Re: [RFC][PATCH 4/11] security: AppArmor - Core access controls

On 2006-04-20T08:33:13, Stephen Smalley <[email protected]> wrote:

> > If you are a confined process, then you don't get to mount things, for
> > this reason, among others.
> Which is an example of the brokenness of the security model - its
> fragileness in the face of manipulation of the file tree leads to
> inflexibility.

Now, now. Not every _limitation_ translates to _brokenness_. Some of
them are simply that - limitations. If you no like, you no run that
particular solution.



-- 
High Availability & Clustering
SUSE Labs, Research and Development
SUSE LINUX Products GmbH - A Novell Business	 -- Charles Darwin
"Ignorance more frequently begets confidence than does knowledge"

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

References:
- [RFC][PATCH 0/11] security: AppArmor - Overview
  - From: Tony Jones <[email protected]>
- [RFC][PATCH 4/11] security: AppArmor - Core access controls
  - From: Tony Jones <[email protected]>
- Re: [RFC][PATCH 4/11] security: AppArmor - Core access controls
  - From: Arjan van de Ven <[email protected]>
- Re: [RFC][PATCH 4/11] security: AppArmor - Core access controls
  - From: Crispin Cowan <[email protected]>
- Re: [RFC][PATCH 4/11] security: AppArmor - Core access controls
  - From: Stephen Smalley <[email protected]>

Prev by Date: Re: Linux 2.6.17-rc2
Next by Date: Re: [RFC] [PATCH] Make ACPI button driver an input device
Previous by thread: Re: [RFC][PATCH 4/11] security: AppArmor - Core access controls
Next by thread: Re: [RFC][PATCH 4/11] security: AppArmor - Core access controls
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]