, SecurityFocus 2003-11-06
Software developers on Wednesday detected and thwarted a hacker's scheme to submerge a slick backdoor in the next version of the Linux kernel, but security experts say the abortive caper proves that extremely subtle source code tampering is more than just the stuff of paranoid speculation.
Anonymous
No they are paid to make proper risk assessments. What he wrote was a pretty good attempt at it. He's in essence right, a local exploit isn't a "big" deal. Remote overflows are far worse and whether something is put in the code deliberat...
[ more ]