Re: [RFC] 2.4.11-pre4 patch

• Previous message: Seth Arnold: "Re: [RFC] 2.4.11-pre4 patch"
• In reply to: Seth Arnold: "Re: [RFC] 2.4.11-pre4 patch"
• Next in thread: Crispin Cowan: "Re: [RFC] 2.4.11-pre4 patch"
• Next in thread: jmjonesat_private: "Re: [RFC] 2.4.11-pre4 patch"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 5 Oct 2001, Seth Arnold wrote:

> On Fri, Oct 05, 2001 at 06:10:05PM -0700, Crispin Cowan wrote:
> > To refresh everyone's memory, here is the notes from the August LSM BoF
> > http://mail.wirex.com/pipermail/linux-security-module/2001-August/001663.html 
> 
> One further issue that was brought up in the BOF (at least, as reported
> by Crispin's notes :) was getting LSM back out, once the patch is
> accepted.
> 
> Linus says no conditional compilation. I think we can all agree on this,
> particularly with as invasive a patch as we have now.
> 
> Does anyone have ideas for the headers that will enable folks to compile
> out LSM if they want, while still being pretty? Are there other examples
> (devfs?) that we should model?
> 
> And, do we need to have this elvel of readiness before submitting our
> patch?
> 
> Cheers! ;)
> 

I have some interest in (potentially) removing LSM, but removing ANYTHING
that is "actual kernel" seems to suffer from the same pitfalls, and if LSM
is that, then it does.

That being said,  I'm not sure the effort of making LSM reversable is
necessary... the hooks don't seem to be a problem, they cost, but not so
very much, and a "grep -v" can pretty much remove them. The only issue is
the dummy module (and capability, i think).  It doesn't seem so heavy that 
leaving it in with the plug loaded is a make or break issue.

Just My Thoughts,
J. Melvin Jones

|>------------------------------------------------------
||  J. MELVIN JONES            jmjonesat_private 
|>------------------------------------------------------
||  Microcomputer Systems Consultant  
||  Software Developer
||  Web Site Design, Hosting, and Administration
||  Network and Systems Administration
|>------------------------------------------------------
||  http://www.jmjones.com/
|>------------------------------------------------------




_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Crispin Cowan: "Re: [RFC] 2.4.11-pre4 patch"
• Previous message: Seth Arnold: "Re: [RFC] 2.4.11-pre4 patch"
• In reply to: Seth Arnold: "Re: [RFC] 2.4.11-pre4 patch"
• Next in thread: Crispin Cowan: "Re: [RFC] 2.4.11-pre4 patch"
• Next in thread: jmjonesat_private: "Re: [RFC] 2.4.11-pre4 patch"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Oct 05 2001 - 19:05:30 PDT