Re: thoughts on kernel security issues

From: Linus Torvalds
Date: Wed Jan 26 2005 - 18:59:14 EST

Next message: John Richard Moser: "Re: thoughts on kernel security issues"
Previous message: Keshavamurthy Anil S: "Re: [PATCH] unexport register_cpu and unregister_cpu"
In reply to: Olaf Hering: "Re: thoughts on kernel security issues"
Next in thread: Alan Cox: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 26 Jan 2005, Olaf Hering wrote:
> >
> > Details, please?
>
> You did it this way:
> http://linux.bkbits.net:8080/linux-2.5/cset@4115cba3UCrZo9SnkQp0apTO3SghJQ

Oh, that's a separate issue. We want to have multiple levels of security.

We not only try to make sure that there are easy interfaces (but yeah, I
don't force people to rewrite - I sadly don't have a cadre of slaves at my
beck and call ;p), but it's also always a good idea to have interfaces
that are bug-resistant even in the face of people actively not using the
better interfaces.

So having good interfaces that are harder to have bugs in does _not_ mean
that we still shouldn't have defensive programming practices anyway. The
combination of the two means that a bug in one layer hopefully gets caught
be the other layer.

Linus
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: John Richard Moser: "Re: thoughts on kernel security issues"
Previous message: Keshavamurthy Anil S: "Re: [PATCH] unexport register_cpu and unregister_cpu"
In reply to: Olaf Hering: "Re: thoughts on kernel security issues"
Next in thread: Alan Cox: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]