). Thanks.
David
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2006-12-19 23:03 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-12-19 22:14 Fast User Switching and security / SELinux Karl MacMillan
2006-12-19 23:04 ` David Zeuthen
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.