Greg KH wrote: >On Tue, Dec 17, 2002 at 09:25:37AM -0500, David Wheeler wrote: > > >>Greg - >> >>A few tweaks are needed so the module can stack properly. >>Since owlsm will be a "demo" module, it really should stack correctly. >> >> >Assuming that you think stacking is a good thing :) >Personally, I don't. > Stacking (say) LIDS with SELinux makes no sense. Stacking OWLSM (bunch of pathology prevention policies) with an access control engine like SELinux makes sense. > It's a nice research project, but don't see it >viable in real life without a lot more testing. > *Everything* could stand more real world testing :-) But "cook's privilege" does apply, and we should not expect Greg to do work on a project he does not believe in. David: why don't you dive into the OWLSM module and make it stackable? You know the Stacker the best, so you could make it the Poster Child for how to make modules stackable. Crispin -- Crispin Cowan, Ph.D. Chief Scientist, WireX http://wirex.com/~crispin/ Security Hardened Linux Distribution: http://immunix.org Available for purchase: http://wirex.com/Products/Immunix/purchase.html Just say ".Nyet"
This archive was generated by hypermail 2b30 : Wed Dec 18 2002 - 21:49:15 PST