* bugzilla 518569 discusses making vsftpd SELinux aware.
@ 2009-08-27 13:04 Daniel J Walsh
2009-08-27 14:16 ` Christopher J. PeBenito
0 siblings, 1 reply; 4+ messages in thread
From: Daniel J Walsh @ 2009-08-27 13:04 UTC (permalink / raw)
To: SE Linux
https://bugzilla.redhat.com/show_bug.cgi?id=518569
The discussion surrounds potentially adding setcon function to vstfpd to drop level to a level appropriate the the user when he logs in. The discussion is around using MCS for this, but I guess I could see some utilization around MLS.
Not sure MLS would go for it though since there is a potential for information leak.
Comments?
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: bugzilla 518569 discusses making vsftpd SELinux aware.
2009-08-27 13:04 bugzilla 518569 discusses making vsftpd SELinux aware Daniel J Walsh
@ 2009-08-27 14:16 ` Christopher J. PeBenito
2009-08-27 15:02 ` Stephen Smalley
0 siblings, 1 reply; 4+ messages in thread
From: Christopher J. PeBenito @ 2009-08-27 14:16 UTC (permalink / raw)
To: Daniel J Walsh; +Cc: SE Linux
On Thu, 2009-08-27 at 09:04 -0400, Daniel J Walsh wrote:
> https://bugzilla.redhat.com/show_bug.cgi?id=518569
>
> The discussion surrounds potentially adding setcon function to vstfpd
> to drop level to a level appropriate the the user when he logs in.
> The discussion is around using MCS for this, but I guess I could see
> some utilization around MLS.
>
> Not sure MLS would go for it though since there is a potential for
> information leak.
I'm not sure I like it this idea, but I wanted to throw it out anyway:
why not just change to the user's complete login context (or a context
that is a subset of it), rather than just the level?
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: bugzilla 518569 discusses making vsftpd SELinux aware.
2009-08-27 14:16 ` Christopher J. PeBenito
@ 2009-08-27 15:02 ` Stephen Smalley
2009-08-27 15:07 ` Stephen Smalley
0 siblings, 1 reply; 4+ messages in thread
From: Stephen Smalley @ 2009-08-27 15:02 UTC (permalink / raw)
To: Christopher J. PeBenito; +Cc: Daniel J Walsh, SE Linux
On Thu, 2009-08-27 at 10:16 -0400, Christopher J. PeBenito wrote:
> On Thu, 2009-08-27 at 09:04 -0400, Daniel J Walsh wrote:
> > https://bugzilla.redhat.com/show_bug.cgi?id=518569
> >
> > The discussion surrounds potentially adding setcon function to vstfpd
> > to drop level to a level appropriate the the user when he logs in.
> > The discussion is around using MCS for this, but I guess I could see
> > some utilization around MLS.
> >
> > Not sure MLS would go for it though since there is a potential for
> > information leak.
>
> I'm not sure I like it this idea, but I wanted to throw it out anyway:
> why not just change to the user's complete login context (or a context
> that is a subset of it), rather than just the level?
What happens if we just add pam_selinux entries to /etc/pam.d/vsftpd,
and add a system_r:ftpd_t entry to the default_contexts configuration?
--
Stephen Smalley
National Security Agency
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: bugzilla 518569 discusses making vsftpd SELinux aware.
2009-08-27 15:02 ` Stephen Smalley
@ 2009-08-27 15:07 ` Stephen Smalley
0 siblings, 0 replies; 4+ messages in thread
From: Stephen Smalley @ 2009-08-27 15:07 UTC (permalink / raw)
To: Christopher J. PeBenito; +Cc: Daniel J Walsh, SE Linux
On Thu, 2009-08-27 at 11:02 -0400, Stephen Smalley wrote:
> On Thu, 2009-08-27 at 10:16 -0400, Christopher J. PeBenito wrote:
> > On Thu, 2009-08-27 at 09:04 -0400, Daniel J Walsh wrote:
> > > https://bugzilla.redhat.com/show_bug.cgi?id=518569
> > >
> > > The discussion surrounds potentially adding setcon function to vstfpd
> > > to drop level to a level appropriate the the user when he logs in.
> > > The discussion is around using MCS for this, but I guess I could see
> > > some utilization around MLS.
> > >
> > > Not sure MLS would go for it though since there is a potential for
> > > information leak.
> >
> > I'm not sure I like it this idea, but I wanted to throw it out anyway:
> > why not just change to the user's complete login context (or a context
> > that is a subset of it), rather than just the level?
>
> What happens if we just add pam_selinux entries to /etc/pam.d/vsftpd,
> and add a system_r:ftpd_t entry to the default_contexts configuration?
Oh, obviously that only affects subsequent execve() calls. Which should
help with e.g. executing /bin/ls, but not with direct accesses by the
main daemon.
--
Stephen Smalley
National Security Agency
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2009-08-27 15:07 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2009-08-27 13:04 bugzilla 518569 discusses making vsftpd SELinux aware Daniel J Walsh
2009-08-27 14:16 ` Christopher J. PeBenito
2009-08-27 15:02 ` Stephen Smalley
2009-08-27 15:07 ` Stephen Smalley
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.