Re: Question on LFS in Redhat
From: Dale Amon
Date: Wed Dec 24 2003 - 20:10:58 EST
On Wed, Dec 24, 2003 at 09:49:03AM +0100, Arjan van de Ven wrote:
> You really shouldn't be running a 2.4.16 kernel (not without the latest
> security patches for such a kernel from a distro) given the amount of security issues
> fixed since... and since I don't think any distro ever shipped 2.4.16 (some
> shipped 2.4.17, a bunch shipped 2.4.18 but even RH doesn't do patches for
> that 2.4.18 tree anymore since they have been obsoleted by 2.4.20 and newer
> kernels).
Not really my choice... and from what you say I'd better
not *touch* their stock kernel if I a project for which I
specced that box happens.
Also, fresh feedback from the Consensys is that:
"Just to be precise - As of today the kernel
is 2.4.18-i59smp #1"
So that is a little better but still a little out
of date. I'm not terribly worried about the local
exploit because you don't tend to want to allow external
login accounts on things on your SAN's...
--
------------------------------------------------------
Dale Amon amon@xxxxxxxxxxxxx +44-7802-188325
International linux systems consultancy
Hardware & software system design, security
and networking, systems programming and Admin
"Have Laptop, Will Travel"
------------------------------------------------------
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/