aboutsummaryrefslogtreecommitdiffstats
path: root/security/integrity/ima/ima_policy.c
diff options
context:
space:
mode:
authorEric Paris <eparis@redhat.com>2009-05-12 15:13:55 -0400
committerJames Morris <jmorris@namei.org>2009-05-15 09:55:41 +1000
commitf850a7c040d9faafb41bceb0a05d6bb7432c8c7a (patch)
treee4e1fa97be0bd3e749f993b99d18746c8a9737ba /security/integrity/ima/ima_policy.c
parentb103387037cea2ba0f04b44d408d54c53f678061 (diff)
downloadmrst-s0i3-test-f850a7c040d9faafb41bceb0a05d6bb7432c8c7a.tar.gz
mrst-s0i3-test-f850a7c040d9faafb41bceb0a05d6bb7432c8c7a.tar.xz
mrst-s0i3-test-f850a7c040d9faafb41bceb0a05d6bb7432c8c7a.zip
IMA: remove read permissions on the ima policy file
The IMA policy file does not implement read. Trying to just open/read/close the file will load a blank policy and you cannot then change the policy without a reboot. This removes the read permission from the file so one must at least be attempting to write... Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/integrity/ima/ima_policy.c')
0 files changed, 0 insertions, 0 deletions