[redhat-lspp] /home at SystemHigh
schaufler-ca.com - Casey Schaufler
casey at schaufler-ca.com
Fri Feb 24 18:13:38 UTC 2006
--- Klaus Weidner <klaus at atsec.com> wrote:
> Something like the following sequence:
>
> - sysadmin starts adding user Joe
>
> - The new /home/joe/ starts out at SystemHigh
>
> - some other process puts a secret file into
> /home/joe/unimportant.txt
>
> - the final useradd step, or a later sysadmin
> action, downgrades
> /home/joe/ recursively to SystemLow, including the
> formerly top secret
> file
The old crusty B1 systems that have been
around since the 1980s have to deal with this.
You could do worse than looking to see how
they handled the issue rather than reinventing
the solution over and over redundently again.
More information about the redhat-lspp
mailing list