Re: Updated auth patch for 2.4.12

• Previous message: Greg KH: "Re: Updated auth patch for 2.4.12"
• In reply to: Greg KH: "Re: Updated auth patch for 2.4.12"
• Next in thread: Greg KH: "Re: Updated auth patch for 2.4.12"
• Reply: Greg KH: "Re: Updated auth patch for 2.4.12"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Greg KH wrote:

>On Thu, Oct 11, 2001 at 11:46:07AM -0700, Crispin Cowan wrote:
>
>>This looks like Richard trying to make the hook authoritative. It was 
>>widely agreed at the August BOF that we would switch to authoritative 
>>hooks if SGI could overcome a few obstacles.
>>
>
>I thought the proposal was "authorative if not specifically for audit".
>
No.  It was "authoritative if not too painful." There are cases where 
truly authoritative is painful, because the in-kernel logic short 
circiuts waaay early.  So it's "kinda authoritative as long as it 
doesn't proliferate hooks".

Crispin

-- 
Crispin Cowan, Ph.D.
Chief Scientist, WireX Communications, Inc. http://wirex.com
Security Hardened Linux Distribution:       http://immunix.org
Available for purchase: http://wirex.com/Products/Immunix/purchase.html



_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Greg KH: "Re: Updated auth patch for 2.4.12"
• Previous message: Greg KH: "Re: Updated auth patch for 2.4.12"
• In reply to: Greg KH: "Re: Updated auth patch for 2.4.12"
• Next in thread: Greg KH: "Re: Updated auth patch for 2.4.12"
• Reply: Greg KH: "Re: Updated auth patch for 2.4.12"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Oct 11 2001 - 12:10:28 PDT