[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Secure Linux kernel package?

On Thu, Nov 12, 1998 at 07:22:29AM +0200, Amos Shapira wrote:

> It is claimed to increase system security mainly by making the stack
> unexecutable

A patch which /breaks/ some software, and with the allowances so it does
not break more software its possible to work around, making it for the
most part pointless, (This is only the impression I have gotten from
reading the debates and the reasons Linus has given for refusing to
accept the patch)

> and limiting links in sticky directories (designed to make /tmp
> exploits harder).

Questionable, Linus has also refused this patch as well..
And setting TMPDIR to something like ~user/tmp or /tmp/user where only
that user can read and write to the directory happily squashes a good
number of the tmp exploits..

> --Amos

Zephaniah E, Hull.
> --Amos Shapira                    | "Of course Australia was marked for
> 133 Shlomo Ben-Yosef st.          |  glory, for its people had been chosen
> Jerusalem 93 805                  |  by the finest judges in England."
> ISRAEL       amos@gezernet.co.il  |                     -- Anonymous
> -- 
> To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

              Zephaniah E, Hull <warp@whitestar.soark.net>
    Keys available at http://whitestar.soark.net/~warp/public_keys.
 PGP key fingerprint = 68 55 F2 C1 4B 95 1A 73  85 FC DB B3 35 B9 6E 15
GPG key fingerprint = 92ED 94E4 B1E6 3624 226D  5727 4453 008B E65A 7801

Attachment: pgpgwchjYi2rO.pgp
Description: PGP signature

Reply to: