[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 22 Nov 2017 17:38:31 +0300
From: Pavel Vasilyev <dixlor@...il.com>
To: kernel-hardening@...ts.openwall.com
Subject: Re: Re: [PATCH v3 2/2] Protected O_CREAT open in
sticky directories
22.11.2017 16:22, Matthew Wilcox пишет:
>
> So you'd have the following meaningful values:
>
> 0 - permit all (your option 0)
> 1 - notify world; permit group (your option 1)
> 2 - block world; permit group
> 3 - block,notify world; permit group
> 4 - permit world; notify group (?)
> 5 - notify world; notify group (your option 2)
> 6 - block world; notify group (your option 3)
> 7 - block,notify world; notify group
> 8 - permit world; block group (?)
> 9 - notify world; block group (?)
> 10 - block world; block group (your option 4)
> 11 - block,notify world; block group
> 12 - permit world; block, notify group (?)
> 13 - notify world; block, notify group (?)
> 14 - block world; block, notify group
> 15 - block, notify world; block, notify group
>
> Some of these don't make a lot of sense (marked with ?), but I don't see
> the harm in permitting a sysadmin to do something that seems nonsensical
> to me.
>
I think that notification in block mode by default.
Powered by blists - more mailing lists
Confused about mailing lists and their use?
Read about mailing lists on Wikipedia
and check out these
guidelines on proper formatting of your messages.
