Re: secure computing for 2.6.7

From: Horst von Brand
Date: Mon Aug 02 2004 - 07:18:39 EST

Next message: Horst von Brand: "Re: ide-cd problems"
Previous message: Rik van Riel: "Re: [Patch for review] BSD accounting IO stats"
In reply to: Bernd Eckenfels: "Re: secure computing for 2.6.7"
Next in thread: Andrea Arcangeli: "Re: secure computing for 2.6.7"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Andrea Arcangeli <andrea@xxxxxxx> said:

[...]

> note this isn't a build number (the features in 2.6.10 don't matter at
> all, the only thing it matters is that all security bugs up to 3503 are
> included).

Pray tell, how do you know if a random "compiler warning fix" isn't a plug
for an exploitable hole, and if a "security fix" really does fix a real
security problem that can be abused?

Truth is, you can never know. So, this degenerates into sequential patch
numbering, which is completely hopeless.
--
Dr. Horst H. von Brand User #22616 counter.li.org
Departamento de Informatica Fono: +56 32 654431
Universidad Tecnica Federico Santa Maria +56 32 654239
Casilla 110-V, Valparaiso, Chile Fax: +56 32 797513
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Horst von Brand: "Re: ide-cd problems"
Previous message: Rik van Riel: "Re: [Patch for review] BSD accounting IO stats"
In reply to: Bernd Eckenfels: "Re: secure computing for 2.6.7"
Next in thread: Andrea Arcangeli: "Re: secure computing for 2.6.7"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]