[PATCH] LSM hooks for audit: msg#00033 linux.kernel.lsm

Hi,

Attached is a patch which provides LSM controls over actions related to
the new audit framework. As a specific example, we might like to have
an "audit role", enabled by selinux or some other LSM, which would be
the only role allowed to add or delete filter rules.

What do people think about adding these hooks, both in general and these
hooks specifically?

thanks,
-serge

--
=======================================================
Serge Hallyn
Security Software Engineer, IBM Linux Technology Center
serue@xxxxxxxxxx

audit-lsm.diff
Description: Text Data

<Prev in Thread]	Current Thread	[Next in Thread>

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Can't get it up: 00033, Arnulfo F. Simpson
Next by Date:	Re: [PATCH] LSM hooks for audit: 00033, Crispin Cowan
Previous by Thread:	Can't get it upi: 00033, Arnulfo F. Simpson
Next by Thread:	Re: [PATCH] LSM hooks for audit: 00033, Crispin Cowan
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Can't get it up: 00033, Arnulfo F. Simpson

Next by Date:

Re: [PATCH] LSM hooks for audit: 00033, Crispin Cowan

Previous by Thread:

Can't get it upi: 00033, Arnulfo F. Simpson

Next by Thread:

Re: [PATCH] LSM hooks for audit: 00033, Crispin Cowan

Indexes:

[Date] [Thread] [Top] [All Lists]