Re: [PATCH] network device statistic hooks

From: James Morris (jmorris@private)
Date: Mon Aug 16 2004 - 11:55:40 PDT

Previous message: Serge Hallyn: "Re: [PATCH] security_task_lookup hook"
In reply to: Serge Hallyn: "[PATCH] network device statistic hooks"
Next in thread: Serge Hallyn: "Re: [PATCH] network device statistic hooks"
Reply: Serge Hallyn: "Re: [PATCH] network device statistic hooks"
Reply: Serge E. Hallyn: "Re: [PATCH] network device statistic hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Mon, 16 Aug 2004, Serge Hallyn wrote:

> Attached is a proposed patch to allow LSM's to hide the existance of
> network interfaces.  This appears to require more than one pair of
> hooks.  The netdev_* hooks are generic network device hooks.  The inet_*
> hooks are for internet devices.  The latter know about device aliases,
> such as eth0:0.

What security purpose does it serve to hide the existence of a network 
interface?

I don't think this patch has much chance of upstream acceptance.

Can BSD jail work without these hooks?

- James
-- 
James Morris
<jmorris@private>

Previous message: Serge Hallyn: "Re: [PATCH] security_task_lookup hook"
In reply to: Serge Hallyn: "[PATCH] network device statistic hooks"
Next in thread: Serge Hallyn: "Re: [PATCH] network device statistic hooks"
Reply: Serge Hallyn: "Re: [PATCH] network device statistic hooks"
Reply: Serge E. Hallyn: "Re: [PATCH] network device statistic hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Aug 16 2004 - 11:56:35 PDT