On Mon, 2003-12-22 at 23:19, Matt Zimmerman wrote: > On Mon, Dec 22, 2003 at 07:31:23PM -0500, Greg Folkert wrote: > > > Not only should you be convinced, you should be thankful. The 2.2.20 > > kernel is not vulnerable to the recent ptrace(). > > I beg your pardon? Assuming you are talking about CAN-2003-0127 when you > say "ptrace", 2.2.20 most certainly *was* vulnerable, hence DSA-336-1. > kernel-image-2.2.20-i386 version 2.2.20-5woody3 was built to correct these > problems in the default installation kernel. My misunderstanding... I am confused about the pre 2.4.23 and pre 2.6.0-test6 kernels being vulnerable to a local exploit that was used to compromise 4 d.o machine. My mistake. Retracted. > It was my understanding from Joey's 3.0r1 progress reports that this package > was to be accepted into 3.0r1. Was this somehow overlooked, or has there > been a misunderstanding? > > > By default NO Kernel is installed except the one you told it to at the > > beginning of the process. > > What? In the Woody Installer, where does the kernel get installed from... usually from the CDROM. But it is a "untracked by dpkg" package. I have to install a "real" kernel-image-2.4.18-bf24 (or kernel-image-2.4.18-<arch> or kernel-image-2.4.18-1-<arch>) so it is managed by dpkg. Unless I am doing something wrong.(which I just might be then...) Of course the last time I used the woody installer was quite a long time ago. I have used a chroot install for sometime. Either by debootstrap or by manual extraction an setup... -- greg@gregfolkert.net REMEMBER ED CURRY! http://www.iwethey.org/ed_curry
Attachment:
signature.asc
Description: This is a digitally signed message part