Home » Mailing list archives » linux-kernel » 2007 » October » 25

Re: Linux Security *Module* Framework (Was: LSM conversion to static interface)

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Alan Cox
Subject: Re: Linux Security *Module* Framework (Was: LSM conversion to static interface)
Date: Wednesday, October 24, 2007 - 6:41 pm

> The idea that poor security is worse than no security is fallacious,

There is a ton of evidence both in computing and outside of it which
shows that poor security can be very much worse than no security at all.
In particular stuff which makes users think they are secure but is
worthless is very dangerous indeed.

When you know that security is limited you act appropriately, when you
believe security is good but it is not you take inappropriate risks and
get badly burned.

Alan
-
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
Re: LSM conversion to static interface, Linus Torvalds, (Wed Oct 17, 7:18 pm)
Re: LSM conversion to static interface, Andreas Gruenbacher, (Fri Oct 19, 1:26 pm)
Re: LSM conversion to static interface, Linus Torvalds, (Fri Oct 19, 1:40 pm)
Re: LSM conversion to static interface, James Morris, (Fri Oct 19, 2:07 pm)
Re: LSM conversion to static interface, Jan Engelhardt, (Sat Oct 20, 4:05 am)
Re: LSM conversion to static interface, James Morris, (Sat Oct 20, 3:57 pm)
Re: LSM conversion to static interface, Adrian Bunk, (Sun Oct 21, 3:59 pm)
Re: Re: LSM conversion to static interface, Crispin Cowan, (Sun Oct 21, 6:12 pm)
Re: LSM conversion to static interface [revert patch], Arjan van de Ven, (Mon Oct 22, 9:09 pm)
Re: LSM conversion to static interface [revert patch], James Morris, (Mon Oct 22, 9:56 pm)
Re: LSM conversion to static interface [revert patch], Arjan van de Ven, (Mon Oct 22, 9:57 pm)
Re: LSM conversion to static interface [revert patch], Chris Wright, (Mon Oct 22, 10:16 pm)
Re: LSM conversion to static interface, Giacomo Catenazzi, (Mon Oct 22, 10:44 pm)
Re: LSM conversion to static interface, Jan Engelhardt, (Tue Oct 23, 1:55 am)
Re: LSM conversion to static interface [revert patch], Jan Engelhardt, (Tue Oct 23, 2:10 am)
Re: LSM conversion to static interface [revert patch], Chris Wright, (Tue Oct 23, 2:13 am)
Re: LSM conversion to static interface, Jan Engelhardt, (Tue Oct 23, 2:13 am)
Re: LSM conversion to static interface [revert patch], Jan Engelhardt, (Tue Oct 23, 2:14 am)
Re: LSM conversion to static interface, Giacomo A. Catenazzi, (Tue Oct 23, 2:14 am)
Re: LSM conversion to static interface, Jan Engelhardt, (Tue Oct 23, 2:18 am)
Re: LSM conversion to static interface, Serge E. Hallyn, (Tue Oct 23, 8:20 am)
Re: LSM conversion to static interface, Jan Engelhardt, (Tue Oct 23, 8:28 am)
Re: LSM conversion to static interface, Serge E. Hallyn, (Tue Oct 23, 8:34 am)
Re: LSM conversion to static interface [revert patch], Jeremy Fitzhardinge, (Tue Oct 23, 5:31 pm)
Re: LSM conversion to static interface [revert patch], Chris Wright, (Tue Oct 23, 5:32 pm)
Re: LSM conversion to static interface [revert patch], Arjan van de Ven, (Tue Oct 23, 10:06 pm)
Linux Security *Module* Framework (Was: LSM conversion to ..., Simon Arlott, (Wed Oct 24, 4:50 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Adrian Bunk, (Wed Oct 24, 5:55 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Simon Arlott, (Wed Oct 24, 11:11 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Wed Oct 24, 11:51 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Simon Arlott, (Wed Oct 24, 11:59 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Wed Oct 24, 12:04 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Crispin Cowan, (Wed Oct 24, 1:18 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Wed Oct 24, 1:46 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., David P. Quigley, (Wed Oct 24, 2:02 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Casey Schaufler, (Wed Oct 24, 2:29 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Serge E. Hallyn, (Wed Oct 24, 2:37 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Wed Oct 24, 2:42 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Wed Oct 24, 2:51 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Casey Schaufler, (Wed Oct 24, 2:58 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., David P. Quigley, (Wed Oct 24, 3:02 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., David P. Quigley, (Wed Oct 24, 3:04 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Adrian Bunk, (Wed Oct 24, 3:31 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Casey Schaufler, (Wed Oct 24, 3:58 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Wed Oct 24, 4:13 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Adrian Bunk, (Wed Oct 24, 4:32 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Linus Torvalds, (Wed Oct 24, 4:42 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Chris Wright, (Wed Oct 24, 5:23 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Ray Lee, (Wed Oct 24, 5:35 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Chris Wright, (Wed Oct 24, 5:41 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Casey Schaufler, (Wed Oct 24, 6:03 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Peter Dolding, (Wed Oct 24, 6:26 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Alan Cox, (Wed Oct 24, 6:41 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Casey Schaufler, (Wed Oct 24, 6:42 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., david, (Wed Oct 24, 6:50 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., david, (Wed Oct 24, 7:11 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Arjan van de Ven, (Wed Oct 24, 7:19 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Kyle Moffett, (Wed Oct 24, 8:50 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Bernd Petrovitsch, (Thu Oct 25, 2:19 am)
