diff for duplicates of <49D27F77.4040906@rubix.com> diff --git a/a/1.txt b/N1/1.txt index 386cbe6..266baac 100644 --- a/a/1.txt +++ b/N1/1.txt @@ -37,4 +37,7 @@ meant superseding the B&L policy. In a general sense we use special authorizations for that (our Security Admin role), while SELinux has a built in mechanism (mlsdbread) > Thanks, -> +> +-------------- next part -------------- +An HTML attachment was scrubbed... +URL: http://oss.tresys.com/pipermail/refpolicy/attachments/20090331/1bdb4cb0/attachment.html diff --git a/a/2.bin b/a/2.bin deleted file mode 100644 index c8d0f99..0000000 --- a/a/2.bin +++ /dev/null @@ -1,62 +0,0 @@ -<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> -<html> -<head> - <meta content="text/html;charset=ISO-2022-JP" - http-equiv="Content-Type"> -</head> -<body bgcolor="#ffffff" text="#000000"> -<br> -<br> -KaiGai Kohei wrote: -<blockquote cite="mid:49D27E6C.5000106@kaigai.gr.jp" type="cite"> - <blockquote type="cite"> - <pre wrap="">I am referring to things like: - -mlsconstrain { db_tuple } { use select } - (( l1 dom l2 ) or - (( t1 == mlsdbreadtoclr ) and ( h1 dom l2 )) or - ( t1 == mlsdbread ) or - ( t2 == mlstrustedobject )); - </pre> - </blockquote> - <pre wrap=""><!----> -I noticed the db_xxx:{use} permission remained here. :-) - </pre> -</blockquote> -The example I used above is from an older version of the reference -policy.<br> -<blockquote cite="mid:49D27E6C.5000106@kaigai.gr.jp" type="cite"> - <pre wrap=""> - </pre> - <blockquote type="cite"> - <pre wrap="">where t1 == mlsdbread seems to imply an object is trusted to read -strictly dominating objects. Unless I am missing the meaning here, I -would call this a MAC override. I realize there is no concept of a TE -override, but MLS is part of MAC, no? And, this violates B&L rules. This -is something we would control with a Security Administrator "role". Or, -is this mlsdbread something that is impossible to give to a domain in a -DBMS policy? - </pre> - </blockquote> - <pre wrap=""><!----> -It is different from my usage of terms. -Some of domains are allowed to access the tuple, and others are -disallowed as the result of access controls using the security -policy. - -I understood the term of "MAC override" to express what actions -are allowed without any checks based on security policy, as if -root stuff can ignore DAC checks. - </pre> -</blockquote> -Ya, definitions, definitions :-) Coming from an MLS world, MAC override -meant superseding the B&L policy. In a general sense we use special -authorizations for that (our Security Admin role), while SELinux has a -built in mechanism (mlsdbread) -<blockquote cite="mid:49D27E6C.5000106@kaigai.gr.jp" type="cite"> - <pre wrap=""> -Thanks, - </pre> -</blockquote> -</body> -</html> diff --git a/a/2.hdr b/a/2.hdr deleted file mode 100644 index 4d5ce0e..0000000 --- a/a/2.hdr +++ /dev/null @@ -1,2 +0,0 @@ -Content-Type: text/html; charset=ISO-2022-JP -Content-Transfer-Encoding: 7bit diff --git a/a/content_digest b/N1/content_digest index 171d9c2..6144430 100644 --- a/a/content_digest +++ b/N1/content_digest @@ -3,16 +3,11 @@ "ref\049D21FD5.7020600@kaigai.gr.jp\0" "ref\049D23288.2030807@rubix.com\0" "ref\049D27E6C.5000106@kaigai.gr.jp\0" - "From\0Andy Warner <warner@rubix.com>\0" - "Subject\0Re: [RFC] Security policy reworks for SE-PostgreSQL\0" + "From\0warner@rubix.com (Andy Warner)\0" + "Subject\0[refpolicy] [RFC] Security