730daa164e
Now that minor LSMs can cleanly stack with major LSMs, remove the unneeded config for Yama to be made to explicitly stack. Just selecting the main Yama CONFIG will allow it to work, regardless of the major LSM. Since distros using Yama are already forcing it to stack, this is effectively a no-op change. Additionally add MAINTAINERS entry. Signed-off-by: Kees Cook <keescook@chromium.org> Signed-off-by: James Morris <james.l.morris@oracle.com>
13 lines
481 B
Plaintext
13 lines
481 B
Plaintext
config SECURITY_YAMA
|
|
bool "Yama support"
|
|
depends on SECURITY
|
|
default n
|
|
help
|
|
This selects Yama, which extends DAC support with additional
|
|
system-wide security settings beyond regular Linux discretionary
|
|
access controls. Currently available is ptrace scope restriction.
|
|
Like capabilities, this security module stacks with other LSMs.
|
|
Further information can be found in Documentation/security/Yama.txt.
|
|
|
|
If you are unsure how to answer this question, answer N.
|