--- Tetsuo Handa [EMAIL PROTECTED] wrote:
Hello.
Patrick McHardy wrote:
Quoting Tetsuo:
So, my approach is not using security context associated with a socket
but security context associated with a process.
Isn't the socket context derived from the process context?
Not so
On Sat, 21 Jul 2007, Tetsuo Handa wrote:
I can't use netfilter infrastructure because
it is too early to know who the recipant process of the packet is.
I think the way forward on this is to re-visit the idea of providing a
proper solution for the incoming packet/user match problem.
I posted
James Morris wrote:
On Sat, 21 Jul 2007, Tetsuo Handa wrote:
I can't use netfilter infrastructure because
it is too early to know who the recipant process of the packet is.
I think the way forward on this is to re-visit the idea of providing a
proper solution for the incoming