Re: Time to remove LSM (was Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks)

From: Valdis . Kletnieks
Date: Wed Apr 19 2006 - 13:07:15 EST

Next message: James Smart: "Re: [RFC] Netlink and user-space buffer pointers"
Previous message: Thiago Galesi: "Possible MTD bug in 2.6.15"
In reply to: Jan Engelhardt: "Re: Time to remove LSM (was Re: [RESEND][RFC][PATCH 2/7] implementationof LSM hooks)"
Next in thread: Chris Wright: "Re: Time to remove LSM (was Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 19 Apr 2006 10:16:46 +0200, Jan Engelhardt said:

> >So, I think the only way to be able to realisticly keep the LSM
> >interface, is for a valid, working, maintained LSM-based security model
> >to go into the kernel tree. So far, I haven't seen any public posting
> >of patches that meet this requirement :(
>
> In that case, maybe it would be worthwhile to flip the positions, i.e. LSM on
> top of SELinux, sort of a compat layer.

How would that *possibly* work? What semantics would *that* have?

Attachment: pgp00000.pgp
Description: PGP signature

Next message: James Smart: "Re: [RFC] Netlink and user-space buffer pointers"
Previous message: Thiago Galesi: "Possible MTD bug in 2.6.15"
In reply to: Jan Engelhardt: "Re: Time to remove LSM (was Re: [RESEND][RFC][PATCH 2/7] implementationof LSM hooks)"
Next in thread: Chris Wright: "Re: Time to remove LSM (was Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]