Have a look at http://www.fornax.sk/medusa/
It's another project dealing with kind of securety you talk about.
IMHO it's quite advanced. Uses an userspace daemon to talk to a
special device, /dev/medusa, where kernel places it's questions, and the
daemon (constable) answers whether allow, not allow, or silently forbid
the operation.
It's big advantage is the userspace daemon, which is "independent" of the
kernel patches. So you may design your own.
It handles file manipulation, aswell as network functions, setuid and
such.
Well, 'nough said, have a look your self.
Others are welcome!
Jan Dado
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Fri Jan 07 2000 - 21:00:06 EST