Subject: Re: [RFC] [PATCH] [0/6] LSM Stacking
From: Stephen Smalley <sds@epoch.ncsc.mil>
To: Valdis Kletnieks <Valdis.Kletnieks@vt.edu>
Cc: "Serge E. Hallyn" <serue@us.ibm.com>, Chris Wright <chrisw@osdl.org>,
       Andrew Morton <akpm@osdl.org>, lkml <linux-kernel@vger.kernel.org>
In-Reply-To: <200411050723.iA57NGUv023856@turing-police.cc.vt.edu>
References: <1099609471.2096.10.camel@serge.austin.ibm.com>
	 <200411050723.iA57NGUv023856@turing-police.cc.vt.edu>
Content-Type: text/plain
Organization: National Security Agency
Message-Id: <1099673502.6373.190.camel@moss-spartans.epoch.ncsc.mil>
Mime-Version: 1.0
Date: Fri, 05 Nov 2004 11:51:42 -0500
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Content-Length: 987
Lines: 24

On Fri, 2004-11-05 at 02:23, Valdis.Kletnieks@vt.edu wrote:
> One issue:  I'm seeing this from /usr/sbin/sendmail:
> 
> % /usr/sbin/sendmail
> drop_privileges: setuid(0) succeeded (when it should not)
> 
> I've not tracked down what's causing this indigestion yet (I suspect some
> bad interaction with capabilities - that's what caused that message to be
> added to Sendmail in the first place).

stacker module is granting capability if any security module allows it
under the view that the capable() hook is authoritative.  But that is a
mistake; if you look at the existing stacking support in SELinux for
capabilities, we require both modules to approve the capability.

-- 
Stephen Smalley <sds@epoch.ncsc.mil>
National Security Agency

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/