From: Eamon Walsh <ewalsh@tycho.nsa.gov>
To: Ted X Toth <txtoth@gmail.com>
Cc: Glenn Faden <Glenn.Faden@sun.com>, SE Linux <selinux@tycho.nsa.gov>
Subject: Re: X avcs
Date: Fri, 11 Jan 2008 18:04:14 -0500 [thread overview]
Message-ID: <4787F5EE.1090800@tycho.nsa.gov> (raw)
In-Reply-To: <47878130.5010000@gmail.com>
Ted X Toth wrote:
> I'll look at implementing a dixPropertyLookup function. Do any other
> XACE hooks have value-return parameters, would it just be va_arg(ap,
> PropertyPtr*)?
>
No and yes, respectively.
> What about the idea of an exception list of single-instance root-window
> properties?
>
I'm examining the type_member policy statement to determine how we can
use it to provide this information. type_member was intented to support
polyinstantiation but it's mls semantics have not been defined yet.
>
>>> With respect to the root window drawable, it is protected at the
>>> lowest label, so it is never modified. Applications like Nautilus are
>>> polyinstantiated, too, and render their own background windows.
>>>
>>> Our implementation is all open-sourced using the Xorg license. A
>>> summary of the X11 security policy implemented by Solaris Trusted
>>> Extensions is described in Chapter 6 of the Developer's Guide,
>>> http://docs.sun.com/app/docs/doc/819-0869/6n391u3ru?a=view
>>>
>>> The configuration file for the polyinstantiation policy is described
>>> in the TrustedExtensionsPolicy man page,
>>> http://docs.sun.com/app/docs/doc/819-7307/trustedextensionspolicy-4?a=view
>>>
>>>
>>> The source code which implements this policy can be viewed in the
>>> OpenSolaris browser using this link:
>>> http://src.opensolaris.org/source/xref/fox/fox-gate/XW_NV/open-src/xserver/xorg/sun-src/tsol/
>>>
>>>
>>> The hooks to the XACE extension layer (also used by SELinux) are in
>>> the file tsolCompat.c, which can be viewed here:
>>> http://src.opensolaris.org/source/xref/fox/fox-gate/XW_NV/open-src/xserver/xorg/sun-src/Xext/tsolCompat.c
>>>
>>>
>>> Although Trusted Extensions and SELinux have significant differences
>>> with respect to their security models, both systems attempt to
>>> implement MAC policy in a manner that is transparent to applications.
>>> This should apply to the desktop, as well. In general, the user
>>> experience running GNOME on Solaris (with or without Trusted
>>> Extensions) or on Linux (with or without SELinux) should be almost
>>> identical. So the underlying policies enforced by the X11 server
>>> should follow the same general principles.
>>>
>>>
>> Our long-term goal is to make applications aware of and responsive to
>> the security environment, particularly applications that could
>> themselves be multi-level such as e-mail, web, office.
>>
>>
>
>
> --
> This message was distributed to subscribers of the selinux mailing list.
> If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
> the words "unsubscribe selinux" without quotes as the message.
>
>
--
Eamon Walsh <ewalsh@tycho.nsa.gov>
National Security Agency
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
next prev parent reply other threads:[~2008-01-11 23:04 UTC|newest]
Thread overview: 31+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-12-26 21:01 X avcs Xavier Toth
2007-12-28 16:54 ` Xavier Toth
2007-12-28 19:34 ` Eamon Walsh
2007-12-28 21:26 ` Xavier Toth
2008-01-02 15:11 ` Xavier Toth
2008-01-02 20:11 ` Glenn Faden
2008-01-09 14:21 ` Ted X Toth
2008-01-09 17:46 ` Glenn Faden
2008-01-10 21:14 ` Eamon Walsh
2008-01-10 23:55 ` Glenn Faden
2008-01-10 20:27 ` Eamon Walsh
2008-01-10 23:27 ` Glenn Faden
2008-01-11 14:46 ` Ted X Toth
2008-01-11 20:46 ` Glenn Faden
2008-01-11 22:37 ` Ted X Toth
2008-01-17 22:07 ` Eamon Walsh
2008-01-21 2:04 ` Glenn Faden
2008-01-24 0:11 ` Eamon Walsh
2008-01-24 15:40 ` Xavier Toth
2008-01-29 15:48 ` Xavier Toth
2008-01-31 2:26 ` Eamon Walsh
2008-02-08 23:51 ` Eamon Walsh
2008-02-13 16:52 ` Xavier Toth
2008-02-15 14:53 ` Xavier Toth
2008-02-15 17:18 ` Eamon Walsh
2008-01-11 23:04 ` Eamon Walsh [this message]
2008-01-14 20:14 ` Xavier Toth
2008-01-15 22:47 ` Eamon Walsh
2008-01-16 15:41 ` Xavier Toth
2008-01-16 16:05 ` Xavier Toth
[not found] <195F0BAA-7896-416C-9897-E191080161D4@nall.com>
[not found] ` <47EC1760.7050504@tycho.nsa.gov>
[not found] ` <F3CB74C1-A379-4B76-A41B-E7282D0C580A@nall.com>
2008-06-30 19:38 ` Eamon Walsh
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4787F5EE.1090800@tycho.nsa.gov \
--to=ewalsh@tycho.nsa.gov \
--cc=Glenn.Faden@sun.com \
--cc=selinux@tycho.nsa.gov \
--cc=txtoth@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.