strangeness with nested subject in RBAC

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

strangeness with nested subject in RBAC

Postby bearclaw » Mon Nov 29, 2004 7:44 pm

Hi
Trying this example:

subject /bin/cat
/bin/tcsh x

subject /bin/cat:/bin/tcsh
/bin/tcsh xi

gives the following error:

Duplicate object found for "/bin/tcsh" in role root, subject /bin/tcsh, on line 383 of /etc/grsec/policy.
"/bin/tcsh" references the same object as the following object(s):
/bin/tcsh
specified on an earlier line.The RBAC system will not load until this error is fixed.

Is this a bug or the expected behavior?
bearclaw
 
Posts: 7
Joined: Mon Nov 29, 2004 6:41 pm

Postby spender » Tue Nov 30, 2004 9:51 am

Remove the /bin/tcsh xi line in subject /bin/cat:/bin/tcsh. gradm automatically adds that object for you.

-Brad
spender
 
Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm


Return to grsecurity support

cron