Re: [BK PATCH] LSM changes for 2.5.59

• Previous message: 'Christoph Hellwig': "Re: [BK PATCH] LSM changes for 2.5.59"
• In reply to: LA Walsh: "RE: [BK PATCH] LSM changes for 2.5.59"
• Next in thread: 'Christoph Hellwig': "Re: [BK PATCH] LSM changes for 2.5.59"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

We've already discussed this.  Rather than repeating the reasons, why
don't I refer you to the list archives for the reasons why restrictive
hooks were chosen?  They largely boil down to an assurance argument.

On a personal note, I find it ironic to see that, here I am defending
LSM's use of restrictive hooks.  I was one of the original proponents of
authoritative hooks.  Eventually, others convinced me that restrictive
hooks are a better match for LSM's goals and the list reached rough
consensus on that point, but my original proposal was indeed for
authoritative hooks.
_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Crispin Cowan: "Re: [BK PATCH] LSM changes for 2.5.59"
• Previous message: 'Christoph Hellwig': "Re: [BK PATCH] LSM changes for 2.5.59"
• In reply to: LA Walsh: "RE: [BK PATCH] LSM changes for 2.5.59"
• Next in thread: 'Christoph Hellwig': "Re: [BK PATCH] LSM changes for 2.5.59"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Feb 12 2003 - 14:20:55 PST