List Archive: gentoo-security
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
-----BEGIN PGP SIGNED MESSAGE-----
Thierry Carrez wrote:
> Brian G. Peterson wrote:
>>On Tuesday 20 September 2005 06:09 am, Calum wrote:
> This ongoing kernel security information, along with kernel security
> alerts when really big things are discovered (Local Root that would work
> on most configurations, for example) was for us the best solution. KISS
> is almost ready for BETA release, meaning you should be able to access
> it very soon for testing.
> Also KISS was no secret, it's in the Security project objectives for
> year 2005, as published on this list at the beginning of the year.
> Thanks for your attention.
I am in support of whatever you decide, but I would expect there to be
documentation somewhere stating current policy ( that being that kernel
security bugs are not made into GLSA's ). Knowing this I can work
around it and find other ways to keep my kernel updated. However no one
wants to be under the false pretense that GLSA's cover all security
problems and then get nailed by a kernel security issue.
I don't see anything about the security seciton of gentoo's website
detailing that kernel security issues aren't in GLSA's and I think it
would be helpful to include that. It may even be helpful to add it to
the post_inst of gentoolkit/glsa-check's manpage. Right now if I read
the security handbook or the GLSA documentation I am misinformed.
If you are indeed switching to a system that works better I think many
would enjoy an upgrade of docs, or issuing GLSA's until you have KISS
running, or just documentation that says kernel security bugs are not
covered by GLSA's.
If you want a bug filed, I can do that as well.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
email@example.com mailing list