On Wed, 7 Nov 2007, Adrian Bunk wrote:
>
> How should TOMOYO implement it's "match one character" in a pattern
> (used to allow or deny access in a name-based MAC)?
.. I think such a design is fundamentally bogus. You don't have
"characters". You have "bytes".
So you either implement "match one byte", or you go crazy. It's that
simple.
Linus
-
To unsubscribe from this list: send the line "unsubscribe
linux-security-module" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html
