Re: [PATCH] scaled-back caps, take 4

From: Chris Wright
Date: Fri May 14 2004 - 19:40:00 EST

Next message: Marc Singer: "Re: arm-lh7a40x IDE support in 2.6.6"
Previous message: J. Ryan Earl: "Re: drivers/video/riva/fbdev.c broken on x86_64"
In reply to: Olaf Dietsche: "Re: [PATCH] scaled-back caps, take 4"
Next in thread: Albert Cahalan: "Re: [PATCH] scaled-back caps, take 4"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Olaf Dietsche (olaf+list.linux-kernel@xxxxxxxxxxxxxxx) wrote:
> Andy Lutomirski <luto@xxxxxxxxxxxxx> writes:
>
> > cap_2.6.6-mm2_4.patch: New stripped-back capabilities.
> >
> > fs/exec.c | 15 ++++-
> > include/linux/binfmts.h | 9 ++-
> > security/commoncap.c | 130 ++++++++++++++++++++++++++++++++++++++++++------
> > 3 files changed, 136 insertions(+), 18 deletions(-)
> [patch]
>
> Why don't you provide this as a configurable andycap.c module?
> I think, this is the whole point of LSM.

I agree, if we can't find a clean way to do it. However, note this
includes changes to core. And it's nice to fix this for the base case.

thanks,
-chris
--
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Marc Singer: "Re: arm-lh7a40x IDE support in 2.6.6"
Previous message: J. Ryan Earl: "Re: drivers/video/riva/fbdev.c broken on x86_64"
In reply to: Olaf Dietsche: "Re: [PATCH] scaled-back caps, take 4"
Next in thread: Albert Cahalan: "Re: [PATCH] scaled-back caps, take 4"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]