Rob Meijer wrote:Ah! So the proposal really is to have an LSM maintainer for each "family" of models, acting as a resource and arbiter for modules in a class. I like that idea, and have no objection to it. However, it does have resource problems, in that the pool of LSM maintainers is not that large. There is also the likely objection that this degree of scale is not needed until at least there are multiple families of models in the upstream kernel, and possibly until there are multiple instances of a single family in the upstream kernel. It also begs the question of what constitutes a family. * AppArmor, SELinux, and TOMOYO are all ambient capability systems o AppArmor and TOMOYO are pathname based o SELinux is label based * SELinux and SMACK are label-based o I don't know if SMACK is an ambient capability system * Rob Meijer implicitly advocated for an object capability LSM o would it be pathname or label based? You could do either or both ... * The LSPP work from RH, Tresys, and TCS is MLS based o this is a subset of both label-based and ambient capability based * I have no clue what family to put MultiADM or Dazuko into * Getting very formal, I could imagine a Clarke-Wilson module * Getting very informal, I could imagine a module that is a collection of cute intrusion prevention hacks, such as the Open wall Linux symlink and hardlink restrictions, and my own RaceGuard work o Oh wait, I published <http://citeseer.ist.psu.edu/cowan01raceguard.html> RaceGuard. Does that make it formal? :-) Crispin -- Crispin Cowan, Ph.D. http://crispincowan.com/~crispin CEO, Mercenary Linux http://mercenarylinux.com/ Itanium. Vista. GPLv3. Complexity at work -
| Michał Kudła | [2.6.26-rc5] iwlwifi 4965 not working - last on 2.6.23 |
| monstr | [PATCH 52/60] microblaze_v4: fcntl.h sockios.h ucontext.h |
| James Bottomley | Re: Integration of SCST in the mainstream Linux kernel |
| Nick Piggin | [rfc] no ZERO_PAGE? |
git: | |
| Patrick Altman | Git Library? |
| Jakub Narebski | Re: [RFC] origin link for cherry-pick and revert |
| Avery Pennarun | [bug] Segfault in git rev-list --first-parent --bisect |
| skimo | [PATCH 16/22] unpack-trees.c: optionally clone submodules for later checkout |
| Richard Stallman | Real men don't attack straw men |
| Marco Peereboom | Re: Real men don't attack straw men |
| James Hartley | scp batch mode? |
| Brandon Lee | DELL PERC 5iR slow performance |
| Julius Volz | [PATCH RFC 13/24] IPVS: Add IPv6 support to ip_vs_conn_hashkey() |
| Christopher Snook | RFC: Nagle latency tuning |
| David Miller | Re: [PATCH 10/11] [IPSEC]: Disallow combinations of RO and AH/ESP/IPCOMP |
| Jeff Kirsher | [RESEND][NET-NEXT PATCH 04/29] ixgbe: Update watchdog thread to accomodate longerl... |
