[prev in list] [next in list] [prev in thread] [next in thread] 

List:       linux-kernel
Subject:    Re: DEVFSv50 and /dev/fb? (or /dev/fb/? ???)
From:       Raul Miller <rdm () test ! legislate ! com>
Date:       1998-08-20 1:31:19
[Download RAW message or body]

Richard Gooch <rgooch@atnf.csiro.au> wrote:
> This seems to be contrary to the accepted view by security people
> which is to close of the holes *fast* and then worry about evidence. I
> think the consensus is that "evidence" does not translate into
> convictions (unless you are lucky and the cracker is in the same
> state/country as you and has left other clues lying around).

What?

You're talking about losing information at reboot, not any kind of
immediate fix.  That's security by coincidence, at best.

Furthermore, you're talking about "correcting" changes introduced by root.
That's *never* a security fix.  That barely even counts as security by
obscurity.

-- 
Raul

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.altern.org/andrebalsa/doc/lkml-faq.html

[prev in list] [next in list] [prev in thread] [next in thread]