From: Eric Dumazet <eric.dumazet@gmail.com>
To: Dan Rosenberg <drosenberg@vsecurity.com>
Cc: chas@cmf.nrl.navy.mil, davem@davemloft.net, kuznet@ms2.inr.ac.ru,
pekkas@netcore.fi, jmorris@namei.org, yoshfuji@linux-ipv6.org,
kaber@trash.net, remi.denis-courmont@nokia.com,
netdev@vger.kernel.org, security@kernel.org, stable@kernel.org
Subject: Re: [PATCH 0/9] Fix leaking of kernel heap addresses in net/
Date: Sun, 07 Nov 2010 18:40:34 +0100 [thread overview]
Message-ID: <1289151634.2478.191.camel@edumazet-laptop> (raw)
In-Reply-To: <1289150714.3090.158.camel@Dan>
Le dimanche 07 novembre 2010 à 12:25 -0500, Dan Rosenberg a écrit :
> > NACK
> >
> > Thats a pretty stupid patch series, sorry.
> >
>
> I think it might be more constructive to avoid childish name-calling and
> instead try to guide the conversation in a way that produces a patch
> that would better fit your needs. Even if you don't agree with the
> approach, it's certainly not "stupid".
>
It is stupid. Really Dan. The idea is stupid, not you.
> > You are basically ruining a lot of debugging facilities we use every day
> > to find and fix _real_ bugs. The bugs that happen to crash machines of
> > our customers.
>
> I'm going to give you the benefit of the doubt and assume you're not
> implying that security issues aren't "real" bugs, because that would be
> utterly ridiculous.
>
So what ? Because of security, we must accept even stupid patches ?
> >
> > If you want to avoid a user reading kernel syslog, why dont you fix the
> > problem for non root users able to "dmesg" ? I personally dont care.
> >
>
> This is simply the reality of the current situation. At least while the
> kernel syslog is available to unprivileged users, we need to be more
> careful of what is visible through there.
>
So instead of fixing the problem, you are going to change thousand of
kernel printk() ?
> > I am a root user on my machine, I _want_ to have some pretty basic
> > informations so that I can work on it, and I believe my work is useful.
> >
> > There are pretty easy ways to not disclose "information", but your way
> > of using '0' for all values is the dumbest idea one could ever had.
>
> I'm glad I'm capable of producing "the dumbest idea one could ever had".
> You seem to be quite set on convincing unpaid volunteers such as myself
> to stop sending in patches.
>
I am unpaid volunteer too.
I also had stupid ideas, and other guys said so.
So what ? Should I continue contributing to Linux, or assume I am stupid
and stop ?
> >
> > A single XOR with a "root only visible, random value chosen at boot"
> > would be OK. At least we could continue our work, with litle burden.
>
> Finally, a useful contribution. I'll consider this option after hearing
> from a few more people on the subject.
I am glad you like it. But it also may a _very_ stupid idea. You really
want to have a _lot_ of agreement before even considering it.
next prev parent reply other threads:[~2010-11-07 17:40 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-11-07 16:31 [PATCH 0/9] Fix leaking of kernel heap addresses in net/ Dan Rosenberg
2010-11-07 17:03 ` Eric Dumazet
2010-11-07 17:25 ` Dan Rosenberg
2010-11-07 17:40 ` Eric Dumazet [this message]
2010-11-07 21:53 ` Urs Thuermann
2010-11-08 8:04 ` Rémi Denis-Courmont
2010-11-08 13:13 ` Dan Rosenberg
2010-11-08 13:36 ` Rémi Denis-Courmont
2010-11-08 13:41 ` Dan Rosenberg
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1289151634.2478.191.camel@edumazet-laptop \
--to=eric.dumazet@gmail.com \
--cc=chas@cmf.nrl.navy.mil \
--cc=davem@davemloft.net \
--cc=drosenberg@vsecurity.com \
--cc=jmorris@namei.org \
--cc=kaber@trash.net \
--cc=kuznet@ms2.inr.ac.ru \
--cc=netdev@vger.kernel.org \
--cc=pekkas@netcore.fi \
--cc=remi.denis-courmont@nokia.com \
--cc=security@kernel.org \
--cc=stable@kernel.org \
--cc=yoshfuji@linux-ipv6.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox