Using File Operation Scope (KAUTH_SCOPE_FILEOP)
Using File Operation Scope (KAUTH_SCOPE_FILEOP)
- Subject: Using File Operation Scope (KAUTH_SCOPE_FILEOP)
- From: Oliver Donald <email@hidden>
- Date: Tue, 29 Nov 2005 10:29:32 -0000
|
Hi,
I'm writing an
application that aims to provide extra security for file operations. I need to
be able to deny access to files under certain conditions, but I can't work out a
good way of doing it.
My second plan would
be to use the
KAUTH_SCOPE_VNODE
scope, but this is too late, the process I am trying to deny
access would think it had opened the file with the rights it asked for, but then
have all of its file operations after that fail. Would that be
safe?
But my main question
is, why does the
KAUTH_SCOPE_FILEOP
scope not allow me to deny? Is there any chance of this being
implemented in the future?
Thanks,
Oli
DISCLAIMER: The information contained in this e-mail is confidential and may be privileged. It is intended for the addressee only. If you are not the intended recipient, please delete this e-mail immediately. The contents of this email must not be disclosed or copied without the sender's consent. We cannot accept any responsibility for viruses, so please scan all attachments. The statements and opinions expressed in this message are those of the author and do not necessarily reflect those of the company. The company does not take any responsibility for the views of the author.
|
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden