Re: SG_IO and security

From: Alan Cox
Date: Sat Aug 14 2004 - 11:37:15 EST

Next message: Jon Smirl: "Re: legacy VGA device requirements (was: Exposing ROM's though sysfs)"
Previous message: Alan Cox: "Re: legacy VGA device requirements (was: Exposing ROM's thoughsysfs)"
In reply to: Kai Makisara: "Re: SG_IO and security"
Next in thread: Jeff Garzik: "Re: SG_IO and security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sad, 2004-08-14 at 08:22, Kai Makisara wrote:
> > Though in general I think command-based filtering is not scalable... at
> > the very least I would prefer a list loaded from userspace at boot.
> >
> I think always requiring CAP_RAWIO would be the approach of least
> surprise.

Sounds like an excuse for Al to get yet another file system into the
kernel so you can edit filter rules 8)

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jon Smirl: "Re: legacy VGA device requirements (was: Exposing ROM's though sysfs)"
Previous message: Alan Cox: "Re: legacy VGA device requirements (was: Exposing ROM's thoughsysfs)"
In reply to: Kai Makisara: "Re: SG_IO and security"
Next in thread: Jeff Garzik: "Re: SG_IO and security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]