Re: A Comment from User Space

• Previous message: Greg KH: "Re: linux-security-module digest, Vol 1 #38 - 10 msgs"
• In reply to: Sandy Harris: "Re: A Comment from User Space"
• Next in thread: Seth Arnold: "Re: A Comment from User Space"
• Next in thread: David Wagner: "Re: A Comment from User Space"
• Reply: Seth Arnold: "Re: A Comment from User Space"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Apr 22, 2001 at 04:15:54PM -0400, Sandy Harris wrote:
> 
> Can we specify what we want to hook to in terms of data structures? We
> have structs for a process, file, socket. Is it enough to say a security
> module gets to:
> 
> 	add fields to those structs,
> 	add things to the i-node to initialise file structs
> 	intercept a list of procedure calls, some of whose args are
> 	  pointers to those structs
> 
> Or are there other structures (RPC?, shared memory?, IPSEC tunnels?, ...)
> that they should be able to manipulate?

That's what we've been asking for.  What do the current groups need.
LIDS and RSBAC gave a great list.  Any others?

thanks,

greg k-h

_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Greg KH: "Re: A Comment from User Space"
• Previous message: Greg KH: "Re: linux-security-module digest, Vol 1 #38 - 10 msgs"
• In reply to: Sandy Harris: "Re: A Comment from User Space"
• Next in thread: Seth Arnold: "Re: A Comment from User Space"
• Next in thread: David Wagner: "Re: A Comment from User Space"
• Reply: Seth Arnold: "Re: A Comment from User Space"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Apr 22 2001 - 16:31:43 PDT