Re: Linux needs flexible security

Matthew Wilcox (Matthew.Wilcox@genedata.com)
Thu, 25 Nov 1999 09:46:48 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Pjotr Kourzanoff: "Re: Linux needs flexible security"
Previous message: David Howells: "Re: [patch-2.3.29] bugfix for pipe(2) system call."

On Mon, Nov 22, 1999 at 10:10:16PM +0100, Pavel Machek wrote:
> Ioctls should be banned. They make network transparent remote exec
> hard, for example. Disabling all ioctls for user-level applications
> should not hurt too much.... [clapity clap] Hmm, it will: console
> operations are done using ioctls. Ok, disallowing ioctls is not possible.

plan9 solved this with ctl files. i don't see why linux shouldn't move
the same way in order to reap the benefits of distributable computing.
how do systems like mosix work around ioctl problems?

-- Matthew Wilcox <willy@bofh.ai> "Windows and MacOS are products, contrived by engineers in the service of specific companies. Unix, by contrast, is not so much a product as it is a painstakingly compiled oral history of the hacker subculture." - N Stephenson

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Pjotr Kourzanoff: "Re: Linux needs flexible security"
Previous message: David Howells: "Re: [patch-2.3.29] bugfix for pipe(2) system call."