On Fri, Nov 18, 2005 at 07:36:29PM +0000, Alan Cox wrote: > On Maw, 2005-11-15 at 17:25 -0500, Dave Jones wrote: > > Just for info: If this goes in, Red Hat/Fedora kernels will fork > > swsusp development, as this method just will not work there. > > (We have a restricted /dev/mem that prevents writes to arbitary > > memory regions, as part of a patchset to prevent rootkits) > > Perhaps it is trying to tell you that you should be using SELinux rules > not kernel hacks for this purpose ? I don't think selinux can give you the granularity to say "process can access this bit of the file only", at least not yet. Even if that was capable however, it still doesn't solve the problem. Pavel's implementation wants to write to arbitary address spaces, which is what we're trying to prevent. The two are at odds with each other. Dave