Home » Mailing list archives » openbsd-misc » 2007 » September » 22

Re: OBSD's perspective on SELinux

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Ihar Hrachyshka
Subject: Re: OBSD's perspective on SELinux
Date: Saturday, September 22, 2007 - 9:45 am

2007/9/22, Joachim Schipper <j.schipper@math.uu.nl>:
What part of SELinux is NOT Unix? Remember that all traditional Unix
rwx permissions are still there.
For example for blocking some critical operations for ALL users, even
root. Of course, that's the case when strict traditional
Unix-awareness is not so critical as the security of the system by
itself.
Every security feature, every OS improvement IS an additional code.
That's the problem of proper kernel and security policies audit, not
SELinux as an idea.
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
OBSD's perspective on SELinux, Douglas A. Tutty, (Sat Sep 22, 8:34 am)
Re: OBSD's perspective on SELinux, Darrin Chandler, (Sat Sep 22, 9:00 am)
Re: OBSD's perspective on SELinux, Jason Dixon, (Sat Sep 22, 9:20 am)
Re: OBSD's perspective on SELinux, Jeffrey 'jf' Lim, (Sat Sep 22, 9:26 am)
Re: OBSD's perspective on SELinux, Joachim Schipper, (Sat Sep 22, 9:29 am)
Re: OBSD's perspective on SELinux, Ihar Hrachyshka, (Sat Sep 22, 9:45 am)
Re: OBSD's perspective on SELinux, Eduardo Tongson, (Sat Sep 22, 9:52 am)
Re: OBSD's perspective on SELinux, Douglas A. Tutty, (Sat Sep 22, 10:21 am)
Re: OBSD's perspective on SELinux, Ihar Hrachyshka, (Sat Sep 22, 10:38 am)
Re: OBSD's perspective on SELinux, Eduardo Tongson, (Sat Sep 22, 11:00 am)
Re: OBSD's perspective on SELinux, Ted Unangst, (Sat Sep 22, 11:50 am)
Re: OBSD's perspective on SELinux, Stuart Henderson, (Sat Sep 22, 1:00 pm)
Re: OBSD's perspective on SELinux, Douglas A. Tutty, (Sat Sep 22, 1:21 pm)
Re: OBSD's perspective on SELinux, Joachim Schipper, (Sat Sep 22, 1:39 pm)
Re: OBSD's perspective on SELinux, ttw+bsd, (Sat Sep 22, 4:20 pm)
Re: OBSD's perspective on SELinux, L. V. Lammert, (Sat Sep 22, 4:47 pm)
Re: OBSD's perspective on SELinux, Marco Peereboom, (Sat Sep 22, 8:27 pm)
Re: OBSD's perspective on SELinux, Brian Candler, (Sun Sep 23, 12:25 pm)
Re: OBSD's perspective on SELinux, Rui Miguel Silva Seabra, (Sun Sep 23, 2:54 pm)
Re: digitally signed distribution (was: OBSD's perspective ..., Joachim Schipper, (Sun Sep 23, 3:35 pm)
Re: digitally signed distribution (was: OBSD's perspective ..., Rui Miguel Silva Seabra, (Sun Sep 23, 3:38 pm)
Re: digitally signed distribution (was: OBSD's perspective ..., Gilles Chehade, (Mon Sep 24, 2:40 am)
Re: OBSD's perspective on SELinux, David Gwynne, (Mon Sep 24, 7:08 am)
Re: OBSD's perspective on SELinux, Jason Dixon, (Mon Sep 24, 7:25 am)
Re: OBSD's perspective on SELinux, Chris Kuethe, (Mon Sep 24, 7:52 am)
Re: digitally signed distribution (was: OBSD's perspective ..., Martin Schröder, (Mon Sep 24, 8:18 am)
Re: OBSD's perspective on SELinux, Brian Candler, (Mon Sep 24, 8:31 am)
Re: OBSD's perspective on SELinux, Rui Miguel Silva Seabra, (Mon Sep 24, 8:59 am)
Re: digitally signed distribution (was: OBSD's perspective ..., Martin Schröder, (Mon Sep 24, 9:02 am)
Re: OBSD's perspective on SELinux, Ted Unangst, (Mon Sep 24, 10:29 am)
Re: digitally signed distribution (was: OBSD's perspective ..., Antti Harri, (Mon Sep 24, 10:32 am)
Re: OBSD's perspective on SELinux, Jacob Yocom-Piatt, (Mon Sep 24, 11:17 am)
Re: OBSD's perspective on SELinux, ttw+bsd, (Mon Sep 24, 11:28 am)
Re: OBSD's perspective on SELinux, Ted Unangst, (Mon Sep 24, 12:14 pm)
Re: OBSD's perspective on SELinux, Damien Miller, (Mon Sep 24, 8:09 pm)
Re: digitally signed distribution (was: OBSD's perspective ..., Lars Hansson, (Mon Sep 24, 10:57 pm)
Re: digitally signed distribution (was: OBSD's perspective ..., Darren Spruell, (Mon Sep 24, 11:32 pm)
Re: OBSD's perspective on SELinux, Marc Espie, (Tue Sep 25, 3:06 am)
Re: OBSD's perspective on SELinux, Marc Espie, (Tue Sep 25, 5:34 am)