Re: [RFC 0/5] [TALPA] Intro to a linux interface for on access scanning

From: Paul Moore
Date: Tue Aug 05 2008 - 16:57:21 EST

Next message: James Bottomley: "Re: [PATCH 1/2] pci: add misrouted interrupt error handling"
Previous message: Eric Paris: "Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfaceforon access scanning"
In reply to: Cliffe: "Re: [RFC 0/5] [TALPA] Intro to a linux interface for on access scanning"
Next in thread: Casey Schaufler: "Re: [RFC 0/5] [TALPA] Intro to a linux interface for on access scanning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Monday 04 August 2008 11:44:28 pm Casey Schaufler wrote:
> Cliffe wrote:
> > Other security schemes such as intrusion detection,
> > firewalls/netfilter, anti-malware, and application restrictions
> > (sandboxes such as jails or finer grained restrictions such as
> > AppArmor) could all register LSMs onto the stack.
>
> Stacking is easy for files. It's a real pain in the backside for UDP
> packets.

How is it any better/worse for UDP packets than files?

--
paul moore
linux @ hp
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: James Bottomley: "Re: [PATCH 1/2] pci: add misrouted interrupt error handling"
Previous message: Eric Paris: "Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfaceforon access scanning"
In reply to: Cliffe: "Re: [RFC 0/5] [TALPA] Intro to a linux interface for on access scanning"
Next in thread: Casey Schaufler: "Re: [RFC 0/5] [TALPA] Intro to a linux interface for on access scanning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]