Re: suggestion

[cyberclay <cclay@fastlane.net>]

On Sun, 11 Jun 2000 22:53:54 Marc Esipovich wrote:
> People, instead of debating and debating to no end, let's start doing
> something,  I suggest we start with stuff like, the binary loaders (elf,
a.out)
> the proc fs and capabilities,  things that have direct impact on security.

Hey,
  I couldn't agree more.  However, I also believe that this is an issue
that will need to be resolved as we begin to get things underway.  Quite
possibly the only good solution will be a sort of integration between us
and the kernel developers themselves.  They could send us a kernel before
it is "officially" released, we could then get the oppertunity to go through
it and do what we can, and put some sort of stamp on it, "LKAP Approved."
  If we are to ensure that our changes will be implemented in all future
releases, it will be necessary to begin our work with the most recent kernel.
  After this initial release of a "secure" kernel, development would return
to normal, and we'd try and keep up with the kernels as they're released
(hopefully
with a bit better changelogs than those currently available).
  This is just my line of thinking as of now.  For the time being, I agree with
your suggestion that we content ourselves to begin work on what we have
available
to us.

Regards,
  cyberclay
---
cclay at fastlane dot net
I think, therefore I am dangerous
http://www.abednego.com

Kernel-audit:  discussion list for security and the linux kernel
Archive:       http://mail.nl.linux.org/kernel-audit/