Casey Schaufler wrote: >Stephen Smalley wrote: > >>we need >>a real security module that is open source that demonstrates the need for >>these additional changes. I don't think that the kernel developers will >>be swayed by hand waving about unreleased or closed source security >>modules. >> >Posix ACLs. If I bring you Posix ACLs on a silver platter will >you give me authoritative hooks? Yes or no? > That strikes me as a problematic example, because it will end up either having dependencies on some particular file system that supports extended attributes, or being basically useless without the extended attributes. Casey: how do you propose to deal with the extended attributes problem? Rest of the list: do folks think that either a FS-specific module or a neutered :-) module would be a convincing argument? Crispin -- Crispin Cowan, Ph.D. Chief Scientist, WireX Communications, Inc. http://wirex.com Security Hardened Linux Distribution: http://immunix.org Available for purchase: http://wirex.com/Products/Immunix/purchase.html _______________________________________________ linux-security-module mailing list linux-security-moduleat_private http://mail.wirex.com/mailman/listinfo/linux-security-module
This archive was generated by hypermail 2b30 : Mon Oct 29 2001 - 15:23:43 PST