Re: LSM conversion to static interface, Valdis.Kletnieks, (Thu Oct 25, 3:23 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Simon Arlott, (Thu Oct 25, 4:38 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Simon Arlott, (Thu Oct 25, 4:44 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Ray Lee, (Thu Oct 25, 9:04 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Arjan van de Ven, (Thu Oct 25, 10:10 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Ray Lee, (Thu Oct 25, 11:17 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Alan Cox, (Thu Oct 25, 3:21 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Tilman Schmidt, (Thu Oct 25, 4:09 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Greg KH, (Thu Oct 25, 7:56 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., david, (Thu Oct 25, 8:45 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Peter Dolding, (Thu Oct 25, 10:44 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Fri Oct 26, 12:09 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Tilman Schmidt, (Fri Oct 26, 2:46 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Greg KH, (Fri Oct 26, 8:54 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Greg KH, (Fri Oct 26, 8:58 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Simon Arlott, (Fri Oct 26, 9:32 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Adrian Bunk, (Fri Oct 26, 4:26 pm)
eradicating out of tree modules (was: Linux Security *Modu ..., Tilman Schmidt, (Sat Oct 27, 7:07 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Tetsuo Handa, (Sat Oct 27, 7:08 am)
eradicating out of tree modules (was: : Linux Security *Mo ..., Tilman Schmidt, (Sat Oct 27, 7:47 am)
Re: eradicating out of tree modules, Stefan Richter, (Sat Oct 27, 10:31 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Pavel Machek, (Sat Oct 27, 11:22 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Pavel Machek, (Sat Oct 27, 11:29 am)
Re: eradicating out of tree modules (was: : Linux Security ..., Adrian Bunk, (Sat Oct 27, 5:55 pm)
Re: eradicating out of tree modules (was: Linux Security * ..., Adrian Bunk, (Sat Oct 27, 6:21 pm)
Re: eradicating out of tree modules, Stefan Richter, (Sun Oct 28, 2:25 am)
Re: eradicating out of tree modules, Tilman Schmidt, (Sun Oct 28, 5:01 am)
Re: eradicating out of tree modules, Stefan Richter, (Sun Oct 28, 7:37 am)
Re: eradicating out of tree modules, Simon Arlott, (Sun Oct 28, 7:59 am)
Re: eradicating out of tree modules, Tilman Schmidt, (Sun Oct 28, 9:55 am)
RE: Linux Security *Module* Framework (Was: LSM conversion ..., Hua Zhong, (Sun Oct 28, 11:48 am)
Re: eradicating out of tree modules, Tilman Schmidt, (Sun Oct 28, 11:51 am)
RE: Linux Security *Module* Framework (Was: LSM conversion ..., Hua Zhong, (Sun Oct 28, 12:05 pm)
Re: eradicating out of tree modules, Adrian Bunk, (Sun Oct 28, 12:25 pm)
Re: Linux Security *Module* Framework, Tilman Schmidt, (Sun Oct 28, 12:42 pm)
Re: Linux Security *Module* Framework, Jan Engelhardt, (Sun Oct 28, 1:46 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Crispin Cowan, (Sun Oct 28, 3:08 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Alan Cox, (Sun Oct 28, 3:50 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Peter Dolding, (Sun Oct 28, 4:55 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Arjan van de Ven, (Sun Oct 28, 10:12 pm)
Out-of-tree modules [was: Linux Security *Module* Framework], Jan Engelhardt, (Mon Oct 29, 4:51 pm)
Re: eradicating out of tree modules, Tilman Schmidt, (Mon Oct 29, 5:29 pm)
Re: Out-of-tree modules [was: Linux Security *Module* Fram ..., Lee Revell, (Mon Oct 29, 5:46 pm)
Re: Out-of-tree modules [was: Linux Security *Module* Fram ..., Jan Engelhardt, (Mon Oct 29, 6:19 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Toshiharu Harada, (Mon Oct 29, 8:23 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Toshiharu Harada, (Mon Oct 29, 8:37 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Tue Oct 30, 1:40 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Crispin Cowan, (Tue Oct 30, 1:50 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Toshiharu Harada, (Tue Oct 30, 2:21 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Jan Engelhardt, (Tue Oct 30, 2:27 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Bernd Petrovitsch, (Tue Oct 30, 2:41 am)
Re: eradicating out of tree modules, linux-os (Dick Johnson), (Tue Oct 30, 6:11 am)
Re: eradicating out of tree modules, Xavier Bestel, (Tue Oct 30, 6:19 am)
Re: eradicating out of tree modules, Greg KH, (Tue Oct 30, 8:30 am)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., Crispin Cowan, (Sun Nov 4, 11:42 pm)
Re: Linux Security *Module* Framework (Was: LSM conversion ..., serge, (Mon Nov 26, 1:42 pm)