Hello guys !!!
Last time I started to study SELinux and its mls policy. Probably someone of you deals with this. There is an apache server and a remote host. On the both systems (fedora 15) selinux mls policy is installed. Security context is transmitted by netlabel tool. Apache server contains a couple of html pages with different security contexts(i.e. security levels). Scenario: On the remote host client runs web browser with a certain sec. level and according to this level he is able to browse only pages on the server with security level <= his web browser's level(i.e. his clearance). In other words, no read up rule by Bell Lapudula model.
I want to implement such a system, but I have no enough information for this. Google provides with a couple of articles related to it as this for example http://code.google.com/p/sepgsql/wik...e_SELinux_plus
, but most of them are relatevely old (2009 year of posting) and is not enough clear how to configure it.
Thank you for any help.