[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Linux kernel source archive vulnerable

To: "Hadmut Danisch" <hadmut@xxxxxxxxxx>
Subject: Re: [Full-disclosure] Linux kernel source archive vulnerable
From: FRLinux <frlinux@xxxxxxxxx>
Date: Fri, 8 Sep 2006 18:10:02 +0100

On 9/8/06, Hadmut Danisch <hadmut@xxxxxxxxxx> wrote:

Ironically, if Microsoft distributed such files everyone would shout
"hidden backdoor!"


That's a fact, but don't forget that the upstream kernel is not being
shipped as part of an update to a commercial product. Besides,
permissions are not hidden backdoor. A backdoor by definition is a
mean to access a program, here we are talking sources.

And i'll second the man who said that you should not compile a kernel
on a live system, it should be as stripped as possible.

On this happy note, it's week end time :)
Steph

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Linux kernel source archive vulnerable
  - From: Hadmut Danisch
- Re: [Full-disclosure] Linux kernel source archive vulnerable
  - From: Raj Mathur
- Re: [Full-disclosure] Linux kernel source archive vulnerable
  - From: Hadmut Danisch
- Re: [Full-disclosure] Linux kernel source archive vulnerable
  - From: Troy Cregger
- Re: [Full-disclosure] Linux kernel source archive vulnerable
  - From: Hadmut Danisch

Prev by Date: [Full-disclosure] tar alternative
Next by Date: [Full-disclosure] Cross Context Scripting with Sage
Previous by thread: Re: [Full-disclosure] Linux kernel source archive vulnerable
Next by thread: Re: [Full-disclosure] Linux kernel source archive vulnerable
Index(es):
- Date
- Thread