Re: [PATCH v6 0/3] LSM: security module information improvements

From: John Johansen
Date: Thu Oct 27 2016 - 19:13:56 EST

Next message: Alexandre Belloni: "Re: [PATCH v6] tty/serial: at91: fix hardware handshake on Atmel platforms"
Previous message: Dmitry Torokhov: "Re: [PATCH v2 3/4] input: Deprecate real timestamps beyond year 2106"
In reply to: James Morris: "Re: [PATCH v6 0/3] LSM: security module information improvements"
Next in thread: Casey Schaufler: "Re: [PATCH v6 0/3] LSM: security module information improvements"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/27/2016 03:32 PM, James Morris wrote:
> On Wed, 26 Oct 2016, Casey Schaufler wrote:
>
>> Create interfaces that make it possible to deal with process
>> attributes in the face of multiple "major" security modules.
>
> We don't have support for multiple major modules currently (perhaps ever),
> so I'm not merging infrastructure which is only useful for them.
>
>>
>> Patch 1/3 adds /sys/kernel/security/lsm, which provides
>> a list of the active security modules on the system.
>>
>> $ cat /sys/kernel/security/lsm
>> capability,yama,loadpin,smack
>
> This may make sense on its own. Has anyone requested this, or is likely
> to adopt it into a distro?
>
>
This is quite useful and Ubuntu will likely adopt it for the 17.04 release

Next message: Alexandre Belloni: "Re: [PATCH v6] tty/serial: at91: fix hardware handshake on Atmel platforms"
Previous message: Dmitry Torokhov: "Re: [PATCH v2 3/4] input: Deprecate real timestamps beyond year 2106"
In reply to: James Morris: "Re: [PATCH v6 0/3] LSM: security module information improvements"
Next in thread: Casey Schaufler: "Re: [PATCH v6 0/3] LSM: security module information improvements"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]