Re: [PATCH] [request for inclusion] Realtime LSM
From: Alan Cox (alan_at_lxorguk.ukuu.org.uk)
Date: 01/07/05
- Previous message: Alan Cox: "Re: [PATCH] kernel/printk.c lockless access"
- In reply to: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
- Next in thread: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
- Reply: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: Matt Mackall <mpm@selenic.com> Date: Fri, 07 Jan 2005 01:55:09 +0000
On Gwe, 2005-01-07 at 01:13, Matt Mackall wrote:
> You can't fix them without changing the semantics for existing users
> in ways they didn't expect. It could be done with a new personality flag,
> but..
I disagree. At the most trivial you could just add another 32bits of
sticky capability that are never touched by setuid/non-setuidness and
represent additional "user" (or more rightly session) abilities to do
limited overrides
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- Previous message: Alan Cox: "Re: [PATCH] kernel/printk.c lockless access"
- In reply to: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
- Next in thread: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
- Reply: Matt Mackall: "Re: [PATCH] [request for inclusion] Realtime LSM"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
