[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20060824140043.GL28594@kvack.org>
Date: Thu, 24 Aug 2006 10:00:43 -0400
From: Benjamin LaHaise <bcrl@...ck.org>
To: "Serge E. Hallyn" <serue@...ibm.com>
Cc: "Serge E. Hallyn" <sergeh@...ibm.com>,
Alan Cox <alan@...rguk.ukuu.org.uk>, kjhall@...ibm.com,
linux-kernel <linux-kernel@...r.kernel.org>,
LSM ML <linux-security-module@...r.kernel.org>,
David Safford <safford@...ibm.com>,
Mimi Zohar <zohar@...ibm.com>
Subject: Re: [PATCH 3/7] SLIM main patch
On Thu, Aug 24, 2006 at 08:58:03AM -0500, Serge E. Hallyn wrote:
> Still not certain this is needed. If you were able to write data to a
> pipe, then even though data may be in the buffer, the other end
> shouldn't be able to read it if it's own level were changed.
Then what is the benefit of the supposed revoke if it can be trivially
bypassed? Security has not been improved. It is better not to provide
a supposed feature than to offer it up so riddled with holes as to make
it pointless.
-ben
--
"Time is of no importance, Mr. President, only life is important."
Don't Email: <dont@...ck.org>.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists