Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfaceforon access scanning | KernelTrap

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfaceforon access scanning

view
thread

!MAILaRCHIVE_VOTE_RePLACE

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Alan Cox <alan@...>

To: <rmeijer@...>

Cc: <capibara@...>, <david@...>, Eric Paris <eparis@...>, Theodore Tso <tytso@...>, Rik van Riel <riel@...>, <davecb@...>, <linux-security-module@...>, Adrian Bunk <bunk@...>, Mihai Don??u <mdontu@...>, <linux-kernel@...>, <malware-list@...>, Pavel Machek <pavel@...>, Arjan van de Ven <arjan@...>

Subject: Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfaceforon access scanning

Date: Friday, August 15, 2008 - 10:18 am

> This "permitted to execute" is what I feel is the wrong aproach with
quoted text> respect to malware. If you simply allow everything to 'execute', I think
> that untrusted programs may still be used for usefull things, but without
> the potential do do malice. If you start from the point where everything
> both trusted and untrusted  is permitted to be executed, you could make it
> the job of SELinux or any other LSM to make untrusted code run without
> doing malice, but with the possibility to still run and do usefull non
> malicious  stuff. This might require some aditional hooks in LSM though I
> could imagine.

SELinux is quite happy to apply different rules to content labelled in
different ways. WHat specific things do you need that it can't do ?
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Rob Meijer, (Fri Aug 15, 8:22 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Alan Cox, (Fri Aug 15, 10:18 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Fri Aug 15, 9:27 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., , (Fri Aug 15, 1:31 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Fri Aug 15, 11:57 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., David Collier-Brown, (Sun Aug 17, 5:17 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Sun Aug 17, 9:33 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., , (Sun Aug 17, 9:44 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Sun Aug 17, 10:33 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Arjan van de Ven, (Sat Aug 16, 12:09 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., , (Sat Aug 16, 1:35 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., , (Sat Aug 16, 3:27 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Sat Aug 16, 1:19 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Theodore Tso, (Sat Aug 16, 5:39 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Sat Aug 16, 7:38 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Theodore Tso, (Sat Aug 16, 11:17 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Sun Aug 17, 3:49 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., , (Sun Aug 17, 4:58 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Sun Aug 17, 8:11 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., , (Mon Aug 18, 6:54 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Mon Aug 18, 9:40 am)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., , (Sun Aug 17, 8:32 pm)

Re: [malware-list] [RFC 0/5] [TALPA] Intro to alinuxinterfac..., Peter Dolding, (Sun Aug 17, 9:20 pm)

Navigation

Popular discussions


linux-kernel:
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Joerg Roedel	[PATCH 03/34] AMD IOMMU: add defines and structures for ACPI scanning code
Ingo Molnar	[patch 03/13] syslets: generic kernel bits
Greg KH	Re: [malware-list] [RFC 0/5] [TALPA] Intro to a linux interface for on access scan...
git:

linux-netdev:

Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
David Miller	[GIT]: Networking
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
openbsd-misc:

Colocation donated by:

Who's online

There are currently 1 user and 883 guests online.

Online users

maplemanfloor96

Syndicate