Morris: Linux Security Summit 2017 Roundup

James Morris has posted asummary of the recently concluded Linux Security Summit."I was particularly interested in the topic of better integrating LSMwith containers, as there is an increasingly common requirement for nestingof security policies, where each container may run its own apparentlyindependent security policy, and also a potentially independent securitymodel. I proposed the approach of introducing a security namespace, whereall security interfaces within the kernel are namespaced, including LSM.It would potentially solve the container use-cases, and also the full LSMstacking case championed by Casey Schaufler (which would allow entirelyarbitrary stacking of security modules)."