Re: [TOMOYO 5/9] Memory and pathname management functions.

From: Albert Cahalan
Date: Sat Jun 16 2007 - 05:09:04 EST

Next message: castet . matthieu: "FW : airo suspend problem"
Previous message: Willy Tarreau: "Re: Linux Servers comparison with Windows 2003 servers for Gaming"
Next in thread: Pavel Machek: "Re: [TOMOYO 5/9] Memory and pathname management functions."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 6/15/07, Pavel Machek <pavel@xxxxxx> wrote:

[Albert Cahalan]

> It's really not worth getting bothered by. Truth is, big
> giant
> pathnames break lots of stuff already, both kernel and
> userspace.

> Just look in /proc for some nice juicy kernel breakage:
> cwd, exe, fd/*, maps, mounts, mountstats, root, smaps

Well, but we should be fixing that, not adding more. And /proc is
info-only, while this is security related code.

Security tools read from /proc, so /proc is security-related.

The limit imposed by TOMOYO (or AppArmor) is fine,
despite being security-related. It just needs to fail in
the safe direction: access denied.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: castet . matthieu: "FW : airo suspend problem"
Previous message: Willy Tarreau: "Re: Linux Servers comparison with Windows 2003 servers for Gaming"
Next in thread: Pavel Machek: "Re: [TOMOYO 5/9] Memory and pathname management functions."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]