Smack.txt - OpenGrok cross reference for /linux-4.1.27/Documentation/security/Smack.txt

Lines Matching refs:system
162 	the system defined rules to be specified. The format accepted
174 	the system defined rules to be specified. The format accepted
232 	is dangerous and can ruin the proper labeling of your system.
279 maintain this scheme and the detailed understanding of the whole system
288 according to the requirements of the system and its purpose rather than those
300 	Subject: A subject is an active entity on the computer system.
304 	Object: An object is a passive entity on the computer system.
317 	violate an aspect of the system security policy, as identified by
322 	Privilege: A task that is allowed to violate the system security
329 Smack is an extension to a Linux system. It enforces additional restrictions
353 Every task on a Smack system is assigned a label. The Smack label
354 of a process will usually be assigned by the system initialization
445 File system objects including files, directories, named pipes, symbolic links,
467 Process objects reflect tasks on the system and the Smack label used to access
469 attempts. Sending a signal via the kill() system call is a write operation
481 system startup. The contents are written to the special file
521 values used by the system handle all internal cases. Smack will compose CIPSO
523 intervention. Unlabeled packets that come into the system will be given the
526 Smack requires configuration in the case where packets from a system that is
528 Solaris system, but there are other, less widely deployed systems out there.
532 Smack system must match that of the remote system or packets will be
609 There are three sorts of applications that will run on a Smack system. How an
629 the enforcement of system policy. In most cases these are the programs that
635 Smack maintains labels on file system objects using extended attributes. The
636 Smack label of a file, directory, or other file system object can be obtained
642 process can set the Smack label of a file system object with setxattr(2).
676 	file system if it lacks the Smack extended attribute.
684 These mount options apply to all file system types.
705 configuration and system bringup easier. Configure the kernel with