On Thu, 9 Feb 2006, James Morris wrote: > You also need to verify the policy serial number. > > I wonder if it might be better to use the security context directly. Also consider adding a security field to netlink messages, to managed by the LSM. - James -- James Morris <jmorris at namei.org>