| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <alpine.LRH.2.00.0906040837430.30842@tundra.namei.org> Date: Thu, 4 Jun 2009 08:52:21 +1000 (EST) From: James Morris <jmorris@...ei.org> To: "Larry H." <research@...reption.com> cc: Rik van Riel <riel@...hat.com>, Christoph Lameter <cl@...ux-foundation.org>, Stephen Smalley <sds@...ho.nsa.gov>, Linus Torvalds <torvalds@...ux-foundation.org>, linux-mm@...ck.org, Alan Cox <alan@...rguk.ukuu.org.uk>, linux-kernel@...r.kernel.org, pageexec@...email.hu Subject: Re: Security fix for remapping of page 0 (was [PATCH] Change ZERO_SIZE_PTR to point at unmapped space) On Wed, 3 Jun 2009, Larry H. wrote: > whenever it is feasible, IMHO. I think everyone here will agree that > SELinux has a track of being disabled by users after installation > because they don't want to invest the necessary time on understanding > and learning the policy language or management tools. The Fedora smolt stats show an overwhelming majority of people leave it running. Many don't know it's there at all and never have problems. It's known to have saved many everyday systems from breaches. That's not to say that a significant number of people don't disable it, similarly to the way people disable iptables, use weak passwords, drive without seat belts, and cycle without helmets. We do need to try and keep the default as safe as possible. - James -- James Morris <jmorris@...ei.org> -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists