On Tue, Jun 16, 2009 at 3:54 PM, Sandu Popa Marius < sandupopamar...@gmail.com> wrote:
> >> > The LD_PRELOAD method has a few drawbacks: security issues, statically >> > linked programs. I am looking for another solution. >> > Marius >> >> You can analyze LSM, it seems to be a good solution. ([1]). >> >> thanks, >> Daniel. >> >> [1] http://www.usenix.org/event/sec02/full_papers/wright/wright.pdf >> > > From what I have read, with LSM you have to provide a full solution because > it does not allow you to stack modules[1]. This also means that my module > will not work with SELinux or other LSM modules. I only need a subset of LSM > hooks. > I can use LSM, but I want to know if there is another solution. > Then you have to write your own hooks apart from LSM! Even a complete solution is not difficult but might take a bit longer to implement the unused hooks with just return 0; > > [1] http://lwn.net/Articles/315974/ > > Thanks, > Marius > -- Shaz