Re: [PATCH 1 of 4] ima: related TPM device driver interal kernel interface

Why are you using LSM for this?

LSM should be used for comprehensive access control frameworks which 
significantly enhance or even replace existing Unix DAC security.

We're going to end up with a proliferation of arbitrary security features 
lacking an overall architectural view (I've written about this before, 
see http://www.ussg.iu.edu/hypermail/linux/kernel/0503.1/0300.html).

I think it would be better to implement this directly.



- James
-- 
James Morris
<[email protected]>


-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

References:
- [PATCH 1 of 4] ima: related TPM device driver interal kernel interface
  - From: Kylene Hall <[email protected]>

Prev by Date: Re: Running OOM and worse with broken signal handler
Next by Date: Re: Thread and process dentifiers (CPU affinity, kill)
Previous by thread: [PATCH 1 of 4] ima: related TPM device driver interal kernel interface
Next by thread: Re: [PATCH 1 of 4] ima: related TPM device driver interal kernel interface
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]