On Sat, 9 Jun 2007, Sean wrote:did you read my explination of the analogy? what SELinux cannot do is figure out what label to assign a new file. but the bigger problem in changing SELinux to behave like AA is that the SELinux people disagree with the concept of AA. they don't believe that it's secure, so why would they add useless bloat that would only complicate their code and make systems less secure? I don't happen to agree with their opinion of AA obviously, but they have the right to their opinion, and it is their code. why should they be asked to implement and support something they disagree with so fundamentally? remember that the security hooks in the kernel are not SELinux API's, they are the Loadable Security Model API. What the AA people are asking for is for the LSM API to be modified enough to let their code run (after that (and working in parallel) they will work on getting the rest of their code approved for the kernel, but the LSM hooks are the most critical) David Lang -
| Jeff Chua | 2.6.27rc1 cannot boot more than 8CPUs |
| Linus Torvalds | Linux 2.6.27-rc8 |
| Stephen Rothwell | Announce: Linux-next (Or Andrew's dream :-)) |
| Greg KH | [GIT PATCH] driver core patches against 2.6.24 |
git: | |
| Linus Torvalds | People unaware of the importance of "git gc"? |
| Pedro Melo | Re: git on MacOSX and files with decomposed utf-8 file names |
| Matthieu Moy | git push to a non-bare repository |
| Pieter de Bie | [BUG] pull faulty 'not uptodate' |
| Leon Dippenaar | New tcp stack attack |
| Richard Stallman | Real men don't attack straw men |
| Pieter Verberne | pkg_add keeps giving errors |
| Will Maier | cron doesn't run commands in /etc/crontab? |
| Arjan van de Ven | Re: [GIT]: Networking |
| Jarek Poplawski | [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock(). |
| Daniele Lacamera | [PATCH] Fix tcp_hybla zero congestion window growth with small rho and large cwnd |
| Rick Jones | Re: RFC: Nagle latency tuning |
