Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1750955AbWC2STS (ORCPT ); Wed, 29 Mar 2006 13:19:18 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1750956AbWC2STS (ORCPT ); Wed, 29 Mar 2006 13:19:18 -0500 Received: from 216-99-217-87.dsl.aracnet.com ([216.99.217.87]:5762 "EHLO sorel.sous-sol.org") by vger.kernel.org with ESMTP id S1750922AbWC2STR (ORCPT ); Wed, 29 Mar 2006 13:19:17 -0500 Date: Wed, 29 Mar 2006 10:20:27 -0800 From: Chris Wright To: Sam Vilain Cc: "Eric W. Biederman" , Nick Piggin , Herbert Poetzl , Bill Davidsen , Linux Kernel ML Subject: Re: [RFC] Virtualization steps Message-ID: <20060329182027.GB14724@sorel.sous-sol.org> References: <44242A3F.1010307@sw.ru> <44242D4D.40702@yahoo.com.au> <1143228339.19152.91.camel@localhost.localdomain> <4428BB5C.3060803@tmr.com> <20060328085206.GA14089@MAIL.13thfloor.at> <4428FB29.8020402@yahoo.com.au> <20060328142639.GE14576@MAIL.13thfloor.at> <44294BE4.2030409@yahoo.com.au> <442A26E9.20608@vilain.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <442A26E9.20608@vilain.net> User-Agent: Mutt/1.4.2.1i Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 577 Lines: 14 * Sam Vilain (sam@vilain.net) wrote: > This raises a very interesting question. All those LSM globals, > shouldn't those be virtualisable, too? After all, isn't it natural to > want to apply a different security policy to different sets of processes? Which globals? Policy could be informed by relevant containers. thanks, -chris - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/