[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#504043: closed by maximilian attems <max@stro.at> (Re: initramfs: bail to shell on error: insecure default)

On Mon, Dec 15, 2008 at 01:03:34AM +0100, Mario 'BitKoenig' Holbe wrote:
> 
> Well, it does, for example, easily happen on SATA only systems when you
> plug an USB stick in, since the stick becomes sda.

that is a flaw of not using UUID in the fstab.

yes i know d-i should have fixed that long ago,
anyway device names are *not* stable
 
> Well, it's finally your decision. No offense meant, for me it was just
> important to warn about the security flaw in a documented manner. Now I
> can lean back and wait having a clear conscience :)
> Just try to keep in mind that lots of past an present security flaws are
> simply side-effects of having user-"friendly" insecure defaults.

having physical access to your box is unsecure.


-- 
maks
Reply to: