Proposal for a Desktop Neutral Crypto API

David Zeuthen david at fubar.dk
Tue Apr 5 19:51:23 EEST 2005


On Tue, 2005-04-05 at 17:50 +0100, Mike Hearn wrote:
> On Tue, 2005-04-05 at 12:39 -0400, David Zeuthen wrote:
> > For D-BUS, anything in the users session can connect to the session bus
> > (provided they know the $DBUS_SESSION_BUS_ADDRESS) by design; only the
> > system bus requires special privileges and I don't think that one would
> > use the system bus for this thing.
> 
> Right, that sounds correct for the targetted policy. Is it also true for
> strict?

I'm not sure, but I don't think there are any plans at all enforce
security policies on the session bus at all even when using the strict
SELinux policy. I could be wrong, Colin or Havoc knows the details.

The system bus is an entirely different matter though.

Cheers,
David





More information about the xdg mailing list