From mboxrd@z Thu Jan 1 00:00:00 1970 From: ebiederm@xmission.com (Eric W. Biederman) Subject: Re: [RFC][PATCH] Unprivileged: Disable acquisition of privileges Date: Tue, 29 Dec 2009 20:33:10 -0800 Message-ID: References: <20091229050114.GC14362@heat> <20091229151146.GA32153@us.ibm.com> <3e8340490912290805s103fb789y13acea4a84669b20@mail.gmail.com> <20091229211139.0732a0c1@lxorguk.ukuu.org.uk> <20091229223631.GB22578@us.ibm.com> <3e8340490912291954v5a837a26p64bd776102d281d7@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: "Serge E. Hallyn" , Alan Cox , Benny Amorsen , Michael Stone , linux-kernel@vger.kernel.org, netdev@vger.kernel.org, linux-security-module@vger.kernel.org, Andi Kleen , David Lang , Oliver Hartkopp , Herbert Xu , Valdis Kletnieks , Evgeniy Polyakov , "C. Scott Ananian" , James Morris , Bernie Innocenti , Mark Seaborn , Randy Dunlap , =?iso-8859-1?Q?Am=E9rico?= Wang , Tetsuo Handa , Samir Bellabes , Casey Schaufler , Pavel Machek , To: Bryan Donlan Return-path: In-Reply-To: <3e8340490912291954v5a837a26p64bd776102d281d7@mail.gmail.com> (Bryan Donlan's message of "Tue\, 29 Dec 2009 22\:54\:59 -0500") Sender: linux-kernel-owner@vger.kernel.org List-Id: netdev.vger.kernel.org Bryan Donlan writes: > Is this sufficient for other security models such as selinux or > TOMOYO? Can processes in these models gain privileges through means > not restricted here? The LSM is primarily about returning -EPERM more often. Except for the prctl and the capability hooks I am not aware of anywhere a LSM can increase a processes capabilities. > Also, perhaps there should be a corresponding GET prctl? Probably for the final version. Eric