Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks

From: James Morris
Date: Thu Apr 20 2006 - 00:29:39 EST

Next message: Stephen Hemminger: "Re: TOE info page"
Previous message: Casey Schaufler: "Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks"
In reply to: Casey Schaufler: "Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks"
Next in thread: Chris Wright: "Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[dropped fireflier-devel]

On Wed, 19 Apr 2006, Casey Schaufler wrote:

> Just to be clear here, not everyone is comfortable with the idea of a
> security "policy" that is developed, maintained, and stored
> independently of the kernel and the applications to which it is applied.

This has never been required; it's just the way standard policy was
developed historically.

The current trend is to move policy development to the packages being
protected, made possible through the recent modular policy work by Tresys.
Several developer tools are being developed to help support this.

(SELinux developments of note are posted at: http://selinuxnews.org/wp/
and in the various blogs linked there).

- James
--
James Morris
<jmorris@xxxxxxxxx>
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Stephen Hemminger: "Re: TOE info page"
Previous message: Casey Schaufler: "Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks"
In reply to: Casey Schaufler: "Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks"
Next in thread: Chris Wright: "Re: [RESEND][RFC][PATCH 2/7] implementation of LSM hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]