Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.

Hello.

Thank you for your comment.

James Morris wrote:
> I'm guessing you need this to determine the receiving process, rather than 
> the socket (which is available via security_sock_rcv_skb()).
Use of security_sock_rcv_skb() was discussed at http://lkml.org/lkml/2007/8/28/74 ,
and answer is at http://lkml.org/lkml/2007/10/2/56 .

> If so, is this to interactively determine from the user or admin whether 
> the packet should be accepted/denied for the receiving process?
Yes, it is to determine whether the packet should be accepted/denied
based on the receiving process (like what anti-virus software's firewall does).

Regards.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

References:
- [TOMOYO 00/15](repost) TOMOYO Linux - MAC based on process invocation history.
  - From: Kentaro Takeda <[email protected]>
- [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.
  - From: Kentaro Takeda <[email protected]>
- Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.
  - From: James Morris <[email protected]>

Prev by Date: Re: 2.6.23-rc8-mm2 - tcp_fastretrans_alert() WARNING
Next by Date: Re: [PATCH 4/5] writeback: remove pages_skipped accounting in __block_write_full_page()
Previous by thread: Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.
Next by thread: [TOMOYO 15/15](repost) Kconfig and Makefile for TOMOYO Linux.
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]