Re: [PATCH] disallow modular capabilities
From: Florian Weimer
Date: Mon Jan 03 2005 - 09:40:30 EST
* Andi Kleen:
>> think the dogma of "no policy in the kernel" is a good one to follow
>> here: it ignores the problem and creates new ones.
>
> The kernel just assumes that root knows what he/she/it is doing.
Is there any documentation that says that you must load security
modules immediately? If there isn't, this assumption is a bit
far-fetched.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/