Re: [Linux-ima-user] measure the container files

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

On Fri, 2016-08-12 at 18:50 +0800, Yan Kun wrote:
> Hi,
> 
> When I use docker to create a container,and create a new file in the
> container,the IMA can measure the new file.But when I modify the new
> file,IMA can not remeasure the file.In host system, I have boot with
> "rootflags=i_version".And IMA can remeasure the file of the OS .Why this

Changing the file does not cause the file to be re-measured.  On next
access the new measurement will be added to the measurement list,
assuming it is mounted with "iversion" and is in policy.   Please check
fstab to make sure the file system is mounted with "iversion".

Mimi