Re: thoughts on kernel security issues

From: Alan Cox
Date: Fri Jan 14 2005 - 21:04:18 EST

Next message: Alan Cox: "Re: vgacon fixes to help font restauration in X11"
Previous message: Alan Cox: "Re: thoughts on kernel security issues"
In reply to: Jesper Juhl: "Re: thoughts on kernel security issues"
Next in thread: Marcin Dalecki: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Iau, 2005-01-13 at 23:30, Jesper Juhl wrote:
> The users are still vulnerable during the time you are preparing your
> kernel packages.

Vulnerable to what - a bug that has probably taken months to be located
and isn't know to the bad guys right now ?

> proper fix is being developed. I can't do that if I'm in the dark until
> vendors feel comfortable and ready to release packaged bug free kernels -
> and all the time I'm waiting some black hat idiot may have found the same
> bug and cracked my system.

Let me save you some hassle. On current models anything you are running
more than 5000 lines long probably has serious flaws in it. Your
processor probably has flaws too, and even if you put up your firewall
someone might break into your house with a sledgehammer and take your
computer away (eg the music industry ;))

Its also about -risk- levels and the sum of risk to all parties
involved.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: vgacon fixes to help font restauration in X11"
Previous message: Alan Cox: "Re: thoughts on kernel security issues"
In reply to: Jesper Juhl: "Re: thoughts on kernel security issues"
Next in thread: Marcin Dalecki: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]