Re: thoughts on kernel security issues

From: Dave Jones
Date: Wed Jan 12 2005 - 16:13:35 EST

Next message: Pavel Machek: "Re: [fuse-devel] Merging?"
Previous message: Greg KH: "Re: thoughts on kernel security issues"
In reply to: Andrea Arcangeli: "Re: thoughts on kernel security issues"
Next in thread: Greg KH: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jan 12, 2005 at 12:00:52PM -0800, Linus Torvalds wrote:

> > How you feel about having short fixed time embargo's (lets say, 3 or 4 days) ?
> Please realize that I don't have any problem with a short-term embargo per
> se, what I have problems with is the _politics_ that it causes. For
> example, I do _not_ want this to become a
>
> "vendor-sec got the information five weeks ago, and decided to embargo
> until day X, and then because they knew of the 4-day policy of the
> kernel security list, they released it to the kernel security list on
> day X-4"
>
> See? That is playing politics with a security list. That's the part I
> don't want to have anything to do with. If somebody did that to me, I'd
> feel pissed off like hell, and I'd say "screw them".

Who would be on the kernel security list if it's to be invite only ?
Is this just going to be a handful of folks, or do you foresee it
being the same kernel folks that are currently on vendor-sec ?

My first thought was 'Chris will forward the output of security@xxxxxxxxxx
to vendor-sec, and we'll get a chance to get updates built'. But you
seem dead-set against any form of delayed disclosure, which has the
effect of catching us all with our pants down when you push out
a new kernel fixing a hole and we don't have updates ready.

At this time, those with bad intents rub their hands with glee
0wning boxes at will whilst those of us responsible for vendor
kernels run like headless chickens trying to get updates out,
which can be a pain the ass if $vendor is supporting some ancient
release which is afflicted by the same bug.

If you turned the current model upsidedown and vendor-sec learned
about issues from security@xxxxxxxxxx a few days before it'd at
least give us *some* time, as opposed to just springing stuff
on us without warning.

Thoughts?

Dave

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Pavel Machek: "Re: [fuse-devel] Merging?"
Previous message: Greg KH: "Re: thoughts on kernel security issues"
In reply to: Andrea Arcangeli: "Re: thoughts on kernel security issues"
Next in thread: Greg KH: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]