[Xfce-bugs] [Bug 15421] Directory with partially accessible files
bugzilla-daemon at xfce.org
bugzilla-daemon at xfce.org
Mon May 27 01:13:21 CEST 2019
https://bugzilla.xfce.org/show_bug.cgi?id=15421
--- Comment #4 from twoertwein at gmail.com ---
the error message is created by 'thunar_standard_view_error' (in
thunar/thunar-standard-view.c).
I'm not familiar enough with gtk and C to narrow it further down :(
The following should help to reproduce the issue - one example with tomoyo and
one with caitsith. In both cases Thunar should report the error when entering a
dictionary containing a file named 'foobar'.
With caitsith (http://caitsith.osdn.jp/):
5 acl getattr path="/\(\*\)/foobar" task.exe="/usr/bin/thunar"
audit 1
10 deny
With tomoyo:
domain_policy.conf:
<kernel> /usr/bin/thunar
use_profile 3
file create @THUNAR 0600
file getattr @THUNAR
file getattr socket:[family=16:type=3:protocol=15]
file getattr socket:[family=1:type=1:protocol=0]
file read @THUNAR
file truncate @THUNAR
file unlink @THUNAR
file write @THUNAR
misc env \*
network unix stream connect /\{\*\}/\*
network unix stream connect \000/tmp/\*/\*
network unix stream connect \000/tmp/\*
exception_policy.conf
initialize_domain /usr/bin/thunar from any
path_group THUNAR /
path_group THUNAR /\*
path_group THUNAR /\*/
path_group THUNAR /\{\*\}/\*\-foobar
path_group THUNAR /\{\*\}/\*/
path_group THUNAR proc:/
path_group THUNAR proc:/self
path_group THUNAR proc:/self/
path_group THUNAR proc:/self/\*
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the Xfce-bugs
mailing list