Re: [BK PATCH] LSM changes for 2.5.59

• Next message: Ross Biro: "Re: 2.4.21-pre4: PDC ide driver problems with shared interrupts"
• Previous message: Christoph Hellwig: "Re: [BK PATCH] LSM changes for 2.5.59"
• Maybe in reply to: Greg KH: "[BK PATCH] LSM changes for 2.5.59"
• Next in thread: Stephen D. Smalley: "Re: [BK PATCH] LSM changes for 2.5.59"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Mark Hahn wrote:
> can all this LSM nonsese be CONFIG'ed out of the kernel as promised?

Yes. CONFIG_SECURITY=n makes it all go away. But if your mind isn't
completely closed on the topic, you might want to read some of the
following published papers before concluding that it is nonsense:

1) The Inevitability of Failure: The Flawed Assumption of Security in
Modern Computing Environments, available online from
http://www.nsa.gov/selinux/inevit-abs.html.

2) The published papers about SELinux from the 2001 FREENIX and 2001
OLS, available online from http://www.nsa.gov/selinux/docs.html.

3) The published papers about LSM from the 2002 Usenix Security and
2002 OLS, available online from http://lsm.immunix.org/lsm_doc.html.

--
Stephen Smalley, NSA
sds@epoch.ncsc.mil
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

• Next message: Ross Biro: "Re: 2.4.21-pre4: PDC ide driver problems with shared interrupts"
• Previous message: Christoph Hellwig: "Re: [BK PATCH] LSM changes for 2.5.59"
• Maybe in reply to: Greg KH: "[BK PATCH] LSM changes for 2.5.59"
• Next in thread: Stephen D. Smalley: "Re: [BK PATCH] LSM changes for 2.5.59"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Fri Feb 07 2003 - 22:00:17 EST