Re: 2.6.6-mm1

From: Chris Wedgwood
Date: Mon May 10 2004 - 18:16:34 EST

On Mon, May 10, 2004 at 03:02:03PM -0700, Andrew Morton wrote:

> Capabilities are broken and don't work. Nobody has a clue how to
> provide the required services with SELinux and nobody has any code
> and we need the feature *now* before vendors go shipping even more
> ghastly stuff.

eh? magic groups are nasty... and why is this needed? can't
oracle/whatever just run with a wrapper to give the capabilities out
as required until a better solution is available

merging this as-is IMO is a mistake, how about we get a chance to chew
on this for a while --- superficially it feels like a really nasty

and who cares if vendors show something worse? vendors ship crap all
the time, that's partly why we have vendor kernels --- to ship crap
that people want now w/o having to corrupt and pollute the cleanliness
of the mainline kernel until a sufficiently well thought out sane plan
can be devised

