grsecurity forums

Skip to content

Newbie acl question

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.
Topic locked

Newbie acl question

Postby Peter » Sun Feb 08, 2004 5:08 pm

Hi folks!

I read in the manual but did not find the answer for my question.

If i have an acl like:
Code: Select all
subject /  {
        /                               h
        /dev                            h
        /dev/initctl
        /var                            h
        /var/dns/namedb
        /var/qmail/supervise/qmail-pop3d
        /var/qmail/supervise/qmail-send
        /var/qmail/supervise/qmail-smtpd
        /bin
        /opt
        /sbin
        /sbin/gradm                     x
        /service
        /usr
        /usr/local
        /usr/local/mysql
        -CAP_ALL
        bind    disabled
        connect disabled
}


I know the x and h letters.
But what happend if there is now letter in the line like:
Code: Select all
        /usr
        /usr/local
        /usr/local/mysql


What does it means?
Does it means x or r?

Viele Gruesse,
Peter.
Peter
 
Posts: 22
Joined: Sat Sep 20, 2003 5:37 am
Top

Postby goodbyte » Sun Feb 08, 2004 6:02 pm

You will then be able to list the file, but neither read, write nor execute it.
goodbyte
 
Posts: 32
Joined: Sun May 12, 2002 4:33 am
Top

Postby Peter » Mon Feb 09, 2004 12:52 am

Only list?
Okay, thank you.
I could not find it anywhere...
Peter
 
Posts: 22
Joined: Sat Sep 20, 2003 5:37 am
Top
Topic locked

Return to grsecurity support

Powered by phpBB® Forum Software © phpBB Group
cron