Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for May 16, 2013
A look at the PyPy 2.0 release
PostgreSQL 9.3 beta: Federated databases and more
LWN.net Weekly Edition for May 9, 2013
(Nearly) full tickless operation in 3.10
SELinuxDenyPtrace and security by default
Posted Apr 12, 2012 15:44 UTC (Thu) by jake (editor, #205)
Yama is nice, for sure, but doesn't it run afoul of the 'no stacking LSMs' problem here? In order to load Yama by default, wouldn't Fedora have to disable SELinux by default? (some would, of course, claim that as a *good* thing, but it seems a little unlikely that Fedora would go that route)
or am I missing something here?
Posted Apr 12, 2012 15:58 UTC (Thu) by kees (subscriber, #27264)
My point being that if Eric Paris was going to write out-of-tree code to handle a case that Yama already handles, why not just use the out-of-tree stacking code instead, and gain all the dynamic policy logic that Yama already provides?
Let's not go that way
Posted Apr 15, 2012 9:48 UTC (Sun) by man_ls (subscriber, #15091)
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds