On Friday, August 24 2007 8:58:28 am Kentaro Takeda wrote:
LSM hooks for network accept and recv:
* socket_post_accept is modified to return int.
This has been discussed several times on various lists and is not considered
an acceptable solution to blocking incoming stream connection
On Mon, Aug 27, 2007 at 10:09:42AM -0500, Serge E. Hallyn wrote:
Quoting Adrian Bunk ([EMAIL PROTECTED]):
On Fri, Aug 24, 2007 at 08:50:10PM -0700, Andrew Morgan wrote:
FWIW, in the mm kernel, I've actually already removed them when one
configures without capabilities.
Quoting Adrian Bunk ([EMAIL PROTECTED]):
On Mon, Aug 27, 2007 at 10:09:42AM -0500, Serge E. Hallyn wrote:
Quoting Adrian Bunk ([EMAIL PROTECTED]):
On Fri, Aug 24, 2007 at 08:50:10PM -0700, Andrew Morgan wrote:
FWIW, in the mm kernel, I've actually already removed them when one
* Casey Schaufler [EMAIL PROTECTED] [2007-08-27 22:51]:
Smack is the Simplified Mandatory Access Control Kernel.
Smack implements mandatory access control (MAC) using labels
attached to tasks and data containers, including files, SVIPC,
and other tasks. Smack is a kernel based scheme that