[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-Id: <200710030649.GJE84023.QtFSLOVJMOHOFF@I-love.SAKURA.ne.jp>
Date: Wed, 3 Oct 2007 06:49:06 +0900
From: Tetsuo Handa <penguin-kernel@...ove.SAKURA.ne.jp>
To: jmorris@...ei.org
Cc: linux-kernel@...r.kernel.org,
linux-security-module@...r.kernel.org, chrisw@...s-sol.org,
davem@...emloft.net
Subject: Re: [TOMOYO 14/15](repost) LSM expansion for TOMOYO Linux.
Hello.
Thank you for your comment.
James Morris wrote:
> I'm guessing you need this to determine the receiving process, rather than
> the socket (which is available via security_sock_rcv_skb()).
Use of security_sock_rcv_skb() was discussed at http://lkml.org/lkml/2007/8/28/74 ,
and answer is at http://lkml.org/lkml/2007/10/2/56 .
> If so, is this to interactively determine from the user or admin whether
> the packet should be accepted/denied for the receiving process?
Yes, it is to determine whether the packet should be accepted/denied
based on the receiving process (like what anti-virus software's firewall does).
Regards.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists