Re: Is CAP_SYS_ADMIN checked by every program !?
From: Bernd Eckenfels (ecki-news2004-12_at_lina.inka.de)
Date: 12/30/04
- Previous message: aryix: "dmesg: PCI interrupts are no longer routed automatically........."
- In reply to: Valdis.Kletnieks_at_vt.edu: "Re: Is CAP_SYS_ADMIN checked by every program !?"
- Next in thread: Tetsuo Handa: "Re: Is CAP_SYS_ADMIN checked by every program !?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: linux-kernel@vger.kernel.org Date: Thu, 30 Dec 2004 07:13:38 +0100
In article <200412300546.iBU5kVie023979@turing-police.cc.vt.edu> you wrote:
> If you actually log your kernel messages it can matter, if every single
> process suddenly starts dumping a line in your syslogs, especially on a
> busy system...
It does not, the patch is not part of the linux kernel. There is nothing
which is tracing permission checks.
Of course this might become interesting, if you want to do full audit log,
however the current functionality in the kernel infrastructure is not very
well suited for that, since you would habe to do stack analysis for
meaningful traces (like "who checked access permission, why")
Gruss
Bernd
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- Previous message: aryix: "dmesg: PCI interrupts are no longer routed automatically........."
- In reply to: Valdis.Kletnieks_at_vt.edu: "Re: Is CAP_SYS_ADMIN checked by every program !?"
- Next in thread: Tetsuo Handa: "Re: Is CAP_SYS_ADMIN checked by every program !?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
