---

Home Developer

Pluggable Security

By

“‘I think the decision to merge Smack is something that needs to
be considered in the wider context of overall security
architecture,’ suggested James Morris following Andrew Morton’s
recent comment that he plans to merge the functionality in the
upcoming 2.6.24 kernel. While James had no complaints about Smack
itself, he expressed concerns regarding the pluggable nature of
LSM, which is used by Smack, cautioning, ‘if LSM remains, security
will never be a first class citizen of the kernel,’ adding, ‘on a
broader scale, we’ll miss the potential of Linux having a coherent,
semantically strong security architecture.’ He noted that he’d
rather see SELinux as the sole Linux security framework, ‘merging
Smack, however, would lock the kernel into the LSM API. Presently,
as SELinux is the only in-tree user, LSM can still be
removed…'”

Complete
Story

Complete Story
Previous article
Next article

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis

Must Read

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Our Brands

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.