Re: IMMUTABLE and APPEND-ONLY rationales

From: David Ford (david@kalifornia.com)
Date: Sun Jun 25 2000 - 16:21:51 EST


Chris Evans wrote:

> We had securelevel in 2.0, and it's replaced by cap_bset in 2.2. The 2.2
> capability set wasn't sufficient to fully replicate securelevel. I've
> fixed that for 2.4 [1]
>
> So a mechanism to prevent even root from messing with
> append-only/immutable files _is_ in place [2]

So....what /proc file to we echo N to so as to effect securelevel? :)

-d

--
"The difference between 'involvement' and 'commitment' is like an
eggs-and-ham breakfast: the chicken was 'involved' - the pig was
'committed'."


- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Mon Jun 26 2000 - 21:00:07 EST