| Title: | dec_mls_plus |
| Moderator: | SMURF::BAT |
| Created: | Mon Nov 29 1993 |
| Last Modified: | Fri Jun 06 1997 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 534 |
| Total number of notes: | 2544 |
Date: Thu, 15 May 1997 11:02:57 -0400
Message-Id: <9705151502.AA30406@kamlia.zk3.dec.com>
Mime-Version: 1.0
From: tammy@tsc.cxo.dec.D5NET.dec.com (Tammy Sandefur)
To: thomson@kamlia.enet.dec.com
Subject: question
Trident question:
If they move a multilevel directory w/in the same partition the files
all remain classified.
If they move the same multilevel to another partition the files change to
unclassified.
Is this the nature of the beast?
Tammy Sandefur
Digital Equipment
Ultrix & Osf Network Support
tammy@tsc.csc.cxo.dec.com
| T.R | Title | User | Personal Name | Date | Lines |
|---|---|---|---|---|---|
| 507.1 | yep | SMURF::BAT | Segui la tua beatitudine | Thu May 15 1997 18:03 | 17 |
And the Beast is UNIX. :-)
I believe that a mv command acts as a rename when it is on the same
partition, in other words, all it is changing is the directory entry*.
The mv command acts as a delete and copy when it is used across
partitions. Vanilla UNIX behaves this way.
But the labeling policy is MLS+.
The labels get the labels of the process. If you want to mv a file and
not have the system change its labels, then set your process SL to the
label of the file before mv'ing it.
*And the system should have changed the NAME SL if your process SL was
different and you did a mv in the same directory. It will change both
the NAME SL and the file SL if you mv (copy) the file to another
directory.
| |||||
| 507.2 | Another method | NNTPD::"may@kamlia.zk3.dec.com" | may | Thu May 22 1997 14:22 | 8 |
You could use mltape with the pass option to restore from one directory to another and then delete the unwanted directory. The benefit here is that you maintain all security attributes, SL's, IL's, ACL's, DAC on the files and multilevel directories. mltape -pv -F "/original_directory -print" /target_directory [Posted by WWW Notes gateway] | |||||
| 507.3 | too lazy to check | SMURF::BAT | Segui la tua beatitudine | Thu May 22 1997 15:36 | 2 |
Can't you just mltape a single file? In that case, alias the copy
command to mltape with appropriate syntax packaging.
| |||||