Re: A basic question about the security_* hooks

From: Evgeniy Polyakov
Date: Thu Dec 24 2009 - 02:37:12 EST

Next message: fengxiangjun: "Re: 2.6.32.2 SATA link detect failed, 2.6.32.1 works fine"
Previous message: Yong Wang: "[PATCH] hwmon: (coretemp) Fix TjMax for Atom N450/D410/D510 CPUs"
Next in thread: Samir Bellabes: "Re: A basic question about the security_* hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Dec 23, 2009 at 09:29:02PM -0500, Michael Stone (michael@xxxxxxxxxx) wrote:
> There are a variety of places where I'd like to be able to get the kernel to
> return EPERM more often [1]. Many of these places already have security
> hooks.
>
> Unfortunately, I don't feel that I can make effective use of these hooks
> because they seem to be "occupied" by the large mandatory access control
> frameworks.

I believe you should convice selinux and friends to add support for your
extension, otherwise no distribution will be able to turn it on, since
no two security frameworks can be registered simultaneously.

--
Evgeniy Polyakov
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: fengxiangjun: "Re: 2.6.32.2 SATA link detect failed, 2.6.32.1 works fine"
Previous message: Yong Wang: "[PATCH] hwmon: (coretemp) Fix TjMax for Atom N450/D410/D510 CPUs"
Next in thread: Samir Bellabes: "Re: A basic question about the security_* hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]