From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S932272Ab0CID7k (ORCPT ); Mon, 8 Mar 2010 22:59:40 -0500 Received: from smtp1.linux-foundation.org ([140.211.169.13]:46640 "EHLO smtp1.linux-foundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S932243Ab0CID7g (ORCPT ); Mon, 8 Mar 2010 22:59:36 -0500 Date: Mon, 8 Mar 2010 19:58:25 -0800 (PST) From: Linus Torvalds X-X-Sender: torvalds@localhost.localdomain To: Casey Schaufler cc: Rik van Riel , Alan Cox , Ingo Molnar , James Morris , linux-kernel@vger.kernel.org, Kyle McMartin , Alexander Viro Subject: Re: Upstream first policy In-Reply-To: <4B95BFF6.5060503@schaufler-ca.com> Message-ID: References: <20100308094647.GA14268@elte.hu> <20100308173008.7ae389ab@lxorguk.ukuu.org.uk> <4B9585BD.6070904@redhat.com> <4B958D7F.1030900@redhat.com> <4B95BFF6.5060503@schaufler-ca.com> User-Agent: Alpine 2.00 (LFD 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, 8 Mar 2010, Casey Schaufler wrote: > > Those of you who say we ought to come up with a single framework > that we can use to Do The Right Thing haven't been reading the code. > We have such a framework in the LSM. .. and people are also interested in using (and expanding) the 'notify' layer, probably because it is obviously designed for efficiently talking at a user-level program about the relevant accesses. Whether that is because they are just crazy ("malware detection") or whether it is an indication that the LSM layer and current security models are just not convenient enough, I dunno. And whether all that has anything to do with "Do The Rigth Thing" is obviously very much unclear, but the interest is clearly there. Linus