Best linux filesystem filter option?

views:

139

answers:

+2 Q:

Best linux filesystem filter option?

I need a linux filesystem filter thingy with whitch to enforce ACL policy on filesystem calls dynamically (allow/deny read/writes based on stuff computed at runtime).
So far I have stumbled onto DazukoFS and Related Work.
What I dont like about DazukoFS is that it has to be compiled for each kernel release.

Is there some user-mode library that can filter filesystem calls dinamically?
If not, is there some kernel-mode library that can filter FS calls dinamically, and not compile it for each kernel release?
If not, what is the best choice among DazukoFS and others ?

+1 A:

If fanotify ever gets into the kernel, it would provide precisely what you're asking for.

But unfortunately it hasn't got in yet.

EDIT:

fanotify has been merged into 2.6.36.

Pull request was: http://lkml.org/lkml/2010/8/6/273

Douglas Leeder 2010-07-10 11:46:10

Can you provide a canonical link to this project, and its proposals to be merged?

Matt Joiner 2010-09-10 00:41:42

+1 A:

I have chosen RedirFS Redirecting Filesystem Framework.

similar to windows minifilter drivers in many ways
simple enough and featurefull
has examples of programs
nice docs (but scattered)

clyfe 2010-07-13 12:10:01

Thanks for letting us know!

Matt Joiner 2010-07-14 16:47:38

ansaurus

tags:

views:

answers:

Best linux filesystem filter option?

related questions