* Re: SELinux with NFSv4
[not found] <56222.82.246.196.177.1208808724.squirrel@webmail.ensi-bourges.fr>
@ 2008-04-21 20:24 ` Daniel J Walsh
0 siblings, 0 replies; 2+ messages in thread
From: Daniel J Walsh @ 2008-04-21 20:24 UTC (permalink / raw)
To: Hervé WERNER, SE Linux
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hervé WERNER wrote:
> Hello,
>
>
> I'm a French student working on NFSv4 through SELinux. I would like to
> know where I could find information about this. Is there something I could
> try to make files labeling working with NFSv4? Is there a patch I could
> try?
>
> I am especially looking for a simple method that makes me able to limit
> permissions for users through NFSv4, for exemple :
> - allowing only sysadm_t to read write and execute a file and not to
> normal users
> - allowing access to everybody
>
>
>
> I would appreciate any advice.
>
>
> Hervé WERNER
>
>
NFS extended attribute discussion is happing on the SELinux NSA Mail
list <selinux@tycho.nsa.gov>
You can add a label to the NFS mount and make this not accessable by
normal users which would get you what you want.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkgM+AsACgkQrlYvE4MpobNpmgCeNDDclNrFAesCwY6kTM8se2e7
CdoAnRNlBZPB4mtpzhodKMSW3sp5aQMW
=hPK3
-----END PGP SIGNATURE-----
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: SELinux with NFSv4
[not found] <45448.82.246.196.177.1208811177.squirrel@webmail.ensi-bourges.fr>
@ 2008-04-22 13:43 ` Daniel J Walsh
0 siblings, 0 replies; 2+ messages in thread
From: Daniel J Walsh @ 2008-04-22 13:43 UTC (permalink / raw)
To: Hervé WERNER; +Cc: SE Linux
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hervé WERNER wrote:
>> NFS extended attribute discussion is happing on the SELinux NSA Mail
>> list <selinux@tycho.nsa.gov>
>>
>> You can add a label to the NFS mount and make this not accessable by
>> normal users which would get you what you want.
> I meant putting different labels on files resulting from the same mount.
> Currently I can only put an only label on all files coming from the same
> mount. I would like to be able to label differently files from a same
> mount. It is a kind of public share with permissions that I would like to
> do...
>
Sorry you can not do that currently.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkgN63AACgkQrlYvE4MpobNS0gCeKaCM90qYaqlfDedFCm62nt0U
4TMAoJUFle8W2/j+KnBHB/dPrSDrVx1z
=aVrU
-----END PGP SIGNATURE-----
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2008-04-22 13:43 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <56222.82.246.196.177.1208808724.squirrel@webmail.ensi-bourges.fr>
2008-04-21 20:24 ` SELinux with NFSv4 Daniel J Walsh
[not found] <45448.82.246.196.177.1208811177.squirrel@webmail.ensi-bourges.fr>
2008-04-22 13:43 ` Daniel J Walsh
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.