messages from 2017-04-09 11:10:10 to 2017-04-20 14:37:37 UTC [more...]
[PATCH 0/6] Appended signatures support for IMA appraisal
2017-04-20 14:37 UTC (11+ messages)
` [PATCH 1/6] integrity: Small code improvements
` [PATCH 2/6] ima: Tidy up constant strings
` [PATCH 3/6] ima: Simplify policy_func_show
` [PATCH 4/6] ima: Log the same audit cause whenever a file has no signature
` [PATCH 5/6] MODSIGN: Export module signature definitions
` [PATCH 6/6] ima: Support appended signatures for appraisal
[PATCH] KEYS: fix dereferencing NULL payload with nonzero length
2017-04-20 12:57 UTC (3+ messages)
` [lkp-robot] [KEYS] bdf7c0f8bf: ltp.add_key02.fail
` [LTP] "
[PATCH v3 0/2] modules:capabilities: automatic module loading restrictions
2017-04-20 12:44 UTC (11+ messages)
` [PATCH v3 1/2] modules:capabilities: automatic module loading restriction
` [kernel-hardening] "
` [PATCH v3 2/2] modules:capabilities: add a per-task modules autoload restriction
[PATCH 0/3] Extend the vTPM proxy driver to pass locality to emulator
2017-04-20 11:58 UTC (8+ messages)
` [PATCH 1/3] tpm: vtpm_proxy: Add ioctl to get supported flags
` [PATCH 2/3] tpm: vtpm_proxy: Implement request_locality
` [PATCH 3/3] tpm: vtpm_proxy: Add ioctl to request locality prepended to command
[PATCH 00/38] Annotate hw config module params for future lockdown
2017-04-20 7:31 UTC (30+ messages)
` [PATCH 02/38] Annotate hardware config module parameters in arch/x86/mm/
` [PATCH 06/38] Annotate hardware config module parameters in drivers/clocksource/
` [PATCH 07/38] Annotate hardware config module parameters in drivers/cpufreq/
` [PATCH 09/38] Annotate hardware config module parameters in drivers/i2c/
` [PATCH 13/38] Annotate hardware config module parameters in drivers/media/
` [PATCH 18/38] Annotate hardware config module parameters in drivers/net/can/
` [PATCH 28/38] Annotate hardware config module parameters in drivers/staging/media/
` [PATCH 32/38] Annotate hardware config module parameters in drivers/video/
[GIT PULL] Bugfixes for the Keys subsystem
2017-04-20 5:33 UTC
[PATCH] make TIOCSTI ioctl require CAP_SYS_ADMIN
2017-04-20 4:44 UTC (9+ messages)
[PATCH net-next v6 00/11] Landlock LSM: Toward unprivileged sandboxing
2017-04-20 1:54 UTC (45+ messages)
` [PATCH net-next v6 01/11] bpf: Add eBPF program subtype and is_valid_subtype() verifier
` [PATCH net-next v6 02/11] bpf, landlock: Define an eBPF program type for Landlock
` [PATCH net-next v6 02/11] bpf,landlock: "
` [PATCH net-next v6 04/11] landlock: Add LSM hooks related to filesystem
` [kernel-hardening] "
` [PATCH net-next v6 05/11] seccomp: Split put_seccomp_filter() with put_seccomp()
` [PATCH net-next v6 06/11] seccomp, landlock: Handle Landlock events per process hierarchy
` [kernel-hardening] [PATCH net-next v6 06/11] seccomp,landlock: "
` "
` [PATCH net-next v6 07/11] landlock: Add ptrace restrictions
` [kernel-hardening] "
` [PATCH net-next v6 08/11] bpf: Add a Landlock sandbox example
` [PATCH net-next v6 09/11] seccomp: Enhance test_harness with an assert step mechanism
` [PATCH net-next v6 10/11] bpf,landlock: Add tests for Landlock
SELinux "filtering" capabilities?
