[patch 0/4] Syslog permissions, revised

This patchset revises my attempt from last week to allow running klogd
unprivileged without a root shim.  I believe I have addressed all
outstanding objections: in particular, the privilege model enforced by
SELinux is unchanged (you have to have system__syslog_mod to read
/proc/kmsg).  I have also included some nice refactorings (symbolic
constants for sys_syslog opcodes, that sort of thing) and a few
bugfixes (minor and unlikely to affect any live application, but
still).

I hope that this can be considered for 2.6.19; it is low risk in my
opinion and it would be nice to get this functionality into the hands
of the distributors sooner.

zw


-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Follow-Ups:
- [patch 4/4] Distinguish /proc/kmsg access from sys_syslog
  - From: Zack Weinberg <[email protected]>
- [patch 3/4] Refactor do_syslog interface
  - From: Zack Weinberg <[email protected]>
- [patch 2/4] permission mapping for sys_syslog operations
  - From: Zack Weinberg <[email protected]>
- [patch 1/4] Add <linux/klog.h>
  - From: Zack Weinberg <[email protected]>

Prev by Date: Re: [patch] fix up generic csum_ipv6_magic function prototype
Next by Date: [patch 1/4] Add <linux/klog.h>
Previous by thread: linux-2.6.19-rc5-g088406bc build #120 failed
Next by thread: [patch 1/4] Add <linux/klog.h>
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]