Is there a compelling reason to protect the getattr permission with mls constraints?
The RHEL5 policy treats the gettattr the same way read is treated with respect to mls constraints. What information that may be classified is being protected? The only thing that I can think of is the file name, and you need the file name to get the attributes of the file anyway (or maybe there is a way to get the attributes using only the inode?) Thanks -- redhat-lspp mailing list [email protected] https://www.redhat.com/mailman/listinfo/redhat-lspp