2017-04-19 17:55 UTC (3+ messages)
[PATCH] Introduce v3 namespaced file capabilities
2017-04-19 16:48 UTC
[backport v4.9] tpm_tis: use default timeout value if chip reports it as zero
2017-04-19 15:38 UTC (6+ messages)
` [tpmdd-devel] "
[PATCH] tpm: Fix reference count to main device
2017-04-19 15:30 UTC (2+ messages)
[GIT PULL] IMA patches for 4.12
2017-04-19 12:06 UTC (2+ messages)
[PULL] Smack changes for 4.12
2017-04-18 22:34 UTC (2+ messages)
[GIT PULL] SELinux patches for 4.12
2017-04-18 22:32 UTC (2+ messages)
[PATCH 09/24] kexec_file: Disable at runtime if securelevel has been set
2017-04-18 17:50 UTC (45+ messages)
` [PATCH 00/24] Kernel lockdown
` [PATCH 06/24] Add a sysrq option to exit secure boot mode
` [PATCH 11/24] uswsusp: Disable when the kernel is locked down
` [PATCH 12/24] PCI: Lock down BAR access "
` [PATCH 13/24] x86: Lock down IO port "
` [PATCH 14/24] x86: Restrict MSR "
` [PATCH 15/24] asus-wmi: Restrict debugfs interface "
` [PATCH 20/24] bpf: Restrict kernel image access functions "
` Why kernel lockdown?
Patchset to Restrict Unprivileged TIOCSTI TTY Command Injection
2017-04-18 15:49 UTC (13+ messages)
` [PATCH 1/4] added SECURITY_TIOCSTI_RESTRICT kernel config
` [kernel-hardening] "
` [PATCH 2/4] add tiocsti_restrict variable
` [PATCH 3/4] restrict unprivileged TIOCSTI tty ioctl
` [kernel-hardening] "
` [PATCH 4/4] added kernel.tiocsti_restrict sysctl
[PATCH v4 2/6] usb: fix some references for /proc/bus/usb
2017-04-18 14:51 UTC (3+ messages)
[tpmdd-devel] Intel NUC and fTPM issue on 4.9.2
2017-04-18 14:49 UTC
[GIT PULL] KEYS: Blacklisting, restrictions and DH
2017-04-17 21:38 UTC (2+ messages)
No subject
2017-04-16 15:11 UTC
[PATCH 00/12] Delete CURRENT_TIME, CURRENT_TIME_SEC and current_fs_time
2017-04-15 10:29 UTC (8+ messages)
` [PATCH 06/12] audit: Use timespec64 to represent audit timestamps
` [PATCH 07/12] fs: btrfs: Use ktime_get_real_ts for root ctime
Greetings
2017-04-14 9:19 UTC
[PATCH] capabilities: do not audit log BPRM_FCAPS on set*id
2017-04-13 19:36 UTC (8+ messages)
[PATCH] selinux: add selinux_is_enforced() function
2017-04-13 0:12 UTC (14+ messages)
[PATCH RFC v2 0/3] security: Add ModAutoRestrict LSM
2017-04-12 20:41 UTC (19+ messages)
` [PATCH RFC v2 1/3] LSM: Allow per LSM module per "struct task_struct" blob
` [kernel-hardening] "
` [PATCH RFC v2 2/3] security: add the ModAutoRestrict Linux Security Module
[PATCH] selinux: add selinux_status_get_seq() function
2017-04-12 12:31 UTC (3+ messages)
[PATCH RFC 00/11] LSM: Stacking for major security modules
2017-04-10 22:07 UTC (3+ messages)
` [PATCH RFC 04/11] LSM: general but not extreme module stacking
Out this week
2017-04-10 10:47 UTC
[PATCH 00/24] Kernel lockdown
2017-04-07 15:59 UTC
[PATCH 20/24] bpf: Restrict kernel image access functions when the kernel is locked down
2017-04-06 12:29 UTC
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).