lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Fri, 3 Mar 2017 08:56:40 +0100 From: Richard Weinberger <richard@....at> To: Hyunchul Lee <hyc.lee@...il.com> Cc: kernel-team@....com, Artem Bityutskiy <dedekind1@...il.com>, adrian.hunter@...el.com, linux-kernel@...r.kernel.org, linux-fsdevel@...r.kernel.org, linux-mtd@...ts.infradead.org, Hyunchul Lee <cheol.lee@....com> Subject: Re: [PATCH] ubifs: add CONFIG_UBIFS_FS_SECURITY to disable/enable security labels Hyunchul Lee, Am 03.03.2017 um 08:44 schrieb Hyunchul Lee: > From: Hyunchul Lee <cheol.lee@....com> > > When write syscall is called, every time security label is searched to > determine that file's privileges should be changed. > If LSM(Linux Security Model) is not used, this is useless. > > So introduce CONFIG_UBIFS_SECURITY to disable security labels. it's default > value is "y". Can you please explain what the benefit is and why UBIFS needs this (and why not all other filesystems)? I guess some performance issue, do you have numbers? Thanks, //richard
Powered by blists - more mailing lists