Re: Which hooks are permissive hooks?

From: Sergey Zhitomirsky (szh@dgap-gw.mipt.ru)
Date: Wed Mar 05 2003 - 05:54:24 PST

  • Next message: Chris Wright: "Re: Which hooks are permissive hooks?"

    On Wed, 5 Mar 2003, [gb2312]   wrote:
    > 
    > The LSM documentation mentioned that in order to support POSIX.1e
    > capabilities LSM provides a minimal support to permissive hook functions.
    > 
    > 1. What does "minimal" mean here? Why minimal?
    > 2. In the LSM kernel patch for 2.4.19, which hooks are permissive?
    > 
    > Thank you.
    > 
    > xech. Beijing.
    
    2. Permissive decisions can only be implemented in the capable() function.
       All other hook calls to LSM module are restrictive.
    
    1. To reduce invasion into mainstream kernal,
       make simpler design, and consequentlyB
       to make it harder to make Bugs.
    
    
     Sergey.
      
    
    _______________________________________________
    linux-security-module mailing list
    linux-security-moduleat_private
    http://mail.wirex.com/mailman/listinfo/linux-security-module
    



    This archive was generated by hypermail 2b30 : Wed Mar 05 2003 - 05:59:45 PST