Re: realtime-lsm and Debian kernel

To: Christoph Hellwig <hch@lst.de>
Cc: Geiger Guenter <geiger@master.debian.org>, debian-kernel@lists.debian.org
Subject: Re: realtime-lsm and Debian kernel
From: Horms <horms@debian.org>
Date: Wed, 12 Oct 2005 16:27:11 +0900
Message-id: <[🔎] 20051012072709.GG2929@verge.net.au>
Mail-followup-to: Christoph Hellwig <hch@lst.de>, Geiger Guenter <geiger@master.debian.org>, debian-kernel@lists.debian.org
In-reply-to: <[🔎] 20051011112727.GA8167@lst.de>
References: <[🔎] 20051011112420.GA14796@master.debian.org> <[🔎] 20051011112727.GA8167@lst.de>

On Tue, Oct 11, 2005 at 01:27:27PM +0200, Christoph Hellwig wrote:
> On Tue, Oct 11, 2005 at 06:24:20AM -0500, Geiger Guenter wrote:
> > This means that it has to be dropped. Thats ok with me, it means less
> > work. What was the reason again for not including the capabilities as
> > a module ?
> 
> Making Security modules actually modular means they don't have the full
> view of the process and generally is a bad idea.  For the specific case
> of capabilities there even was an exploit in the past.  If we want to
> support a given security module in debian we should compile it into the
> kernel statically.

If I recall, lsm wasn't well recieved upstream, in which case
dropping it is probably a good idea anyway.

-- 
Horms

Reply to:

References:
- Re: realtime-lsm and Debian kernel
  - From: Geiger Guenter <geiger@master.debian.org>
- Re: realtime-lsm and Debian kernel
  - From: Christoph Hellwig <hch@lst.de>

Prev by Date: CONFIG_SCSI_QLA2XXX
Next by Date: Re: Bug#331391: Re: ftpmaster: Please remove 2.6.8 kernel images
Previous by thread: Re: realtime-lsm and Debian kernel
Next by thread: Re: realtime-lsm and Debian kernel
Index(es):
- Date
- Thread