| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAFLxGvzwwPvhLtMN1jL0Rq+KLR0u2+ABaS07K0X5fGSm+jORMw@mail.gmail.com> Date: Fri, 30 Jan 2015 22:56:14 +0100 From: Richard Weinberger <richard.weinberger@...il.com> To: Josh Triplett <josh@...htriplett.org> Cc: Casey Schaufler <casey@...aufler-ca.com>, Paul McKenney <paulmck@...ux.vnet.ibm.com>, Iulia Manda <iulia.manda21@...il.com>, One Thousand Gnomes <gnomes@...rguk.ukuu.org.uk>, Serge Hallyn <serge.hallyn@...onical.com>, LKML <linux-kernel@...r.kernel.org>, Andrew Morton <akpm@...ux-foundation.org>, Peter Zijlstra <peterz@...radead.org>, Michal Hocko <mhocko@...e.cz>, LSM <linux-security-module@...r.kernel.org> Subject: Re: [PATCH v2] kernel: Conditionally support non-root users, groups and capabilities On Fri, Jan 30, 2015 at 10:40 PM, Josh Triplett <josh@...htriplett.org> wrote: > *Today*, Linux is a challenging choice for a tiny embedded system. > We're trying to fix that. Can you please more specific about the embedded systems exactly you're talking about? I find this patch rather controversial as it removes a lot of security. Embedded systems *are* a target for all kind of attacks. Misguided embedded engineers will abuse this feature and produce even more weak targets. -- Thanks, //richard -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists