[RFC][PATCH 0/2] (#6 U2) filesystem auditing
Stephen Smalley
sds at tycho.nsa.gov
Tue Mar 29 16:50:47 UTC 2005
On Tue, 2005-03-29 at 17:50 +0100, David Woodhouse wrote:
> Presumably that point is that the hooks are what's of most interest to
> Linux developers in general; the actual audit code can be treated as a
> black box so can reasonably be posted separately.
At least with LSM we received complaints that the real long term
maintenance impact of the hooks couldn't be properly interpreted without
seeing hook function implementations too, e.g. to see what
assumptions/dependencies they had.
--
Stephen Smalley <sds at tycho.nsa.gov>
National Security Agency
More information about the Linux-audit
mailing list