Re: Stacking Openwall and SELinux?

• Previous message: Stephen Smalley: "Re: Stacking Openwall and SELinux?"
• In reply to: David Wheeler: "Re: Stacking Openwall and SELinux?"
• Next in thread: Russell Coker: "Re: Stacking Openwall and SELinux?"
• Next in thread: Russell Coker: "Re: Stacking Openwall and SELinux?"
• Reply: Russell Coker: "Re: Stacking Openwall and SELinux?"
• Reply: Crispin Cowan: "Re: Stacking Openwall and SELinux?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Apr 01, 2002 at 04:01:38PM -0500, David Wheeler wrote:
> I'm thinking about things like the Non-executable stack,
> temp directory limitations, etc.

I seem to recall that to implement non-exec stack in LSM would require
page-level access granularity, which was rejected as probably too
expensive (slow) for general use. However, I seem to recall that a chap
named Antony was working on providing statistics on just how much slower
the system would run with page-level granularity. I _think_ he provided
full LMBench numbers, but I'm not great at reading those numbers. (If he
wanted to post a 'make summary' output from lmbench, I might stand a
better chance of understanding the impact. :)

In any event, this is all from memory, so don't read too much into it. :)

-- 
http://www.wirex.com/

• application/pgp-signature attachment: stored

• Next message: Russell Coker: "Re: Stacking Openwall and SELinux?"
• Previous message: Stephen Smalley: "Re: Stacking Openwall and SELinux?"
• In reply to: David Wheeler: "Re: Stacking Openwall and SELinux?"
• Next in thread: Russell Coker: "Re: Stacking Openwall and SELinux?"
• Next in thread: Russell Coker: "Re: Stacking Openwall and SELinux?"
• Reply: Russell Coker: "Re: Stacking Openwall and SELinux?"
• Reply: Crispin Cowan: "Re: Stacking Openwall and SELinux?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Apr 01 2002 - 13:50:44 PST