Re: thoughts on kernel security issues

From: Chris Wright
Date: Thu Jan 13 2005 - 12:35:27 EST

Next message: Han Boetes: "Re: propolice support for linux"
Previous message: Zan Lynx: "Re: 2.4.13-pre6 breaks Nvidia's kernel module"
In reply to: Hubert Tonneau: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Hubert Tonneau (hubert.tonneau@xxxxxxxxxxxxxx) wrote:
> Basically, you are currently leaving non distribution related users alone in the
> cold and this is really really bad for the confidence we have in Linux,
> so please publish a 2.6.10.1 with the short term solution to fix the hole.
> Of course this does not prevent to publish 2.6.10.2 when you found a better
> solution, or use a different fix in 2.6.11 since they are not based on 2.6.10.1

I agree (it was part of my original mail), and would like to remedy this.
For now, you can pick up fixes from -ac tree.

> Regards,
> Hubert Tonneau
>
>
> PS: I believe that it would also be a very good idea, since Linux is now
> expected to be a mature organisation, to automatically publish 2.6.x.y new holes
> only fix patch for each stable kernel that has been released less than a year ago.
> This would enable smoother upgrade of highly important production servers.

Not sure about that (it's quite some work), but at least the _current_
stable release version.

thanks,
-chris
--
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Han Boetes: "Re: propolice support for linux"
Previous message: Zan Lynx: "Re: 2.4.13-pre6 breaks Nvidia's kernel module"
In reply to: Hubert Tonneau: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]