Re: [RFC] [PATCH] Replace security fields with hashtable

From: Chris Wright (chrisw@private)
Date: Wed Oct 27 2004 - 11:59:34 PDT

Previous message: James Morris: "Re: [RFC] [PATCH] Replace security fields with hashtable"
In reply to: James Morris: "Re: [RFC] [PATCH] Replace security fields with hashtable"
Next in thread: Michael Dean: "Re: [RFC] [PATCH] Replace security fields with hashtable"
Next in thread: Chris Wright: "Re: [RFC] [PATCH] Replace security fields with hashtable"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

* James Morris (jmorris@private) wrote:
> On Wed, 27 Oct 2004, Stephen Smalley wrote:
> > And for production, I agree that you ultimately want an integrated
> > security solution.  I see stacking as primarily a vehicle for easy
> > experimentation, not for the final system.
> 
> With this point of view, the question then is whether we can justify
> putting code into the Linux kernel purely to allow people to experiment
> with security model composition.  I don't think such a facility belongs in 
> the upstream kernel.

If it's cheap enough in common case, I think it's OK.  That's the case
that needs to be made, along with some usages.

thanks,
-chris
-- 
Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net

Previous message: James Morris: "Re: [RFC] [PATCH] Replace security fields with hashtable"
In reply to: James Morris: "Re: [RFC] [PATCH] Replace security fields with hashtable"
Next in thread: Michael Dean: "Re: [RFC] [PATCH] Replace security fields with hashtable"
Next in thread: Chris Wright: "Re: [RFC] [PATCH] Replace security fields with hashtable"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Wed Oct 27 2004 - 12:00:15 PDT