Re: Paris MiniDebConf Minutes

To: debian-kernel@lists.debian.org
Subject: Re: Paris MiniDebConf Minutes
From: Kees Cook <kees@debian.org>
Date: Mon, 8 Nov 2010 12:31:15 -0800
Message-id: <[🔎] 20101108203115.GP5876@outflux.net>
In-reply-to: <[🔎] 1289082187.2816.0.camel@localhost>

Hi,

On Sat, 2010-11-06 at 22:23 +0000, Ben Hutchings wrote:
> On Sun, 2010-11-07 at 03:43 +0530, Ritesh Raj Sarraf wrote:
> > The wiki lists most items marked as done. I am just curious to know what
> > the decision has been made for AppArmor. Will it be enabled ?
>
> Only if we can find a way to make it modular or discardable.

Hm? LSMs cannot be made modular. AppArmor is upstream already, so the
question on the agenda was to add back the old-style interface methods
and network mediation (so the userspace tools will work sanely). The
desired LSM is selected at boot-time, so that's highly "discardable". :)
The agenda item wasn't asking for it to be the default LSM, just to be
available at all.

Thanks,

-Kees

-- 
Kees Cook                                            @debian.org

Reply to:

Follow-Ups:
- Re: Paris MiniDebConf Minutes
  - From: Ben Hutchings <ben@decadent.org.uk>

References:
- Re: Paris MiniDebConf Minutes
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Bug#602846: linux-image-2.6.36-trunk-686: Intel Pro/1000 (82573L) e1000e crashing under constant load
Next by Date: Processed: your mail
Previous by thread: Re: Paris MiniDebConf Minutes
Next by thread: Re: Paris MiniDebConf Minutes
Index(es):
- Date
- Thread