Re: [RFC 0/5] [TALPA] Intro to a linux interface for on accessscanning

From: John Moser
Date: Mon Aug 18 2008 - 10:12:43 EST

Next message: Andy Chittenden: "Linux 2.6.26 edac errors and ASUS P5W DH Deluxe motherboard"
Previous message: Christoph Lameter: "Re: No, really, stop trying to delete slab until you've finishedmaking slub perform as well"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2008-08-04 at 17:00 -0400, Eric Paris wrote:
> Background
> ++++++++++
> There is a consensus in the security industry that protecting against
> malicious files (viruses, root kits, spyware, ad-ware, ...) by the way
> of so-called on-access scanning is usable and reasonable approach.
> Currently the Linux kernel does not offer a completely suitable
> interface to implement such security solutions. Present solutions

A long time ago the FUSE developers said something about implementing
write-through stacking for FUSE (i.e. 'sudo fusermount -o allow_other
encfs / /' would allow mounting on /, and encfs could read/write under
its own mount point).

Wouldn't that make more sense? You could i.e. edit /etc/avfs.conf to
say "scanner=clamscan" "clamscan=/usr/bin/clamscan" and mount avfs
on /...?

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andy Chittenden: "Linux 2.6.26 edac errors and ASUS P5W DH Deluxe motherboard"
Previous message: Christoph Lameter: "Re: No, really, stop trying to delete slab until you've finishedmaking slub perform as well"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]