Sensitivity Labels
As shown in the following figure, the path /export/home has a sensitivity label of ADMIN_LOW and the heartyann directory and somefile have a sensitivity label of Confidential.
Figure 1-1 Accessing a File System Object
-
The process does not own somefile or the directories in somefile's path.
-
Discretionary access permissions on /export allow the owner and group read, write, and search access; and allow others read and search access.
-
Discretionary access permission on /export/home allow the owner read, write, and search access; and allow the group and others read and search access.
-
Discretionary access permissions on /export/home/heartyann allow the owner and group read, write, and search access; and allow others read and search access.
-
Discretionary access permissions on somefile allow the owner read and write access; and the group and others read access only.
-
Discretionary access permissions on filetoexec allow the owner read, write, and execute access; and allow the group and others read and execute access.
If the process fails a mandatory or discretionary access check, the program needs to assert an error or the proper privilege if the program is intended to run with privilege.
See Chapter 4, Labels in "Label Guidelines" for information on handling sensitivity labels when privileges are used to bypass access controls.
- © 2010, Oracle Corporation and/or its affiliates