Linux Kernel Security is Lacking

Linux Kernel Security is Lacking
Jason Miller, 2005-02-02

Recent events have shown that the way security in the Linux kernel is handled is broken, and it needs to be fixed right now.

Expand all | Post comment

Linux Kernel Security is Lacking 2005-02-02
Anonymous (1 replies)

Linux Kernel Security is Lacking 2005-02-04
Anonymous (5 replies)

Linux Kernel Security is Lacking 2005-02-05
Anonymous

Linux Kernel Security is Lacking 2005-02-06
Anonymous

"The numbers" and (deliberate?) failure to undestand what linux is 2005-02-07
RedHat not Linux User. (1 replies)

Re: The "numbers" and (deliberate?) failure to undestand what linux is 2005-02-07
Jason V. Miller (Author) (1 replies)

Vendors and kernel security 2005-02-09
Anonymous

Linux Kernel Security is Lacking 2005-02-11
Torian

Re: Linux Kernel Security is Lacking 2007-05-03
Anonymous

Linux Kernel Security is Lacking 2005-02-03
Anonymous (1 replies)

Linux Kernel Security is Lacking 2005-02-04
Jason V. Miller (Author)

Linux Kernel Security is Lacking 2005-02-03
Todd Knarr (1 replies)

Linux Kernel Security is Lacking 2005-02-04
Jason V. Miller (Author) (1 replies)

Linux Kernel Security is Lacking 2005-02-05
Todd Knarr (1 replies)

Linux Kernel Security is Lacking 2005-02-09
Joe Borsits (1 replies)

Linux Kernel Security is Lacking 2005-02-09
Todd Knarr (1 replies)

Linux Kernel Security is Lacking 2005-02-10
Joe Borsits

Linux Kernel Security is Lacking 2005-02-03
Anonymous (1 replies)

Really good points...

However, i think there is a huge difference between having a contact point to report security issues, and having a fix for a security issue...

Many have been surprised, if not shocked by the recent disclosure in the linux kernel, but i'm not sure that the situation is SO bad as the article make it sound. Looking at the number of functionalities in the Linux kernel, it seems that critical bugs are not really regular stuff, and generaly quicked fixed... Still some improvements need to be done, and work seems to be done in this way.

Just a last: saying that it's to "the developers to take responsibility for the security of the kernel" is quite un-realistic, as actually no end-user license grant any "responsability" for security of delivered products. I don't say that it's right, but that's the real world.

Just my 2 Euro-cents.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/296/30321#30321

Linux Kernel Security is Lacking 2005-02-04
Jason V. Miller (Author) (1 replies)

Linux Kernel Security is Lacking 2005-02-05
RVGeerligs

Really? 2005-02-03
Anonymous

I eagerly await... 2005-02-03
Anonymous (5 replies)

I eagerly await... 2005-02-03
Anonymous

I eagerly await... 2005-02-03
Anonymous (2 replies)

I eagerly await... 2005-02-04
Anonymous

I eagerly await... 2005-02-07
Anonymous

I eagerly await... 2005-02-04
Anonymous

I eagerly await... 2005-02-04
Anonymous (1 replies)

I eagerly await... 2005-02-09
Anonymous

Re: I eagerly await... 2005-02-04
Anonymous (1 replies)