Privilege level for $ extended attributes? Re: Extended attribute interfaces

[Marius Bendiksen]

> privilege.  Possibilities that come to mind include a new or existing
> capability, but I was wondering how you had addressed this, and if you had
> any thoughts on an appropriate solution here?

Wouldn't it make more sense to have the extra bits in the ACL entries,
such as I suggested, and rather fall back to mandatory access control,
which could include the suggested behaviour, when no such entries were
present?

Marius

To Unsubscribe: send mail to majordomo at cyrus.watson.org
with "unsubscribe posix1e" in the body of the message