Re: RFC: disable SCTP in Debian's kFreeBSD?

To: Steven Chamberlain <steven@pyro.eu.org>
Cc: "debian-bsd@lists.debian.org" <debian-bsd@lists.debian.org>, 754237@bugs.debian.org
Subject: Re: RFC: disable SCTP in Debian's kFreeBSD?
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Mon, 25 Aug 2014 07:37:12 +0200
Message-id: <[🔎] 20140825053712.GA15523@inutil.org>
In-reply-to: <[🔎] 53FA82FF.6090202@pyro.eu.org>
References: <53BC8C2E.30501@pyro.eu.org> <[🔎] 20140806211810.GA15958@pisco.westfalen.local> <[🔎] 53FA82FF.6090202@pyro.eu.org>

On Mon, Aug 25, 2014 at 01:27:43AM +0100, Steven Chamberlain wrote:
> On 06/08/14 22:18, Moritz Mühlenhoff wrote:
> > On Wed, Jul 09, 2014 at 01:26:22AM +0100, Steven Chamberlain wrote:
> >> So I'm obviously asking here - could we just drop SCTP from the default
> >> kernel config?  In jessie/sid?  Even in wheezy-security?
> > 
> > We can certainly do this for wheezy-security if the kfreebsd maintainers
> > think it's the best course of action.
> 
> Okay then, thanks.  I propose we drop SCTP support from wheezy kernels,
> via wheezy-security, to address CVE-2014-3953 and other concerns.

Ok, please note that kfreebsd-9 also needs
http://www.freebsd.org/security/advisories/FreeBSD-SA-14:17.kmem.asc
 
> In kfreebsd-10 however, there's been a lot of work on SCTP recently,
> suggesting there's some renewed interest in the protocol.  I'm inclined
> to keep it in the 10.1 kernel config for now.

Ok.

Cheers,
        Moritz

Reply to:

References:
- Re: RFC: disable SCTP in Debian's kFreeBSD?
  - From: Moritz Mühlenhoff <jmm@inutil.org>
- Re: RFC: disable SCTP in Debian's kFreeBSD?
  - From: Steven Chamberlain <steven@pyro.eu.org>

Prev by Date: Re: -bsd@ stuff to do during DebConf?
Next by Date: Re: -bsd@ stuff to do during DebConf?
Previous by thread: Re: RFC: disable SCTP in Debian's kFreeBSD?
Next by thread: Bug#755739: VGA-mode newcons very slow
Index(es):
- Date
- Thread