List Archive: gentoo-security
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
On Wed, 2004-03-17 at 12:46, Michael Atighetchi wrote:
> On Mon, Mar 15, 2004 at 08:20:31PM -0500, Ned Ludd wrote:
> > hardened-dev-sources-2.6 is available for "testing"
> > Oh wait one more thing.. If you really care about security you probably
> > should stick with 2.4.x
> Could you explain more why you think 2.6 is "less" secure thatn 2.4 ?
I'm not saying that 2.6.x is less secure in anyway. 2.6.x has been out
all of what a few months? And the security patches even less time. So
without proper security regression tests done for 2.6.x yet I'll stick
with recommending that it not be used for production environments yet.
2.4.x on the other hand has been audited by many sets of eyes where
2.6.x has probably been reviewed by a few.
Auditing and regression testing is welcome.
> > -peace
Ned Ludd <firstname.lastname@example.org>
Gentoo Linux Developer
signature.asc (This is a digitally signed message part)