Re: Which hooks are permissive hooks?

From: Sergey Zhitomirsky (
Date: Wed Mar 05 2003 - 05:54:24 PST

  • Next message: Chris Wright: "Re: Which hooks are permissive hooks?"

    On Wed, 5 Mar 2003, [gb2312]   wrote:
    > The LSM documentation mentioned that in order to support POSIX.1e
    > capabilities LSM provides a minimal support to permissive hook functions.
    > 1. What does "minimal" mean here? Why minimal?
    > 2. In the LSM kernel patch for 2.4.19, which hooks are permissive?
    > Thank you.
    > xech. Beijing.
    2. Permissive decisions can only be implemented in the capable() function.
       All other hook calls to LSM module are restrictive.
    1. To reduce invasion into mainstream kernal,
       make simpler design, and consequentlyB
       to make it harder to make Bugs.
    linux-security-module mailing list

    This archive was generated by hypermail 2b30 : Wed Mar 05 2003 - 05:59:45 PST