[prev in list] [next in list] [prev in thread] [next in thread] 

List:       lids-user
Subject:    Re: RE: [lids-user] Can still read files when I do -j DENY
From:       dayz () planet ! nl
Date:       2004-08-26 3:42:16
Message-ID: 1b68817b43.17b431b688 () planet ! nl
[Download RAW message or body]

Hi Karan,

Thank you for mentioning this. I didn't know it.

Regards,

Ben

----- Oorspronkelijk bericht -----
Van: Karan Saberwal <karan@cins.unipune.ernet.in>
Datum: woensdag, augustus 25, 2004 4:25 pm
Onderwerp: RE: [lids-user] Can still read files when I do -j DENY

> Hi Ben
> 
> A similar issue can happen when you try to protect a file when its
> parent is not protected. For example, if you want to restrict 
> access to
> /myDaemon/the_binary as regards killing it, then the parent directory
> {in this case /myDaemon} needs to be protected as well.
> 
> Best Regards,
> Karan Saberwal
> 
> 
> -----Original Message-----
> From: lids-user-admin@lists.sourceforge.net
> [lids-user-admin@lists.sourceforge.net] On Behalf Of
> dayz@planet.nl
> Sent: Tuesday, August 24, 2004 10:51 PM
> To: lids-user@lists.sourceforge.net
> Subject: [lids-user] Can still read files when I do -j DENY
> 
> Hi everyone,
> 
> When i setup lids to DENY access to a file or directory I can 
> still read
> them. For example I tried to deny access to /etc/lilo.conf and /root:
> 
> lidsconf -A -o /etc/lilo.conf -j DENY
> 
> and 
> 
> lidsconf -A -o /root -j DENY
> 
> Writing to them is impossible then though.
> 
> Also I have edited all .cap files in the lids directory but none 
> of them
> matches lidsadm -V.
> 
> For example I have put a "-" in front of every 
> "CAP_DAC_READ_SEARCH" in
> the .cap files, but lidsadm -V keeps showing "CAP_DAC_READ_SEARCH 1"
> 
> lidsadm -V does seem to reflect the actual settings.
> 
> Can someone tell me how I can set this up so that access is denied?
> 
> I'm on Gentoo and am using lids-2.2.0rc3-2.6.7
> 
> Thanks
> 
> Ben
> 
> 
> 
> 
> 
> -------------------------------------------------------
> SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
> 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
> Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
> http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
> _______________________________________________
> lids-user mailing list
> lids-user@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/lids-user
> 
> 
> 
> 
> -------------------------------------------------------
> SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
> 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
> Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
> http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
> _______________________________________________
> lids-user mailing list
> lids-user@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/lids-user
> 



-------------------------------------------------------
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
_______________________________________________
lids-user mailing list
lids-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lids-user
[prev in list] [next in list] [prev in thread] [next in thread]