Hi,
I am implementing a user space daemon to interface with Dazuko, and am
mainly concerned with when files are executed or mapped executable. I am
using the 2.6 Linux kernel and am unsure whether to use Dazuko as is
with LSM or patch my kernel with RSBAC. It seems that with RSBAC, the
Dazuko event ON_EXEC indicates that an exec system call is in progress,
whereas with LSM the ON_EXEC event merely indicates that a file has been
opened with exec permission. Am I correct?
Also, with Dazuko and RSBAC, is there anyway to determine whether a file
is mmap'ed executable, or is this handled through the ON_EXEC event? I
don't know too much about RSBAC, but their website defines a MAP_EXECUTE
request (linked to mmap, mprotect when files are mapped executable)
which doesn't seem to be specifically handled in the Dazuko code.
Any help would be appreciated.
Thanks,
Ajay Surie
_______________________________________________
Dazuko-help mailing list
[email protected]
http://lists.nongnu.org/mailman/listinfo/dazuko-help
