On 18/12/2010 07:09, Geoff Nordli wrote:
I am trying to configure a system where I have two different NFS shares
which point to the same directory. The idea is if you come in via one path,
you will have read-only access and can't delete any files, if you come in
the 2nd path, then you will have read/write access.
That sounds very similar to what you would do with Trusted Extensions.
The read/write label would be a higher classification than the read-only
one - since you can read down, can't see higher and need to be equal to
modify.
For more information on Trusted Extensions start with these resources:
Oracle Solaris 11 Express Trusted Extensions Collection
http://docs.sun.com/app/docs/coll/2580.1?l=en
OpenSolaris Security Community pages on TX:
http://hub.opensolaris.org/bin/view/Community+Group+security/tx
--
Darren J Moffat
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
