Re: [RFC][PATCH 0/11] security: AppArmor - Overview

From: Casey Schaufler
Date: Wed Apr 26 2006 - 20:21:27 EST

Next message: Gene Heskett: "Re: can't compile kernels lately (2.6.16.5 and up)"
Previous message: Greg Smith: "s390 lcs incorrect test"
In reply to: Stephen Smalley: "Re: [RFC][PATCH 0/11] security: AppArmor - Overview"
Next in thread: Karl MacMillan: "Re: [RFC][PATCH 0/11] security: AppArmor - Overview"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

--- Stephen Smalley <sds@xxxxxxxxxxxxx> wrote:

> On Tue, 2006-04-25 at 20:42 -0700, Casey Schaufler
> wrote:

> > Conflating my forehead!
>
> The policy is analyzable, and there are tools (apol
> and slat) that do precisely that.

Ok. I remain unconvinced, in part because the analysis
requires tools.

> Including information flow analysis
> and invariant checking.

Ok. Fair enough.

> What's your problem, again?

You keep asking that.

I seem to have fallen off topic, which happens
sometimes, and I apologize for falling into this
long standing and overly religeous debate. I
have failed to present my case with sufficient
clarity to prove convincing once again. Perhaps
one day I'll get it right. Perhaps one day I'll
figure out why I'm wrong.

Casey Schaufler
casey@xxxxxxxxxxxxxxxx
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Gene Heskett: "Re: can't compile kernels lately (2.6.16.5 and up)"
Previous message: Greg Smith: "s390 lcs incorrect test"
In reply to: Stephen Smalley: "Re: [RFC][PATCH 0/11] security: AppArmor - Overview"
Next in thread: Karl MacMillan: "Re: [RFC][PATCH 0/11] security: AppArmor - Overview"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]