From mboxrd@z Thu Jan 1 00:00:00 1970 Date: Thu, 12 Feb 2009 12:07:31 +1100 (EST) From: James Morris To: "David P. Quigley" cc: Peter Staubach , labeled-nfs@linux-nfs.org, nfs-discuss@opensolaris.org, nfsv4@ietf.org, selinux@tycho.nsa.gov Subject: Re: [Labeled-nfs] New MAC label support Internet Draft posted to IETF website In-Reply-To: <1234396064.2929.121.camel@moss-terrapins.epoch.ncsc.mil> Message-ID: References: <1232651815.24537.15.camel@moss-terrapins.epoch.ncsc.mil> <4990AD20.3030902@redhat.com> <1234396064.2929.121.camel@moss-terrapins.epoch.ncsc.mil> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov On Wed, 11 Feb 2009, David P. Quigley wrote: > sort of open file handle revocation support. In the past people have > suggested building the client's idea of the label into either the > stateid or some other form of cookie that can be verified by the server. > We explored doing this in the form of an NFSv4 op and while that worked > we are trying to shy away from adding new operations if we can help it. What's wrong with adding new operations? - James -- James Morris -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.