-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
[EMAIL PROTECTED] wrote: > On Thu, 27 Jan 2005 01:51:05 EST, John Richard Moser said: > > >>mmm. I'd thought about that actually-- for modules to get a whack at >>this they'd have to be compiled in. Loaded as modules would break the >>security. > > > And that, my friends, is *exactly* why SELinux can't be built as a module ;) :) So far my little grkernsec module hasn't hit any bumps like that; though so far I haven't copied much of spender's code. I'm sure the chroot() restrictions will easily be make for a loadable module. At this point, I should be making more important design decisions. For example, why am I still doing this? Isn't there something better for me to do than clone LSM and GrSecurity, attempt (*cough*) to improve on the original designs, and then harass kernel devs about problems I'm having with things that are just meant to be toys for me anyway? - -- All content of all messages exchanged herein are left in the Public Domain, unless otherwise explicitly stated. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFB+JuehDd4aOud5P8RAg+WAJ451ls4FIMG0wm/r3pa/dPpcasRugCeP5j9 be2STVV+vC2B1ScYYQNmMY0= =IjCv -----END PGP SIGNATURE----- - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
