[PATCH] LSPP audit enablement: storing selinux ocontext and scontext

Steve Grubb sgrubb at redhat.com
Thu Jul 28 14:49:32 UTC 2005

Previous message (by thread): [PATCH] LSPP audit enablement: storing selinux ocontext and scontext
Next message (by thread): [PATCH] LSPP audit enablement: storing selinux ocontext and scontext
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Monday 25 July 2005 14:28, Dustin Kirkland wrote:
> Bugs in the patch?  I don't doubt you, I'm just curious...  Can you
> cite?

Another issue...the patch is too eager to call audit_panic(). It is more 
correct to fail the syscall and let the app handle failure than bring the 
machine to its knees.

-Steve

Previous message (by thread): [PATCH] LSPP audit enablement: storing selinux ocontext and scontext
Next message (by thread): [PATCH] LSPP audit enablement: storing selinux ocontext and scontext
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Linux-audit mailing list