Re: Direction of the mailing list/effort

• Previous message: David Wagner: "Re: Direction of the mailing list/effort"
• In reply to: Crispin Cowan: "Re: Direction of the mailing list/effort"
• Next in thread: Greg KH: "Re: Direction of the mailing list/effort"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Crispin Cowan  wrote:
>This is a serious issue.  Should there be an LSM-wide standard for
>security IDs?  Or should LSM security IDs just be opaque blobs, and
>semantics are imposed by the LSM module that is installed?

For reasons alluded to in my earlier email, I'd like them to be
opaque blobs.  Janus's per-process state is emphatically not
well-characterized as a Security ID.  (For instance: It changes
over time.)

>That plus the above stated fact that RSBAC and SELinux uses different
>notions of IDs suggests that we should go with opaque blobs.

Me too.

_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: jmjonesat_private: "Re: A Comment from User Space"
• Previous message: David Wagner: "Re: Direction of the mailing list/effort"
• In reply to: Crispin Cowan: "Re: Direction of the mailing list/effort"
• Next in thread: Greg KH: "Re: Direction of the mailing list/effort"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 20 2001 - 19:10:26 PDT