Re: [PATCH try #3] security: Convert LSM into a static interface

From: James Morris
Date: Thu Jul 19 2007 - 09:01:06 EST

Next message: Yan Zheng: "Why max_debt isn't used in ext4's find_group_orlov(...) ?"
Previous message: Andi Kleen: "Re: [PATCH] X86_64: hpet tsc calibration fix broken smi detection logic"
In reply to: Serge E. Hallyn: "Re: [PATCH try #3] security: Convert LSM into a static interface"
Next in thread: Serge E. Hallyn: "Re: [PATCH try #3] security: Convert LSM into a static interface"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 19 Jul 2007, Serge E. Hallyn wrote:

> > It's already pretty clear.
>
> I doubt anyone not on lkml or linux-security-module has heard of this.
>
> So we'll see.
>
> (I was, obviously, talking about end-users)

If distributions are shipping binary modules and other out of tree code to
their users, then they should bear responsibility for supporting and
maintaining the infrastructure required for it, and not expect upstream
maintainers to do it for them.

Additionally, if they want to expose their users to risks arising from
broken and unecessary infrastructure, then they should bear the cost and
responsibility of doing that and not expect others to do so as well.

I don't see how this is even slightly difficult to understand.

- James
--
James Morris
<jmorris@xxxxxxxxx>
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Yan Zheng: "Why max_debt isn't used in ext4's find_group_orlov(...) ?"
Previous message: Andi Kleen: "Re: [PATCH] X86_64: hpet tsc calibration fix broken smi detection logic"
In reply to: Serge E. Hallyn: "Re: [PATCH try #3] security: Convert LSM into a static interface"
Next in thread: Serge E. Hallyn: "Re: [PATCH try #3] security: Convert LSM into a static interface"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]