subject:"Re\: \[RFC PATCH\] selinux\: Add denied trace with permssion filter"

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-09-17 Thread Steven Rostedt

[ Late reply due to long vacation followed by drowning in the email built up from said vacation! ] On Tue, 1 Sep 2020 19:18:46 +0200 peter enderborg wrote: > No. It can filter on strings. But it can not do any fuzzy matching. > They are equal not not equal. So if you have a parameter value >

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-09-01 Thread peter enderborg

On 9/1/20 5:31 PM, Paul Moore wrote: > On Mon, Aug 31, 2020 at 11:34 AM peter enderborg wrote: >> On 8/31/20 4:16 PM, Paul Moore wrote: >>> On Thu, Aug 27, 2020 at 10:04 AM peter enderborg wrote: > ... > Im happly fine with replacing the selinux_audited with selinux_denied. However it i

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-09-01 Thread Paul Moore

On Mon, Aug 31, 2020 at 11:34 AM peter enderborg wrote: > On 8/31/20 4:16 PM, Paul Moore wrote: > > On Thu, Aug 27, 2020 at 10:04 AM peter enderborg wrote: ... > >> Im happly fine with replacing the selinux_audited with selinux_denied. > >> However it is the case where there are more than one d

RE: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-31 Thread Robert Judy

selinux-ow...@vger.kernel.org On Behalf Of Paul Moore Sent: Monday, August 31, 2020 9:16 AM To: peter enderborg Cc: linux-kernel@vger.kernel.org; SElinux list ; Steven Rostedt ; Stephen Smalley Subject: Re: [RFC PATCH] selinux: Add denied trace with permssion filter On Thu, Aug 27, 2020 at 10:0

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-31 Thread peter enderborg

On 8/31/20 4:16 PM, Paul Moore wrote: > On Thu, Aug 27, 2020 at 10:04 AM peter enderborg > wrote: >> On 8/27/20 3:30 PM, Paul Moore wrote: >>> On Wed, Aug 26, 2020 at 11:06 AM peter enderborg >>> wrote: On 8/26/20 4:45 PM, Paul Moore wrote: > On Wed, Aug 26, 2020 at 10:34 AM peter enderb

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-31 Thread Paul Moore

; Steven Rostedt ; Stephen Smalley > > Subject: Re: [RFC PATCH] selinux: Add denied trace with permssion filter > > On Thu, Aug 27, 2020 at 10:04 AM peter enderborg > wrote: > > > > On 8/27/20 3:30 PM, Paul Moore wrote: > > > On Wed, Aug 26, 2020 at 11:06

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-31 Thread Paul Moore

On Thu, Aug 27, 2020 at 10:04 AM peter enderborg wrote: > > On 8/27/20 3:30 PM, Paul Moore wrote: > > On Wed, Aug 26, 2020 at 11:06 AM peter enderborg > > wrote: > >> On 8/26/20 4:45 PM, Paul Moore wrote: > >>> On Wed, Aug 26, 2020 at 10:34 AM peter enderborg > >>> wrote: > On 8/26/20 3:42

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-27 Thread peter enderborg

On 8/27/20 3:30 PM, Paul Moore wrote: > On Wed, Aug 26, 2020 at 11:06 AM peter enderborg > wrote: >> On 8/26/20 4:45 PM, Paul Moore wrote: >>> On Wed, Aug 26, 2020 at 10:34 AM peter enderborg >>> wrote: On 8/26/20 3:42 PM, Paul Moore wrote: > On Mon, Aug 24, 2020 at 9:23 AM Peter Enderbo

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-27 Thread Paul Moore

On Wed, Aug 26, 2020 at 11:06 AM peter enderborg wrote: > On 8/26/20 4:45 PM, Paul Moore wrote: > > On Wed, Aug 26, 2020 at 10:34 AM peter enderborg > > wrote: > >> On 8/26/20 3:42 PM, Paul Moore wrote: > >>> On Mon, Aug 24, 2020 at 9:23 AM Peter Enderborg > >>> wrote: > This adds tracing o

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-26 Thread peter enderborg

On 8/26/20 4:45 PM, Paul Moore wrote: > On Wed, Aug 26, 2020 at 10:34 AM peter enderborg > wrote: >> On 8/26/20 3:42 PM, Paul Moore wrote: >>> On Mon, Aug 24, 2020 at 9:23 AM Peter Enderborg >>> wrote: This adds tracing of all denies. They are grouped with trace_seq for each audit.

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-26 Thread Paul Moore

On Wed, Aug 26, 2020 at 10:34 AM peter enderborg wrote: > On 8/26/20 3:42 PM, Paul Moore wrote: > > On Mon, Aug 24, 2020 at 9:23 AM Peter Enderborg > > wrote: > >> This adds tracing of all denies. They are grouped with trace_seq for > >> each audit. > >> > >> A filter can be inserted with a write

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-26 Thread peter enderborg

On 8/26/20 3:42 PM, Paul Moore wrote: > On Mon, Aug 24, 2020 at 9:23 AM Peter Enderborg > wrote: >> This adds tracing of all denies. They are grouped with trace_seq for >> each audit. >> >> A filter can be inserted with a write to it's filter section. >> >> echo "permission==\"entrypoint\"" > even

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

2020-08-26 Thread Paul Moore

On Mon, Aug 24, 2020 at 9:23 AM Peter Enderborg wrote: > > This adds tracing of all denies. They are grouped with trace_seq for > each audit. > > A filter can be inserted with a write to it's filter section. > > echo "permission==\"entrypoint\"" > events/avc/selinux_denied/filter > > A output will

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

RE: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

Re: [RFC PATCH] selinux: Add denied trace with permssion filter

13 matches

Site Navigation

Mail list logo

Footer information