Re: [RFC] LSM changes for 2.5.38

• Previous message: Antony Stone: "Re: [RFC] LSM changes for 2.5.38"
• In reply to: Greg KH: "Re: [RFC] LSM changes for 2.5.38"
• Next in thread: Greg KH: "Re: [RFC] LSM changes for 2.5.38"
• Next in thread: Stephen Smalley: "Re: [RFC] LSM changes for 2.5.38"
• Reply: Greg KH: "Re: [RFC] LSM changes for 2.5.38"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Sep 26, 2002 at 03:51:48PM -0700, Greg KH wrote:
> > leave the capable in and say it's enough or you add your random hook
> > and remove that one.  Just adding more and more hooks without thinking
> > gets us exactly nowhere except to an unmaintainable codebase.
> 
> capable is needed to be checked, as we are not modifying the existing
> permission logic.

I odn't think it makes sense to have two security checks that both
end up in the LSM code after each other..

_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Greg KH: "Re: [RFC] No more module_* hooks"
• Previous message: Antony Stone: "Re: [RFC] LSM changes for 2.5.38"
• In reply to: Greg KH: "Re: [RFC] LSM changes for 2.5.38"
• Next in thread: Greg KH: "Re: [RFC] LSM changes for 2.5.38"
• Next in thread: Stephen Smalley: "Re: [RFC] LSM changes for 2.5.38"
• Reply: Greg KH: "Re: [RFC] LSM changes for 2.5.38"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Sep 27 2002 - 09:50:04 PDT