Re: mmap_min_addr and your local LSM (ok, just SELinux)

From: James Morris
Date: Wed Jul 22 2009 - 06:08:25 EST

Next message: Oren Laadan: "[RFC v17][PATCH 16/60] pids 6/7: Define do_fork_with_pids()"
Previous message: Oren Laadan: "[RFC v17][PATCH 09/60] Namespaces submenu"
In reply to: James Carter: "Re: mmap_min_addr and your local LSM (ok, just SELinux)"
Next in thread: Kyle McMartin: "Re: mmap_min_addr and your local LSM (ok, just SELinux)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 21 Jul 2009, James Carter wrote:

> Agreed. That guarantee has been stated from the very beginning for
> SELinux; we shouldn't move away from it. Are there other places where
> having an LSM weakens security by default?

There's a similar form of hook in vm_enough_memory, but the SELinux module
calls the DAC capability check first, so it seems ok from a policy
writer's point of view (i.e. worst case is they revert to DAC).

- James
--
James Morris
<jmorris@xxxxxxxxx>
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Oren Laadan: "[RFC v17][PATCH 16/60] pids 6/7: Define do_fork_with_pids()"
Previous message: Oren Laadan: "[RFC v17][PATCH 09/60] Namespaces submenu"
In reply to: James Carter: "Re: mmap_min_addr and your local LSM (ok, just SELinux)"
Next in thread: Kyle McMartin: "Re: mmap_min_addr and your local LSM (ok, just SELinux)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]