Home > mailing lists

Re: [RFC] sepgsql: prohibit users to relabel objects - Mailing list pgsql-hackers

From	Robert Haas
Subject	Re: [RFC] sepgsql: prohibit users to relabel objects
Date	April 29, 2015 21:01:45
Msg-id	CA+TgmoYmpKy798qF=hVt_ppB=Q-TepOCcR93VPyif2NtkAm2Tw@mail.gmail.com Whole thread Raw
In response to	[RFC] sepgsql: prohibit users to relabel objects (Denis Kirjanov <kda@linux-powerpc.org>)
Responses	Re: [RFC] sepgsql: prohibit users to relabel objects
List	pgsql-hackers

Tree view

On Wed, Apr 29, 2015 at 9:15 AM, Denis Kirjanov <kda@linux-powerpc.org> wrote:
> Enforce access control on security labels defined by admin
> and prohibit users to relabel the objects

Really?  Why?  I would think it's the policy's job to restrict relabel
operations.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

pgsql-hackers by date:

From: Denis Kirjanov
Date: 29 April 2015, 20:44:47
Subject: [RFC] sepgsql: prohibit users to relabel objects

From: Adam Brightwell
Date: 29 April 2015, 21:12:34
Subject: Re: [RFC] sepgsql: prohibit users to relabel objects

Re: [RFC] sepgsql: prohibit users to relabel objects - Mailing list pgsql-hackers

Previous

Next