RE: [RFC v3 0/2] WhiteEgret LSM module

2018-04-12 Thread shinya1.takumi
> Do you have a target date for posting that? Yes, we have the target date. We will submit WhiteEgret v4 by September. > So you have a design for being able to differentiate the interpreters > reading versus reading with the intent to execute? > With or without their help? We will provide WEUA

RE: [RFC v3 0/2] WhiteEgret LSM module

2018-04-12 Thread shinya1.takumi
> Do you have a target date for posting that? Yes, we have the target date. We will submit WhiteEgret v4 by September. > So you have a design for being able to differentiate the interpreters > reading versus reading with the intent to execute? > With or without their help? We will provide WEUA

Re: [RFC v3 0/2] WhiteEgret LSM module

2018-04-08 Thread Serge E. Hallyn
Quoting shinya1.tak...@toshiba.co.jp (shinya1.tak...@toshiba.co.jp): > I am one of developers of WhiteEgret. > > > regardling the last one, do you have a plan for handling it? > Yes, we have a plan to release WhiteEgret v4 patch with a WEUA sample of > access control for script programs. Do you

Re: [RFC v3 0/2] WhiteEgret LSM module

2018-04-08 Thread Serge E. Hallyn
Quoting shinya1.tak...@toshiba.co.jp (shinya1.tak...@toshiba.co.jp): > I am one of developers of WhiteEgret. > > > regardling the last one, do you have a plan for handling it? > Yes, we have a plan to release WhiteEgret v4 patch with a WEUA sample of > access control for script programs. Do you

RE: [RFC v3 0/2] WhiteEgret LSM module

2018-04-05 Thread shinya1.takumi
alf Of Serge E. Hallyn Sent: Monday, April 2, 2018 5:08 AM To: koike masanobu(小池 正修 TDSL (ISEC)[SEC運]) <masanobu2.ko...@toshiba.co.jp> Cc: jmor...@namei.org; se...@hallyn.com; linux-security-mod...@vger.kernel.org; linux-kernel@vger.kernel.org Subject: Re: [RFC v3 0/2] WhiteEgret LSM module

RE: [RFC v3 0/2] WhiteEgret LSM module

2018-04-05 Thread shinya1.takumi
alf Of Serge E. Hallyn Sent: Monday, April 2, 2018 5:08 AM To: koike masanobu(小池 正修 TDSL (ISEC)[SEC運]) Cc: jmor...@namei.org; se...@hallyn.com; linux-security-mod...@vger.kernel.org; linux-kernel@vger.kernel.org Subject: Re: [RFC v3 0/2] WhiteEgret LSM module Quoting Masanobu Koike (masanobu2

Re: [RFC v3 0/2] WhiteEgret LSM module

2018-04-01 Thread Serge E. Hallyn
Quoting Masanobu Koike (masanobu2.ko...@toshiba.co.jp): ... > Assumptions and ToDos > > At this stage, WhiteEgret assumes the following. > Relaxing these assumptions are future works. > - Root is not compromised. And using a whitelist and a WEUA > requires root privilege. > - WEUA is reliable. >

Re: [RFC v3 0/2] WhiteEgret LSM module

2018-04-01 Thread Serge E. Hallyn
Quoting Masanobu Koike (masanobu2.ko...@toshiba.co.jp): ... > Assumptions and ToDos > > At this stage, WhiteEgret assumes the following. > Relaxing these assumptions are future works. > - Root is not compromised. And using a whitelist and a WEUA > requires root privilege. > - WEUA is reliable. >