grsecurity forums


http://forums.grsecurity.net/

Inheritance question

http://forums.grsecurity.net/viewtopic.php?f=5&t=1050

Page 1 of 1

Inheritance question

PostPosted: Wed Jan 12, 2005 7:12 am
by Kyoshiro
I see in the default policy that the admin role has full access to the system. The access control for / is rwcdxmil. The policy provided by gradm2 says sshd should be restarted in the admin role, thus denies access to sshd and its init script in the default role.

Given these two information, since there are inheritance in the role admin, I'd like to know if sshd will run in admin role or in default role when I restart it from the admin role. Maybe I need to logout to make sshd switch to default role ?

PostPosted: Wed Jan 12, 2005 8:38 pm
by spender
That's correct, anything run by the admin in the admin role gains the admin role until the admin does gradm -u or exits his shell.

-Brad

PostPosted: Thu Jan 13, 2005 4:03 am
by Kyoshiro
Okay that's great !
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/