Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1754704AbXKEG4U (ORCPT ); Mon, 5 Nov 2007 01:56:20 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1751458AbXKEG4L (ORCPT ); Mon, 5 Nov 2007 01:56:11 -0500 Received: from twinlark.arctic.org ([207.29.250.54]:55166 "EHLO twinlark.arctic.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751267AbXKEG4K (ORCPT ); Mon, 5 Nov 2007 01:56:10 -0500 Message-ID: <472EBE87.1050106@kernel.org> Date: Sun, 04 Nov 2007 22:56:07 -0800 From: Andrew Morgan User-Agent: Thunderbird 1.5.0.12 (X11/20071020) MIME-Version: 1.0 To: Peter Dolding CC: casey@schaufler-ca.com, Toshiharu Harada , Crispin Cowan , linux-kernel@vger.kernel.org, linux-security-module@vger.kernel.org Subject: Re: Linux Security *Module* Framework (Was: LSM conversion to static interface) References: <832119.21078.qm@web36614.mail.mud.yahoo.com> In-Reply-To: X-Enigmail-Version: 0.94.4.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 2374 Lines: 64 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Peter Dolding wrote: > On 11/1/07, Casey Schaufler wrote: >> --- Peter Dolding wrote: >> Posix capabilities predate SELinux. SELinux is not interested in >> Posix capabilities. >> >>> But no IBM had to do it. >> Err, no. It was done by Andrew Morgan back in the dark ages. >> Why on earth do you think IBM did it? > > Posix file capabilities the option to replace SUID bit with something > more security safe only handing out segments of root power instead of > the complete box and dice like SUID. Even different on a user by user > base. > > Posix capabilites is what Posix file capabilities is based on. Yes I > know the words appear close. The word file is important. Please read > Website. http://www.ibm.com/developerworks/linux/library/l-posixcap.html For the record, I think you are both right. I took a stab at it back when Casey and I first met: ftp://ftp.kernel.org/pub/linux/libs/security/linux-privs/old/kernel-2.4-fcap/README all that stuff worked fine it was just a bit ahead of its time... - From memory, at that point in time "extended attributes" were an external patch, and having some trouble getting merged. My sense was that EA was a pre-requisite and I was happy to wait for that support to become integrated before pushing my file capability support. In the midst of all this LSM emerged as a reaction to Linus' clear unhappiness about all extensions security. I didn't have the time to participate in the LSM, and my work sat in the form of these patches. SELinux at that time existed as a separate infrastructure, and evidently did have the time to embrace LSM. > IBM coders worked and got it into the main line really recently to > provide at least some way to avoid fault of SUID of course it could [...] So, yes, IBM (Serge) deserve full credit for starting over, and getting it merged... Cheers Andrew -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFHLr6EQheEq9QabfIRAsOrAJ9XzTL0Lqm5jaxwO6UoPB9Pwh3SzQCfVWFd cPyjsGp/s6D6HuBE6M4NJH0= =G/ah -----END PGP SIGNATURE----- - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/