On Tue, Oct 29, 2002 at 05:52:23PM -0500, Jacques Gelinas wrote: > On Tue, 29 Oct 2002 12:41:20 -0500, Dave wrote > > > For example I don't mind if the context has to be fixed for each > > vserver, if this was the price for not having to patch userland tools. > > If we combine the 16bit uid + 16bit context, there're still 64K servers > > to be created before we run out of "virtuals" on the same machine. > > Right? > > Btw, for those who want to play with special context (assigned by hand), > I can change the kernel so on-the-fly security context are allocated > from 1000 and up making sure the one you have select by hand will only > be used by this vserver.
that is a good idea, except that I would prefer to change the bias of the dynamic contexts (at compile or even better at runtime) best, Herbert
