Home > mailing lists

Re: [RFC] sepgsql: prohibit users to relabel objects - Mailing list pgsql-hackers

From	Denis Kirjanov
Subject	Re: [RFC] sepgsql: prohibit users to relabel objects
Date	April 30, 2015 11:14:00
Msg-id	857759077.307154.1430381630482.JavaMail.zimbra@itsirius.su Whole thread Raw
In response to	[RFC] sepgsql: prohibit users to relabel objects (Denis Kirjanov <kda@linux-powerpc.org>)
Responses	Re: [RFC] sepgsql: prohibit users to relabel objects
List	pgsql-hackers

Tree view

Oh, I wasn't aware of that. 
Any hints where to look at?

Thanks!

PS: sorry for top posting.

----- Original Message -----
From: "Robert Haas" <robertmhaas@gmail.com>
To: "Denis Kirjanov" <kda@linux-powerpc.org>
Cc: pgsql-hackers@postgresql.org, "Alexey Zhuchkov" <alexey@itsirius.su>, "Denis Kirjanov" <kda@itsirius.su>
Sent: Wednesday, April 29, 2015 9:01:36 PM
Subject: Re: [HACKERS] [RFC] sepgsql: prohibit users to relabel objects

On Wed, Apr 29, 2015 at 9:15 AM, Denis Kirjanov <kda@linux-powerpc.org> wrote:
> Enforce access control on security labels defined by admin
> and prohibit users to relabel the objects

Really?  Why?  I would think it's the policy's job to restrict relabel
operations.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

pgsql-hackers by date:

From: Etsuro Fujita
Date: 30 April 2015, 11:00:41
Subject: Re: Minor improvement to config.sgml

From: Etsuro Fujita
Date: 30 April 2015, 11:16:29
Subject: Re: Missing importing option of postgres_fdw

Re: [RFC] sepgsql: prohibit users to relabel objects - Mailing list pgsql-hackers

Previous

Next