| 1 |
On Wed, Mar 17, 2004 at 01:08:56PM -0500, Ned Ludd wrote: |
| 2 |
> On Wed, 2004-03-17 at 12:46, Michael Atighetchi wrote: |
| 3 |
> > On Mon, Mar 15, 2004 at 08:20:31PM -0500, Ned Ludd wrote: |
| 4 |
> > > hardened-dev-sources-2.6 is available for "testing" |
| 5 |
> > > |
| 6 |
> > |
| 7 |
> > <snip> |
| 8 |
> > |
| 9 |
> > > Oh wait one more thing.. If you really care about security you probably |
| 10 |
> > > should stick with 2.4.x |
| 11 |
> > > |
| 12 |
> > |
| 13 |
> > Could you explain more why you think 2.6 is "less" secure thatn 2.4 ? |
| 14 |
> |
| 15 |
> I'm not saying that 2.6.x is less secure in anyway. 2.6.x has been out |
| 16 |
> all of what a few months? And the security patches even less time. So |
| 17 |
> without proper security regression tests done for 2.6.x yet I'll stick |
| 18 |
> with recommending that it not be used for production environments yet. |
| 19 |
> 2.4.x on the other hand has been audited by many sets of eyes where |
| 20 |
> 2.6.x has probably been reviewed by a few. |
| 21 |
> |
| 22 |
> Auditing and regression testing is welcome. |
| 23 |
> |
| 24 |
I see. We starting using a 2.4 gentoo linux distribution a couple of |
| 25 |
months ago, and had good luck with it. However, we ran into install |
| 26 |
difficulties with the 2.6 live cd, which were painfull but we worked |
| 27 |
around them. |
| 28 |
|
| 29 |
However, we currently face an issue with stdout redirection. We start |
| 30 |
our java processes via a .sh script and redirect stdout/stderr to a file via |
| 31 |
> file.txt 2>&1 . By changing from 2.4 to 2.6 we noticed that |
| 32 |
file.txt gets created when the .sh script starts up, up it does not |
| 33 |
get any content for a while (about 6 minutes and about 100k of |
| 34 |
log), after which the whole file shows up. It looks like a buffering |
| 35 |
problem of sort. |
| 36 |
|
| 37 |
We are using |
| 38 |
Linux dcaf 2.6.4-rc2-mm1 #2 Mon Mar 15 17:33:02 EST 2004 i686 Pentium III (Coppermine) GenuineIntel GNU/Linux |
| 39 |
with the following fs |
| 40 |
/dev/hda3 on / type ext3 (rw,noatime) |
| 41 |
|
| 42 |
Any clues ? |
| 43 |
|
| 44 |
Michael |
| 45 |
|
| 46 |
|
| 47 |
> -peace |
| 48 |
> |
| 49 |
> > |
| 50 |
> > Michael |
| 51 |
> > |
| 52 |
> > |
| 53 |
> > > -peace |
| 54 |
> > > |
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
-- |
| 59 |
matighet@×××.com BBN Technologies |
| 60 |
|
| 61 |
-- |
| 62 |
gentoo-hardened@g.o mailing list |
Archives