| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 3 Mar 2017 08:56:40 +0100
From: Richard Weinberger <richard@....at>
To: Hyunchul Lee <hyc.lee@...il.com>
Cc: kernel-team@....com, Artem Bityutskiy <dedekind1@...il.com>,
adrian.hunter@...el.com, linux-kernel@...r.kernel.org,
linux-fsdevel@...r.kernel.org, linux-mtd@...ts.infradead.org,
Hyunchul Lee <cheol.lee@....com>
Subject: Re: [PATCH] ubifs: add CONFIG_UBIFS_FS_SECURITY to disable/enable
security labels
Hyunchul Lee,
Am 03.03.2017 um 08:44 schrieb Hyunchul Lee:
> From: Hyunchul Lee <cheol.lee@....com>
>
> When write syscall is called, every time security label is searched to
> determine that file's privileges should be changed.
> If LSM(Linux Security Model) is not used, this is useless.
>
> So introduce CONFIG_UBIFS_SECURITY to disable security labels. it's default
> value is "y".
Can you please explain what the benefit is and why UBIFS needs this (and why not
all other filesystems)?
I guess some performance issue, do you have numbers?
Thanks,
//richard
Powered by blists - more mailing lists