From: Herbert P÷tzl (herbert_at_13thfloor.at)
Date: Sat 09 Aug 2003 - 12:26:26 BST
first, thanks for your answers ...
On Sat, Aug 09, 2003 at 12:15:01PM +0200, Georges Toth wrote:
> > 1) if the almighty context zero/one modifies files
> > of another context ...
> > a) the files/dirs to keep their context?
> > 2) if a program of context N encounters a file of
> > context M, where N != M ...
> How can this happen ? a vserver doesn't have access to other vservers ?
> zero/one should be able to copy files from one vserver to another, and maybe
> on copy, automaticaly change the context of the file to the context, of the
> new vserver...if that's possible?
what if a vserver is started with context 100 and, because
of a simple change in the config file, next time gets started
as context 200? the files do not know that they now 'should'
belong to a new context.
of course, in a perfect world, this would not happen, because
the administrator would change the files from context 100
to 200 before starting the vserver ... but on the other hand
all security would not be needed in a perfect world, would it?
> > 3) consider a program creating a (hard)link to a file
> > in another context (including zero/one), should ...
> > a) the file change to the 'new' context?
> a), and should only be allowed for zero/one
> > 4) consider a program removing a link to a file with
> > more than one links, should the remaining links ...
> > a) be still 'owned' by the removing context?
> Georges Toth