[prev in list] [next in list] [prev in thread] [next in thread]
List: seandroid-list
Subject: Re: unable to write to /data/mydir directory
From: harish kavali <kavaliharish () gmail ! com>
Date: 2014-10-27 14:14:01
Message-ID: CAHTJuXU26OcOyjpib==TZXp-hA-EQ7Xdbd8RidkwcnYKwriPSg () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Dear stephen,
but on rooted device /data/mydir can be accessed, modified through
shell.
can we over come access to /data/mydir through shell (rooted devices).
Regards
Harish k
On Tue, Oct 21, 2014 at 6:14 PM, Stephen Smalley <sds@tycho.nsa.gov> wrote:
> On 10/21/2014 02:51 AM, harish kavali wrote:
> > Dear Stephen,
> >
> > Thanks your suggestion after adding mlstrustedobject problem
> > solved.can you please explain the difference between levelFrom=User &&
> > levelFrom=App
>
> per-user isolation versus per-app isolation. levelFrom=user means
> derive the level from the user ID portion of the Linux UID, so you get a
> unique category set for each user and separation between users (for
> Android multi-user). levelFrom=app means derive the level from the app
> ID portion of the Linux UID, so you get a unique category set for each
> app and separation between apps, levelFrom=all means derive the level
> from both the user ID and the app ID, so you get a unique category set
> per (user ID, app ID) pair and separation between both users and apps.
>
>
>
>
[Attachment #5 (text/html)]
<div dir="ltr">Dear stephen,<br><br> but on rooted device /data/mydir can \
be accessed, modified through shell.<br>can we over come access to /data/mydir \
through shell (rooted devices).<br><br>Regards<br>Harish k</div><div \
class="gmail_extra"><br><div class="gmail_quote">On Tue, Oct 21, 2014 at 6:14 PM, \
Stephen Smalley <span dir="ltr"><<a href="mailto:sds@tycho.nsa.gov" \
target="_blank">sds@tycho.nsa.gov</a>></span> wrote:<br><blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex"><span class="">On 10/21/2014 02:51 AM, harish kavali \
wrote:<br> > Dear Stephen,<br>
><br>
> Thanks your suggestion after adding mlstrustedobject problem<br>
> solved.can you please explain the difference between levelFrom=User \
&&<br> > levelFrom=App<br>
<br>
</span>per-user isolation versus per-app isolation. levelFrom=user means<br>
derive the level from the user ID portion of the Linux UID, so you get a<br>
unique category set for each user and separation between users (for<br>
Android multi-user). levelFrom=app means derive the level from the app<br>
ID portion of the Linux UID, so you get a unique category set for each<br>
app and separation between apps, levelFrom=all means derive the level<br>
from both the user ID and the app ID, so you get a unique category set<br>
per (user ID, app ID) pair and separation between both users and apps.<br>
<br>
<br>
<br>
</blockquote></div><br></div>
_______________________________________________
Seandroid-list mailing list
Seandroid-list@tycho.nsa.gov
To unsubscribe, send email to Seandroid-list-leave@tycho.nsa.gov.
To get help, send an email containing "help" to Seandroid-list-request@tycho.nsa.gov.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic