On Tue, 2005-03-08 at 04:32 +0000, Christoph Hellwig wrote:
> and as I mentioned a few times if we really want to go for a magic
> uid/gid-based approach we should at least have one that's useable for
> all capabilities so it can replace the oracle hack aswell. But the
> proponents of the patch weren't iterested to invest the tiniest bit
> of work over what they submited.
And as I mentioned a few times, the authors have neither the inclination
nor the ability to do that, because they are not kernel hackers. The
realtime LSM was written by users (not developers) of the kernel, to
solve a specific real world problem. No one ever claimed it was the
correct solution from the kernel POV.
I know Jack disagrees but I for one am glad to see the max-RT-prio
rlimit patch going in. This probably reflects my sysadmin background,
PAM does not scare me at all. Anyway it solves the same problem and
will be invisible to any user with a reasonable distro. If musicians
end up having to tweak the PAM configuration, then I would say the
distro has failed miserably.