[apparmor] prompt qualifier?
Steve Beattie
steve at nxnw.org
Fri Nov 9 21:43:50 UTC 2012
On Fri, Nov 09, 2012 at 11:25:15AM -0800, John Johansen wrote:
> > Supposing that this was in place, would the file picker then not even
> > offer to open files outside of the @{HOME}/Documents/** tree? I'm
> > trying to see what this enables in the file picker by adding this
> > keyword.
>
> Right, I think each picker would be free to interpret it as was appropriate
> but the general idea is that it wouldn't even present files that where
> denied (so only present allow and prompt set).
Hrm. What additional value does prompt add over only displaying that
which is allowed by existing apparmor policy? Unless you're concerned
about the difficulty of computing the latter... but don't you need to
compute that anyway, to ensure that the prompt rules aren't overruled
by deny rules?
> It would be a pretty poor user experience to present a list of files just
> to have the picker deny access to it.
Well, it wouldn't be much of a regression over current file selector
dialog's which quite happily present you with files and directories
that you aren't allowed write access to via DAC. Realistically,
your proposed behavior change for file selector dialogs would be
an improvement.
--
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20121109/03c44aad/attachment.pgp>
More information about the AppArmor
mailing list