Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft

From: Valdis.Kletnieks@xxxxxx
Date: Tue, 02 Sep 2008 12:05:31 -0400

On Tue, 02 Sep 2008 17:17:43 +0800, Pavel Labushev said:

"SECURITY PATCH tag on a fix" helps me to know that there is the problem
and I must consider the patch, check its correctness and maybe
test/backport/apply it to my production systems ASAP. Just as another
tags helps me to know that there are realiability and other issues I
must care about.

OK, now s/security patch/silent data corruption/ and tell me what's *actually*
different.

Wow, you still need to consider it, check it, test it, and deploy it.

Unless of course you don't give a shit about your data. But in that case,
the security patch can probably be overlooked too.

That's Linus's point - if the patch is important enough to go into one of
the -stable tree kernels, it's probably something you want to install, whether
or not it's a security patch.

Attachment: pgpcDifG4GdbG.pgp
Description: PGP signature

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
  - From: Pavel Labushev

References:
- [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
  - From: Fernando Gont
- Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
  - From: coderman
- Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
  - From: Valdis . Kletnieks
- Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
  - From: rholgstad
- Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
  - From: Valdis . Kletnieks
- Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
  - From: Pavel Labushev

Prev by Date: Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
Next by Date: [Full-disclosure] die
Previous by thread: Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
Next by thread: Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
Index(es):
- Date
- Thread

Relevant Pages

Re: Q329170 (MS02-070), Q327984 and slow logoffs
... customers can call 1-866-PCSaftey and mention they have an issue ... > by a handle leak in shlwapi32.dll' whereas this patch does not exist on ... > Computing' means that you also trust security patches not to break other ... The security patch should be re-released, ...
(NT-Bugtraq)
Re: "Save as" always says "not responding" folders wont open
... I went into Add/Remove programs in the Control Panel and do not have the ... This message is posted to a newsgroup. ... patch KB908531 is NOT installed on the machine? ... For a better workaround, until a new security patch is ready, read ...
(microsoft.public.word.application.errors)
Re: Microsoft criticized for silent patches
... security patch involves. ... You are assuming that every change is known beforehand. ... How many bugs do you think are marked as "fixed in passing", ...
(microsoft.public.security)
Re: [Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft
... test/backport/apply it to my production systems ASAP. ... the security patch can probably be overlooked too. ... the -stable tree kernels, it's probably something you want to install, whether ...
(Full-Disclosure)
Re: Q329414 MDAC patch - how do I know it is applied?
... > I ran the security patch on two computers running Windows ... > in that folder on my system. ... a machine with MDAC 2.5 will have a files: ...
(microsoft.public.security)