Re: Confusing help texts?

From: Greg KH (greg@kroah.com)
Date: Wed Dec 11 2002 - 18:45:58 EST

Next message: Henning P. Schmiedehausen: "Re: Is this going to be true ?"
Previous message: Garst R. Reese: "romfs"
In reply to: Pavel Machek: "Confusing help texts?"
Next in thread: Wil Reichert: "Re: "bio too big" error"
Reply: Wil Reichert: "Re: "bio too big" error"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Dec 11, 2002 at 11:44:22PM +0100, Pavel Machek wrote:
> Hi!
>
> + * Prevents any programs running with egid == 0 if a specific USB device
> + * is not present in the system. Yes, it can be gotten around, but is a
> + * nice starting point for people to play with, and learn the LSM
> + * interface.
>
> How can you "prevent any program"?

Heh, it's confusing, sorry.

>
> + It enables control over processes being created by root users
> + if a specific USB device is not present in the system.
>
> Enables control over processes?

Basically, if the USB device is not in the system, then you can not
start any new program as egid = 0. That's all.

Patches gladly accepted to clean this stuff up :)

thanks,

greg k-h
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Henning P. Schmiedehausen: "Re: Is this going to be true ?"
Previous message: Garst R. Reese: "romfs"
In reply to: Pavel Machek: "Confusing help texts?"
Next in thread: Wil Reichert: "Re: "bio too big" error"
Reply: Wil Reichert: "Re: "bio too big" error"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Dec 15 2002 - 22:00:23 EST