Originally Posted by Dragoran
That is exactly what I was referring too. (ie. its what selinux disallow by default too)
Besides the nvidia driver is not the only app that does this. (flash/java/mono do the same).
Actually, SELinux is a access control mechanism. GRsecurity prevents actually prevents unknown bugs from being exploited plus it has an access control mechanism. You can actually use both GRsecurity and SELinux together.
Im aware that flash/java/mono do the same thing (flash being the most dangerous in my opinion). I'm not sure they have root access like the Nvidia driver has which is more dangerous.
I wonder what the NVidia driver has to write code for performance reasons. Java and mono have decreased performance when they have to write code but that's a different situation.
This is one of the reasons why the Nvidia specs and driver should be open source.