Re: A Comment from User Space

From: Valdis.Kletnieksat_private
Date: Tue Apr 24 2001 - 07:19:58 PDT

  • Next message: Shane Kerr: "Querying LSM for Permission (was Re: A Comment from User Space)"

    On Tue, 24 Apr 2001 09:13:50 CDT, Jesse Pollard <pollardat_private>  said:
    > Both daemons would need some handshaking (NFSD requires BIODs on clients
    > to pass proper context - and the BIOD should not switch uid/gids either.
    > 
    > In some cases, some of the security context should be taken from an
    > IPSec layer that can be used to augment the context exchanged by the
    > daemons. 
    > 
    > In any case, the daemons really shouldn't be part of the kernel.
    
    Right - but if they're not part of the kernel, they need to be able to
    talk to the kernel...
    
    /Valdis
    
    
    

    _______________________________________________ linux-security-module mailing list linux-security-moduleat_private http://mail.wirex.com/mailman/listinfo/linux-security-module



    This archive was generated by hypermail 2b30 : Tue Apr 24 2001 - 07:23:24 PDT