On Fri, Mar 9, 2018 at 11:07 AM, Kees Cook wrote:
> The LSM check should happen after the file has been confirmed to be
> unchanging. Without this, we could have a ToCToU issue between the
> LSM verification and the actual contents of the file later.
Can we please not add random crazy six-letter
The LSM check should happen after the file has been confirmed to be
unchanging. Without this, we could have a ToCToU issue between the
LSM verification and the actual contents of the file later.
Signed-off-by: Kees Cook
---
Only loadpin and SELinux implement this hook. From what I can see, this
w
2 matches
Mail list logo