Item: Store and restore extended attributes, especially selinux file contexts
Date: 28 December 2007
Origin: Frank Sweetser <[EMAIL PROTECTED]>
What: The ability to store and restore extended attributes on filesystems that
support them, such as ext3.
Why: Security Enhanced Linux (SELinux) enabled systems make extensive use of
extended attributes. In addition to the standard user, group, and permission,
each file has an associated SELinux context stored as an extended attribute.
This context is used to define which operations a given program is permitted
to perform on that file. Storing contexts on an SELinux system is as critical
as storing ownership and permissions. In the case of a full system restore,
the system will not even be able to boot until all critical system files have
been properly relabeled.
Notes: Fedora ships with a version of tar that has been patched to handle
extended attributes. The patch has not been integrated upstream yet, so could
serve as a good starting point.
--
Frank Sweetser fs at wpi.edu | For every problem, there is a solution that
WPI Senior Network Engineer | is simple, elegant, and wrong. - HL Mencken
GPG fingerprint = 6174 1257 129E 0D21 D8D4 E8A3 8E39 29E3 E2E8 8CEC
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Bacula-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/bacula-devel
