User-Agent: Microsoft-MacOutlook/14.12.0.110505
Date: Thu, 30 Jun 2011 14:06:39 -0700
Subject: Re: [PATCH v7 00/16] EVM 
From: Ryan Ware <ware@linux.intel.com>
To: Mimi Zohar <zohar@linux.vnet.ibm.com>,
        "linux-security-module@vger.kernel.org" 
	<linux-security-module@vger.kernel.org>
CC: <linux-kernel@vger.kernel.org>, <linux-fsdevel@vger.kernel.org>,
        James Morris <jmorris@namei.org>,
        David Safford <safford@watson.ibm.com>,
        Andrew Morton <akpm@linux-foundation.org>, Greg KH <greg@kroah.com>,
        Dmitry Kasatkin <dmitry.s.kasatkin@gmail.com>
Message-ID: <CA323325.7D40%ryan.r.ware@intel.com>
Thread-Topic: [PATCH v7 00/16] EVM 
In-Reply-To: <1309377038-4550-1-git-send-email-zohar@linux.vnet.ibm.com>
Mime-version: 1.0
Content-type: text/plain;
	charset="US-ASCII"
Content-transfer-encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Content-Length: 818
Lines: 22

Glad to see this going in Mimi!  Looking forward to enabling this in our
MeeGo kernels.

Ryan

On 6/29/11 12:50 PM, "Mimi Zohar" <zohar@linux.vnet.ibm.com> wrote:

>Discretionary Access Control(DAC) and Mandatory Access Control(MAC) can
>protect the integrity of a running system from unauthorized changes. When
>these protections are not running, such as when booting a malicious OS,
>mounting the disk under a different operating system, or physically moving
>the disk to another system, an "offline" attack is free to read and write
>file data/metadata.
>
>...snip...


--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/