28 Feb, 2015

1 commit

• 44aa1d441   security/yama: Remove unnecessary selects from Kconfig. ... Browse Code »

  Yama selects SECURITYFS and SECURITY_PATH, but requires neither.
  Remove them.

  Signed-off-by: Stephen Smalley
  Signed-off-by: Kees Cook

  Stephen Smalley

  2015-02-28 08:53:10 +0800  

06 Sep, 2012

1 commit

• c6993e4ac   security: allow Yama to be unconditionally stacked ... Browse Code »

  Unconditionally call Yama when CONFIG_SECURITY_YAMA_STACKED is selected,
  no matter what LSM module is primary.

  Ubuntu and Chrome OS already carry patches to do this, and Fedora
  has voiced interest in doing this as well. Instead of having multiple
  distributions (or LSM authors) carrying these patches, just allow Yama
  to be called unconditionally when selected by the new CONFIG.

  Signed-off-by: Kees Cook
  Acked-by: Serge E. Hallyn
  Acked-by: Eric Paris
  Acked-by: John Johansen
  Signed-off-by: James Morris

  Kees Cook

  2012-09-06 05:12:31 +0800  

10 Feb, 2012

1 commit

• 2d514487f   security: Yama LSM ... Browse Code »

  This adds the Yama Linux Security Module to collect DAC security
  improvements (specifically just ptrace restrictions for now) that have
  existed in various forms over the years and have been carried outside the
  mainline kernel by other Linux distributions like Openwall and grsecurity.

  Signed-off-by: Kees Cook
  Acked-by: John Johansen
  Signed-off-by: James Morris

  Kees Cook

  2012-02-10 06:18:52 +0800