On Friday, August 07, 2015 02:37:15 AM Richard Guy Briggs wrote: > On 15/08/06, Paul Moore wrote: > > > I guess what I'm saying is that I'm not currently convinced that > > there is enough value in this to offset the risk I feel the loop > > presents. I understand the use cases that you are mentioning, the > > are the same as the last time we discussed this, but I'm going to > > need something better than that. > > Can you better describe the loop that concerns you? I don't quite see > it.
It would be the only loop in the patch, look at the for loop in audit_filter_rules() which iterates up the process' parent chain. -- paul moore www.paul-moore.com -- Linux-audit mailing list [email protected] https://www.redhat.com/mailman/listinfo/linux-audit
