From: "David S. Miller" <davem@redhat.com>
To: jmorris@intercode.com.au
Cc: kuznet@ms2.inr.ac.ru, netdev@oss.sgi.com,
linux-security-module@wirex.com
Subject: Re: [PATCH] LSM networking: tcp hooks for 2.5.59 (8/8)
Date: Thu, 30 Jan 2003 15:25:58 -0800 (PST) [thread overview]
Message-ID: <20030130.152558.81554884.davem@redhat.com> (raw)
In-Reply-To: <Pine.LNX.4.44.0301311017140.31802-100000@blackbird.intercode.com.au>
No, no, and no.
This stuff will not pass.
There is no way in hell we're going to insert this security crap into
the actual protocol implementations. I was right in seeing this as a
virus that will eventually infect the whole tree.
None of these security modules should know jack anything about open
requests and other TCP internals.
This stuff is totally unmaintainable garbage. And I do not want to
hear "well how can we implement xxx which we need for yyy" because it
isn't my problem that you can't figure out a clean way to do this
stuff.
Linus would similarly barf if he was given a patch that added
hooks like "security_ext2_foo()".
I totally reject this networking security stuff for 2.6.x
next prev parent reply other threads:[~2003-01-30 23:25 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-01-30 22:42 [PATCH] LSM networking: introduction (0/8) James Morris
2003-01-30 22:46 ` [PATCH] LSM networking: kconfig (1/8) James Morris
2003-01-30 22:51 ` [PATCH] LSM networking: netdev hooks for 2.5.59 (2/8) James Morris
2003-01-30 22:56 ` [PATCH] LSM networking: skb hooks for 2.5.59 (3/8) James Morris
2003-01-30 23:01 ` [PATCH] LSM networking: socket hooks for 2.5.59 (4/8) James Morris
2003-01-30 23:06 ` [PATCH] LSM networking: ipv4 hooks for 2.5.59 (5/8) James Morris
2003-01-30 23:10 ` [PATCH] LSM networking: netlink hooks for 2.5.59 (6/8) James Morris
2003-01-30 23:17 ` [PATCH] LSM networking: af_unix hooks for 2.5.59 (7/8) James Morris
2003-01-30 23:22 ` [PATCH] LSM networking: tcp hooks for 2.5.59 (8/8) James Morris
2003-01-30 23:25 ` David S. Miller [this message]
2003-01-31 0:15 ` James Morris
2003-01-31 0:16 ` David S. Miller
2003-02-01 0:12 ` James Morris
2003-01-30 23:19 ` [PATCH] LSM networking: netlink hooks for 2.5.59 (6/8) David S. Miller
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20030130.152558.81554884.davem@redhat.com \
--to=davem@redhat.com \
--cc=jmorris@intercode.com.au \
--cc=kuznet@ms2.inr.ac.ru \
--cc=linux-security-module@wirex.com \
--cc=netdev@oss.sgi.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).