On Tue, Jun 16, 2009 at 3:54 PM, Sandu Popa Marius <sandupopamarius@xxxxxxxxx> wrote:
Then you have to write your own hooks apart from LSM! Even a complete solution is not difficult but might take a bit longer to implement the unused hooks with just return 0;
You can analyze LSM, it seems to be a good solution. ([1]).
> The LD_PRELOAD method has a few drawbacks: security issues, statically
> linked programs. I am looking for another solution.
> Marius
thanks,
Daniel.
[1] http://www.usenix.org/event/sec02/full_papers/wright/wright.pdf
From what I have read, with LSM you have to provide a full solution because it does not allow you to stack modules[1]. This also means that my module will not work with SELinux or other LSM modules. I only need a subset of LSM hooks.I can use LSM, but I want to know if there is another solution.
Then you have to write your own hooks apart from LSM! Even a complete solution is not difficult but might take a bit longer to implement the unused hooks with just return 0;
Thanks,Marius
--
Shaz
