[prev in list] [next in list] [prev in thread] [next in thread]
List: selinux
Subject: Re: [RFC]integrity: SELinux patch
From: Mimi Zohar <zohar () linux ! vnet ! ibm ! com>
Date: 2007-07-18 21:33:22
Message-ID: 1184794402.10771.6.camel () localhost ! localdomain
[Download RAW message or body]
On Tue, 2007-07-17 at 10:44 -0400, James Morris wrote:
> On Mon, 16 Jul 2007, Mimi Zohar wrote:
>
> > This is a first attempt to verify and measure file integrity, by
> > adding the new Linux Integrity Modules(LIM) API calls to SElinux.
> > We are planning on posting the corresponding LIM and IMA patches to
> > LKML, but would like comments/suggestions here first, particularly
> > in regards to the policy checking code in selinux_measure() called
> > from selinux_inode_permission().
>
> Can you please post the integrity code being called? (Perhaps I missed it,
> or should we look at your older patches?)
Based on comments here on the selinux mailing list, I need to make some
additional changes to the LIM patches (i.e use audit). So I'll post the
current set of LIM patches here.
Mimi
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic