Re: [patch] to add device+inode check to ipt_owner.c - HACKED UP

From: Arjan van de Ven
Date: Wed Sep 08 2004 - 05:16:40 EST

Next message: Jens Axboe: "Re: [patch] max-sectors-2.6.9-rc1-bk14-A0"
Previous message: Andrew Morton: "Re: [patch] max-sectors-2.6.9-rc1-bk14-A0"
In reply to: Luke Kenneth Casson Leighton: "[patch] to add device+inode check to ipt_owner.c - HACKED UP"
Next in thread: Luke Kenneth Casson Leighton: "Re: [patch] to add device+inode check to ipt_owner.c - HACKED UP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 2004-09-08 at 12:09, Luke Kenneth Casson Leighton wrote:
> dear kernel people,
>
> this is a first pass at attempting to add per-program firewall rule
> checking to iptables.

question: any reason you didn't use something like selinux-like contexts
instead of dentry/device pairs ?

Attachment: signature.asc
Description: This is a digitally signed message part

Next message: Jens Axboe: "Re: [patch] max-sectors-2.6.9-rc1-bk14-A0"
Previous message: Andrew Morton: "Re: [patch] max-sectors-2.6.9-rc1-bk14-A0"
In reply to: Luke Kenneth Casson Leighton: "[patch] to add device+inode check to ipt_owner.c - HACKED UP"
Next in thread: Luke Kenneth Casson Leighton: "Re: [patch] to add device+inode check to ipt_owner.c - HACKED UP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]