Linux security non-modules and AppArmor
Posted Jun 28, 2007 19:56 UTC (Thu) by i3839
In reply to: Linux security non-modules and AppArmor
Parent article: Linux security non-modules and AppArmor
What about replacing those indirect function pointer calls with that strange new "alernative" thing, patching the right call in when needed?
Sure, it's ugly, but if it's a real performance problem, then why not? Would mean that having LSM enabled without running any security module wouldn't cost anything either. Of course it isn't needed when LSM goes away, just an idea for when it isn't.
to post comments)