Re: LIDS and Capabilities

>What did "lidsconf -L", "lidsadm -V" show?
>
Thank you once again for replying, Mr. Purna.

(Btw, you were right about the " " space after the domain)

the output from the commands above is big so i include only the entries
i think relevant in order not to overload the list.

Nevertheless, if that doesn't help and you want the full output tell me to
send it to you.

lidsconf -L
ACL FILE: /etc/lids/lids.conf
LIST
                Subject   ACCESS  inherit time        Object
----------------------------------------------------------------------------
               Any file  READONLY:  0  0000-0000                  /bin 0

lidsadm -V
VIEW
                    CAP_SETGID 0
                    CAP_SETUID 0

It must be something with the protected/unprotected that i asked in my 
previous
post. I tried something to test what i thought.

Now I have /bin/bash with 4777 permissions and /home/bash with 4777 
permissions.w when i run /bin/bash -p i get the violations and root shell.
When i run /home/bash -p i get the violations and user shell.

So, as i told in the other post, does lids allow protected programs even
though you do not have rules for them or am i confused ?

Thank you.

_________________________________________________________________
Add photos to your e-mail with MSN 8. Get 2 months FREE*. 
http://join.msn.com/?page=features/featuredemail

-------------------------------------------------------
This SF.net email is sponsored by: IBM Linux Tutorials.
Become an expert in LINUX or just sharpen your skills.  Sign up for IBM's
Free Linux Tutorials.  Learn everything from the bash shell to sys admin.
Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click