Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.

Hello.

Thank you for your comment.

James Morris wrote:
> I'm guessing you need this to determine the receiving process, rather than 
> the socket (which is available via security_sock_rcv_skb()).
Use of security_sock_rcv_skb() was discussed at http://lkml.org/lkml/2007/8/28/74 ,
and answer is at http://lkml.org/lkml/2007/10/2/56 .

> If so, is this to interactively determine from the user or admin whether 
> the packet should be accepted/denied for the receiving process?
Yes, it is to determine whether the packet should be accepted/denied
based on the receiving process (like what anti-virus software's firewall does).

Regards.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

---

• References:
  • [TOMOYO 00/15](repost) TOMOYO Linux - MAC based on process invocation history.
    • From: Kentaro Takeda <[email protected]>
  • [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.
    • From: Kentaro Takeda <[email protected]>
  • Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.
    • From: James Morris <[email protected]>

• Prev by Date: Re: 2.6.23-rc8-mm2 - tcp_fastretrans_alert() WARNING
• Next by Date: Re: [PATCH 4/5] writeback: remove pages_skipped accounting in __block_write_full_page()
• Previous by thread: Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.
• Next by thread: [TOMOYO 15/15](repost) Kconfig and Makefile for TOMOYO Linux.
• Index(es):
  • Date
  • Thread

[Index of Archives]     [Kernel Newbies]     [Netfilter]     [Bugtraq]     [Photo]     [Stuff]     [Gimp]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Video 4 Linux]     [Linux for the blind]     [Linux Resources]