[PATCH RFC] file capabilities: alter behavior of cap_setpcap

Andrew Morgan wrote: Serge E. Hallyn wrote: 0. fix the implementation of cap_setpcap. It is supposed to mean 'this process can raise capabilities, outside its permitted set, in _its own_ inheritable set'. I believe the attached patch does this. FWIW There is a mighty old (circa 1999)

Re: [RFC][PATCH] Simplified mandatory access control kernel implementation

--- Joshua Brindle [EMAIL PROTECTED] wrote: Casey Schaufler wrote: --- Joshua Brindle [EMAIL PROTECTED] wrote: Casey Schaufler wrote: --- Joshua Brindle [EMAIL PROTECTED] wrote: Casey Schaufler wrote: --- Joshua Brindle [EMAIL PROTECTED]

[PATCH][RFC] V2 Remove SELinux dependencies from linux-audit via LSM

From: Casey Schaufler [EMAIL PROTECTED] This patch interposes LSM interfaces between the audit system and SELinux. This helps make SELinux a cleaner LSM and clarifies the interfaces provided by the audit system. The audit system no longer requires SELinux functions or data structures, making it