On Sat, 14 Jul 2007, Casey Schaufler wrote: > The patch exceeds the 40k size rule, coming in at about 100k.
It's probably better from a review pov to break it up and post it as email somehow (perhaps per-file if that works). > + * Should access checks be done on each read or write? > + * UNICOS and SELinux say yes. > + * Trusted Solaris, Trusted Irix, and just about everyone else says no. > + */ SELinux does this as there is no general revocation, and policy can change, so it revalidates on access. - James -- James Morris <[EMAIL PROTECTED]> - To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html