Re: thoughts on kernel security issues

From: Alan Cox
Date: Thu Jan 13 2005 - 11:56:42 EST

Next message: Valdis . Kletnieks: "Re: 2.4.13-pre6 breaks Nvidia's kernel module"
Previous message: Alan Cox: "Re: NUMA or not on dual Opteron (was: Re: Linux 2.6.11-rc1)"
In reply to: Marcelo Tosatti: "Re: thoughts on kernel security issues"
Next in thread: Florian Weimer: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mer, 2005-01-12 at 17:42, Marcelo Tosatti wrote:
> The kernel security list must be higher in hierarchy than vendorsec.
>
> Any information sent to vendorsec must be sent immediately for the kernel
> security list and discussed there.

We cannot do this without the reporters permission. Often we get
material that even the list isn't allowed to directly see only by
contacting the relevant bodies directly as well. The list then just
serves as a "foo should have told you about issue X" notification.

If you are setting up the list also make sure its entirely encrypted
after the previous sniffing incident.

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Valdis . Kletnieks: "Re: 2.4.13-pre6 breaks Nvidia's kernel module"
Previous message: Alan Cox: "Re: NUMA or not on dual Opteron (was: Re: Linux 2.6.11-rc1)"
In reply to: Marcelo Tosatti: "Re: thoughts on kernel security issues"
Next in thread: Florian Weimer: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]