Re: ACL on soft links ?


From: Amon Ott <ao@rsbac.org>
Subject: Re: ACL on soft links ?
Date: Fri, 20 Apr 2001 12:05:21 +0200

Next Article (by Date): rsbac-v1.1.2-pre3 uploaded Amon Ott
Previous Article (by Date): Re: Re[2]: RSBAC and XFree86-4.0.3 ? Amon Ott
Top of Thread: ACL on soft links ? Fabrice MARIE
Articles sorted by: [Date] [Author] [Subject]


On Die, 17 Apr 2001 Fabrice MARIE wrote:
> I would like to protect in /boot the soft link vmlinuz, because if root
> can change it, he can change the kernel to boot if he runs lilo,
> but it seems to be impossible to use acl_menu to change right on links ?
> Soft links have their own inode right ?
> 
> What can I do to prevent this then ?

Currently, you can only make /boot completely read-only or avoid symlinks.

I am currently adding the new target type SYMLINK, which can the 1.1.2-pre3 on
be used for such purposes.

Amon.
-
To unsubscribe from the rsbac list, send a mail to
majordomo@rsbac.org with
unsubscribe rsbac
as single line in the body.

Next Article (by Date): rsbac-v1.1.2-pre3 uploaded Amon Ott
Previous Article (by Date): Re: Re[2]: RSBAC and XFree86-4.0.3 ? Amon Ott
Top of Thread: ACL on soft links ? Fabrice MARIE
Articles sorted by: [Date] [Author] [Subject]


Go to Compuniverse LWGate Home Page.