lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20080806001124.GA9079@kroah.com>
Date:	Tue, 5 Aug 2008 17:11:24 -0700
From:	Greg KH <greg@...ah.com>
To:	Eric Paris <eparis@...hat.com>
Cc:	Al Viro <viro@...IV.linux.org.uk>,
	"Press, Jonathan" <Jonathan.Press@...com>,
	Theodore Tso <tytso@....edu>,
	Arjan van de Ven <arjan@...radead.org>,
	linux-kernel@...r.kernel.org, malware-list@...ts.printk.net,
	linux-security-module@...r.kernel.org
Subject: Re: [malware-list] [RFC 0/5] [TALPA] Intro
	toalinuxinterfaceforonaccess scanning

On Tue, Aug 05, 2008 at 07:48:52PM -0400, Eric Paris wrote:
> On Wed, 2008-08-06 at 00:37 +0100, Al Viro wrote:
> > On Tue, Aug 05, 2008 at 03:26:38PM -0700, Greg KH wrote:
> > > On Tue, Aug 05, 2008 at 06:12:34PM -0400, Press, Jonathan wrote:
> > > > Sorry for the top-post... but I give up.
> > > >  
> > > > I don't think I'm stupid, but frankly I don't understand the point of
> > > > the questions being asked in the last three responses to my statement.
> > > > I don't know why they are relevant, and I don't know how to answer
> > > > them in a framework that we can all understand at the same time.
> > 
> > Excuse me?  One of those questions had been a very specific yes-or-no one
> > and I certainly hope that we all can understand either answer to such...
> > 
> > For the record, the question is
> > 
> > "Do you or do you not expect the malware to be active on scanning host?"
> 
> I do believe for a number of AV vendors the answer is yes.  I will try
> to have some offline conversations with the right people at a number of
> vendors and work to better define the threats that they wish to or
> believe they are able to help mitigate.

This is troubling to me.  Why "offline conversations"?  Why are you
being forced to be the mediator here?  Why will these companies not
contribute directly to the development of this code/model in public,
like all other major Linux kernel contributions?

Isn't this the point of the malware-list in the first place?

For them to hide behind _anyone_ seems very suspect.

thanks,

greg k-h
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