Slashdot Mirror

← Back to Stories (view on slashdot.org)

Reporting Kernel Security Issues

Posted by timothy on from the top-men-are-working-on-it dept.

Omniscientist writes "A recent post on KernelTrap details the lkml post by Chris Wright talking about a centralized place to report security issues pertaining to the Linux Kernel and the discussion that was generated by it, including Chris's followup. It would appear that they now have created a security team to privately handle the bugs, who act as the alternative to reporting the flaw to the public immediately."

3 of 75 comments (clear)

  1. Re:Working on my own DS_Linux by Anonymous Coward · · Score: -1, Troll

    Security as an after-thought, well done!

  2. Linux Security Model by Dark+Coder · · Score: -1, Troll

    Ok... when are you going to fix the nearly 2-year old Linux Security Module (LSM)'s security vulnerability for inserting malicious kernel modules (aka virus or trojans)?

    So, I'm thinking that these "sky-is-falling" guys that have been ranting, raving and waving red flags over at GRSecurity, RSBAC are starting to have a solid valid point on the inherent weakness of the LSM model.

    I truly hope this is not the beginning of open season for Linux-virus/trojans.

    Ah? Hmmmmm? Welll?

  3. Sick of Linux security problems? Switch to OS X. by Anonymous Coward · · Score: -1, Troll

    OS X is built on a foundation of Unix, but is written and maintained by professional American programmers who know security as well as performance and usability. By comparison Linux is written by Linus Torvalds and ... who knows? It could be your neighbor, or it could be some guy in Iran or North Korea. Linux also has significant intellectual property issues, due to the nature of the open source process whereby code can be inserted into the program by people who are unhappy about their job and so steal it from their company or friends. So why take a risk being hacked or even sued using Linux? Switch to OS X.