SELinux: Add network ingress and egress control permission checks - blaster4385/linux-IllusionX - Linux kernel with personal config changes for arch linux

diff options

author	Paul Moore <[email protected]>	2008-01-29 08:49:27 -0500
committer	James Morris <[email protected]>	2008-01-30 08:17:30 +1100
commit	effad8df44261031a882e1a895415f7186a5098e (patch)
tree	42c04b3247ede13077546e13f82fe3da83ce7b90 /net/unix/sysctl_net_unix.c
parent	13541b3adad2dc2f56761c5193c2b88db3597f0e (diff)

SELinux: Add network ingress and egress control permission checks

This patch implements packet ingress/egress controls for SELinux which allow SELinux security policy to control the flow of all IPv4 and IPv6 packets into and out of the system. Currently SELinux does not have proper control over forwarded packets and this patch corrects this problem. Special thanks to Venkat Yekkirala <[email protected]> whose earlier work on this topic eventually led to this patch. Signed-off-by: Paul Moore <[email protected]> Signed-off-by: James Morris <[email protected]>

Diffstat (limited to 'net/unix/sysctl_net_unix.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: