On Sat, Apr 14, 2001 at 03:57:45AM -0400, Karim Yaghmour wrote: > > Hello Everyone, > > I'd like to point out that there has been a hooking capability > available for Linux for quite a while within the patch provided > with the Linux Trace Toolkit (http://www.opersys.com/LTT). > Amongst other things, there is a standard interface to hooking > to almost anything major pertaining to security within the > kernel (system calls, reads, writes, opens, etc.). LTT is nice, but doesn't really work for a security module to use, as there is no way to influence what happens after the hook is called. A security module needs to be able to stop the access to a file by a process, stop the execution of a syscall, etc. Not just provide system accounting (which is what LTT does.) Although everyplace LTT hooks, is probably a good place for us to also hook :) greg k-h -- greg@(kroah|wirex).com http://immunix.org/~greg _______________________________________________ linux-security-module mailing list linux-security-moduleat_private http://mail.wirex.com/mailman/listinfo/linux-security-module
This archive was generated by hypermail 2b30 : Sat Apr 14 2001 - 17:35:40 PDT