Re: [PATCH][SELINUX] 3/7 Add node controls
From: James Morris (jmorris_at_redhat.com)
Date: 01/09/04
- Previous message: Maciej Zenczykowski: "Re: [PATCH][RFC] invalid ELF binaries can execute - better sanity checking"
- In reply to: Arkadiusz Miskiewicz: "Re: [PATCH][SELINUX] 3/7 Add node controls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 9 Jan 2004 15:17:40 -0500 (EST) To: Arkadiusz Miskiewicz <arekm@pld-linux.org>
On Fri, 9 Jan 2004, Arkadiusz Miskiewicz wrote:
> > Like the previous patch, similar functionality was present in earlier
> > SELinux implementations; this is a rework within the constraints of the
> > LSM hooks present in the mainline kernel.
> But only for IPv4 right? What about IPv6 part - is SELinux able to deal with
> IPv6 at all?
Not at this level yet. There are socket controls which provide coverage
all protocols, and finer grained controls for IPv4 and Unix. Duplication
of the IPv4-specific controls for IPv6 is expected to be implemented soon.
- James
-- James Morris <jmorris@redhat.com> - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
- Previous message: Maciej Zenczykowski: "Re: [PATCH][RFC] invalid ELF binaries can execute - better sanity checking"
- In reply to: Arkadiusz Miskiewicz: "Re: [PATCH][SELINUX] 3/7 Add node controls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
