[patch] get pid of peer
Stephen Smalley
sds at epoch.ncsc.mil
Thu Jul 15 05:19:42 PDT 2004
On Wed, 2004-07-14 at 21:53, Havoc Pennington wrote:
> On Tue, 2004-07-13 at 18:57, David Zeuthen wrote:
> > <policy image="/usr/libexec/gnome-vfs-daemon">
> > <!-- grant something here -->
> > </policy>
>
> SELinux may overlap with this, but I'm not sure in what ways.
The SELinux policy can control based on the peer security context, which
can include information about the particular executable as well as its
caller (including possibly the entire call chain, or at least the
relevant trust boundaries crossed).
--
Stephen Smalley <sds at epoch.ncsc.mil>
National Security Agency
More information about the dbus
mailing list