policy reworks for SE-PostgreSQL\0" "Date\0Tue, 31 Mar 2009 22:39:19 +0200\0" - "To\0KaiGai Kohei <kaigai@kaigai.gr.jp>\0" - "Cc\0KaiGai Kohei <kaigai@ak.jp.nec.com>" - cpebenito@tresys.com - method@manicmethod.com - selinux@tycho.nsa.gov - " refpolicy@oss.tresys.com\0" - "\01:1\0" + "To\0refpolicy@oss.tresys.com\0" + "\00:1\0" "b\0" "\n" "\n" @@ -53,70 +48,9 @@ "authorizations for that (our Security Admin role), while SELinux has a\n" "built in mechanism (mlsdbread)\n" "> Thanks,\n" - > - "\01:2\0" - "b\0" - "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">\n" - "<html>\n" - "<head>\n" - " <meta content=\"text/html;charset=ISO-2022-JP\"\n" - " http-equiv=\"Content-Type\">\n" - "</head>\n" - "<body bgcolor=\"#ffffff\" text=\"#000000\">\n" - "<br>\n" - "<br>\n" - "KaiGai Kohei wrote:\n" - "<blockquote cite=\"mid:49D27E6C.5000106@kaigai.gr.jp\" type=\"cite\">\n" - " <blockquote type=\"cite\">\n" - " <pre wrap=\"\">I am referring to things like:\n" - "\n" - "mlsconstrain { db_tuple } { use select }\n" - " (( l1 dom l2 ) or\n" - " (( t1 == mlsdbreadtoclr ) and ( h1 dom l2 )) or\n" - " ( t1 == mlsdbread ) or\n" - " ( t2 == mlstrustedobject ));\n" - " </pre>\n" - " </blockquote>\n" - " <pre wrap=\"\"><!---->\n" - "I noticed the db_xxx:{use} permission remained here. :-)\n" - " </pre>\n" - "</blockquote>\n" - "The example I used above is from an older version of the reference\n" - "policy.<br>\n" - "<blockquote cite=\"mid:49D27E6C.5000106@kaigai.gr.jp\" type=\"cite\">\n" - " <pre wrap=\"\">\n" - " </pre>\n" - " <blockquote type=\"cite\">\n" - " <pre wrap=\"\">where t1 == mlsdbread seems to imply an object is trusted to read \n" - "strictly dominating objects. Unless I am missing the meaning here, I \n" - "would call this a MAC override. I realize there is no concept of a TE \n" - "override, but MLS is part of MAC, no? And, this violates B&L rules. This \n" - "is something we would control with a Security Administrator \"role\". Or, \n" - "is this mlsdbread something that is impossible to give to a domain in a \n" - "DBMS policy?\n" - " </pre>\n" - " </blockquote>\n" - " <pre wrap=\"\"><!---->\n" - "It is different from my usage of terms.\n" - "Some of domains are allowed to access the tuple, and others are\n" - "disallowed as the result of access controls using the security\n" - "policy.\n" - "\n" - "I understood the term of \"MAC override\" to express what actions\n" - "are allowed without any checks based on security policy, as if\n" - "root stuff can ignore DAC checks.\n" - " </pre>\n" - "</blockquote>\n" - "Ya, definitions, definitions :-) Coming from an MLS world, MAC override\n" - "meant superseding the B&L policy. In a general sense we use special\n" - "authorizations for that (our Security Admin role), while SELinux has a\n" - "built in mechanism (mlsdbread)\n" - "<blockquote cite=\"mid:49D27E6C.5000106@kaigai.gr.jp\" type=\"cite\">\n" - " <pre wrap=\"\">\n" - "Thanks,\n" - " </pre>\n" - "</blockquote>\n" - "</body>\n" - "</html>\n" + "> \n" + "-------------- next part --------------\n" + "An HTML attachment was scrubbed...\n" + URL: http://oss.tresys.com/pipermail/refpolicy/attachments/20090331/1bdb4cb0/attachment.html -17e2264321b3d86bbeffc1e84ea8a43b3262574ae4c649f05b1ba6c57a5cdfcc +6b2bc903535b79d36599313d9ae80e810f3d4a07a8f5f181508c5cc539a228a3
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.