On Sep 18, 2007, at 07:25:28, Tetsuo Handa wrote:
Kyle Moffett wrote:
This is probably not acceptable; I doubt there's a chance in hell
that TOMOYO will get merged as long as it has text-based-language
parsing in the kernel. You also have $NEW_RANDOM_ABUSE_OF_PROCFS
and $PATH_BASED_LSM_ISSUES. See the long flamewars on AppArmor
for discussion on the latter.
Regarding /proc/tomoyo , this is not a big problem. It will be
possible to create a dedicated filesystem after all other
remaining problems are solved.
Today, I found that I can use securityfs instead of procfs.
Creating entry inside securityfs is more preferable way than
developing a dedicated filesystem, am I right?
Yes, that's what securityfs is there for. Be mindful, though, that
adding a text-based-language parser into securityfs is just as
unacceptable as adding a text-based-language parser to procfs.
Cheers,
Kyle Moffett
-
To unsubscribe from this list: send the line "unsubscribe
linux-security-module" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html
