[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [PATCH] enable /proc/$$/loginuid



On Fri, 2005-01-14 at 14:06, Serge Hallyn wrote:
> Changelog:
>   1/14/2005: Added several checks for error values which were missing.
>   1/07/2005: First version.
> 
> Is this ready for lkml?

Why require CAP_AUDIT_CONTROL to read the loginuid?  Programs like
newrole would like to have a more reliable user identity available than
the normal uid; we were having them extract the SELinux user identity
from the security context, but in Fedora, that is typically just user_u
due to the lack of integration of user management with policy.

-- 
Stephen Smalley <sds epoch ncsc mil>
National Security Agency


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]