Change process domain upon reading a file
Lukas Vrabec
lvrabec at redhat.com
Thu Apr 9 14:14:12 UTC 2015
HI Mike,
As guys said above, it's not possible.
But why you need this? If you describe your issue, we could find some
solution :)
On 04/01/2015 05:51 PM, W. Michael Petullo wrote:
> Is it possible to cause a process to transition to a new domain but only
> if it reads a file with a certain label? I am interested in imposing
> this by modifying the SELinux policy only, that is, not requiring any
> action on the part of the process itself. You could think of this as a
> rough analog to HiStar and others' "tainting".
>
--
Thank you.
--
Lukas Vrabec
SELinux Solutions
Red Hat, Inc.
More information about the selinux
mailing list