On 08/20/2013 01:55 PM, William Roberts wrote: > On Tue, Aug 20, 2013 at 10:25 AM, Stephen Smalley <s...@tycho.nsa.gov> wrote: > >> On 08/20/2013 11:22 AM, William Roberts wrote: >>> Yeah I have ran into this before. In Samsung we just sent an OTA, as it >> was no big deal. We either need something like relabeld or a way for the >> kernel to set the security attribute at file open based on the policy, >> rather than needing to label.... I'm not a huge fan of labeling. >> >> Labeling may be painful at times, but all the alternatives are far >> worse. And setting the security attribute at file open would defeat the >> entire purpose. Anyway, that's rather off-topic. >> > Can we start another thread on this, I would love to hear what you know on > this.
Feel free, but I'm not sure it is any different than the same attribute-based vs pathname-based security arguments we've had in the past. -- This message was distributed to subscribers of the seandroid-list mailing list. If you no longer wish to subscribe, send mail to majord...@tycho.nsa.gov with the words "unsubscribe seandroid-list" without quotes as the message.
