Re: Security issues with local filesystem caching

From: David Howells
Date: Thu Nov 02 2006 - 15:40:36 EST

Next message: David Brownell: "Re: [linux-usb-devel] [PATCH 2/2] usbnet: use MII hooks only if CONFIG_MII is enabled"
Previous message: Stephen Smalley: "Re: Security issues with local filesystem caching"
In reply to: Stephen Smalley: "Re: Security issues with local filesystem caching"
Next in thread: Trond Myklebust: "Re: Security issues with local filesystem caching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Trond Myklebust <trond.myklebust@xxxxxxxxxx> wrote:

> Just why are you doing all this? Why do we need a back-end that requires
> all this extra client-side security infrastructure in order to work?

Well, both Christoph and Al are of the opinion that I should be using
vfs_mkdir() and co rather than bypassing the security and calling inode ops
directly.

Also I should be setting security labels on the files I create.

> IOW: What is wrong with the existing CacheFS?

Well, you did require it to be reviewed by Christoph...

David
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Brownell: "Re: [linux-usb-devel] [PATCH 2/2] usbnet: use MII hooks only if CONFIG_MII is enabled"
Previous message: Stephen Smalley: "Re: Security issues with local filesystem caching"
In reply to: Stephen Smalley: "Re: Security issues with local filesystem caching"
Next in thread: Trond Myklebust: "Re: Security issues with local filesystem caching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]