[snip]
> Get the patch and apply it. I prefer not to rely on papering over the
> holes.
must resist reply....argh
Thank you for offering to work 24hours a day patching my systems at a cost
I can afford. I'll be looking forward to reciving your info so I can get
you on the payroll.
Seriously, no one here would dare replace a real fix with a stack
paperbag.
However, I'm not awake at 10pm Sydney time.. When the exploit comes out
hours before I awake, there is little I can do to protect my systems.
With the advent of scripted identifying and autorooting, it's possible for
an attacker to root dozens, if not hunderds, of systems within hours of an
exploit release.
So even if I had my beeper connected to bugtrack and every underground
cracker IRC channel, I could still be rooted before I got to the keyboard.
After a good root, you never know you've been rooted until your trade
secrets aree on the web.
With noexec-stack there is at least the potential of avoiding this.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/