Re: [PATCH] [request for inclusion] Realtime LSM

From: Alan Cox
Date: Thu Jan 06 2005 - 22:05:06 EST

Next message: Alan Cox: "Re: [BUG][2.6.8.1] serial driver hangs SMP kernel, but not the UPkernel"
Previous message: Adrian Bunk: "[2.6 patch] small partitions/msdos cleanups (fwd) (fwd) (fwd)"
In reply to: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
Next in thread: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Gwe, 2005-01-07 at 01:13, Matt Mackall wrote:
> You can't fix them without changing the semantics for existing users
> in ways they didn't expect. It could be done with a new personality flag,
> but..

I disagree. At the most trivial you could just add another 32bits of
sticky capability that are never touched by setuid/non-setuidness and
represent additional "user" (or more rightly session) abilities to do
limited overrides

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: [BUG][2.6.8.1] serial driver hangs SMP kernel, but not the UPkernel"
Previous message: Adrian Bunk: "[2.6 patch] small partitions/msdos cleanups (fwd) (fwd) (fwd)"
In reply to: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
Next in thread: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]