Re: [RFC][2.4 PATCH] A restricted /dev filesystem.

From: Tetsuo Handa
Date: Mon Nov 01 2004 - 08:17:55 EST

Next message: Pavel Machek: "Re: Map extra keys on compaq evo"
Previous message: Ingo Molnar: "Re: [Fwd: Re: [patch] Real-Time Preemption, -RT-2.6.9-mm1-V0.4]"
In reply to: Kristian Sørensen: "Re: [RFC][2.4 PATCH] A restricted /dev filesystem."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi, Kristian.

Thank you for your advise.

But this is 2.4, which LSM isn't integrated into.
Also, I have experienced the difficulty of managing SELinux's policy.
I agree what I want to do can be done with LSM,
but I want more simpler approach.

Thank you.

In message <200411011343.00513.ks@xxxxxxxxx>
"Re: [RFC][2.4 PATCH] A restricted /dev filesystem."
"<ks@xxxxxxxxx>" wrote:

> E.g. these two statements of disallowing creation of hardlinks and regular
> files in /dev can easily be implemented as a LSM module (see
> include/linux/security.h). (I think) You will need to consider the hooks
> inode_create and inode_link only.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Pavel Machek: "Re: Map extra keys on compaq evo"
Previous message: Ingo Molnar: "Re: [Fwd: Re: [patch] Real-Time Preemption, -RT-2.6.9-mm1-V0.4]"
In reply to: Kristian Sørensen: "Re: [RFC][2.4 PATCH] A restricted /dev filesystem."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]