Re: [stable] Linux 2.6.25.10

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Linus Torvalds

Date: Monday, July 14, 2008 - 7:27 pm

On Tue, 15 Jul 2008, pageexec@freemail.hu wrote:
quoted text> 
> so guys (meaning not only Greg but Andrew, Linus, et al.), when will you
> publicly explain why you're covering up security impact of bugs? and even
> more importantly, when will you change your policy or bring your process
> in line with what you declared?

We went through this discussion a couple of weeks ago, and I had 
absolutely zero interest in explaining it again.

I personally don't like embargoes. I don't think they work. That means 
that I want to fix things asap. But that also means that there is never a 
time when you can "let people know", except when it's not an issue any 
more, at which point there is no _point_ in letting people know any more.

So I personally consider security bugs to be just "normal bugs". I don't 
cover them up, but I also don't have any reason what-so-ever to think it's 
a good idea to track them and announce them as something special. 

So there is no "policy". Nor is it likely to change. 

			Linus
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Linux 2.6.25.10, Greg KH, (Wed Jul 2, 8:58 pm)

Re: Linux 2.6.25.10, Greg KH, (Wed Jul 2, 8:58 pm)

Re: Linux 2.6.25.10, Bart Van Assche, (Thu Jul 3, 10:08 am)

Re: Linux 2.6.25.10, Greg KH, (Thu Jul 3, 10:29 am)

Re: Linux 2.6.25.10, Greg KH, (Thu Jul 3, 11:57 am)

Re: Linux 2.6.25.10, pageexec, (Thu Jul 3, 12:31 pm)

Re: Linux 2.6.25.10, Bart Van Assche, (Sat Jul 5, 12:54 am)

Re: Linux 2.6.25.10, Greg KH, (Mon Jul 7, 9:12 pm)

Re: [stable] Linux 2.6.25.10, Greg KH, (Mon Jul 14, 5:04 am)

Re: [stable] Linux 2.6.25.10, pageexec, (Mon Jul 14, 7:14 pm)

Re: [stable] Linux 2.6.25.10, Linus Torvalds, (Mon Jul 14, 7:27 pm)

Re: [stable] Linux 2.6.25.10, pageexec, (Tue Jul 15, 8:31 am)

Re: [stable] Linux 2.6.25.10, Linus Torvalds, (Tue Jul 15, 9:07 am)

Re: [stable] Linux 2.6.25.10, Linus Torvalds, (Tue Jul 15, 9:13 am)

Re: [stable] Linux 2.6.25.10, Theodore Tso, (Tue Jul 15, 11:33 am)

Re: [stable] Linux 2.6.25.10, pageexec, (Tue Jul 15, 12:03 pm)

Re: [stable] Linux 2.6.25.10, Linus Torvalds, (Tue Jul 15, 12:16 pm)

Re: [stable] Linux 2.6.25.10, Tiago Assumpcao, (Tue Jul 15, 1:15 pm)

Re: [stable] Linux 2.6.25.10, pageexec, (Tue Jul 15, 1:28 pm)

Re: [stable] Linux 2.6.25.10, Greg KH, (Tue Jul 15, 3:39 pm)

Re: [stable] Linux 2.6.25.10, David Miller, (Tue Jul 15, 3:47 pm)

Re: [stable] Linux 2.6.25.10, Tiago Assumpcao, (Tue Jul 15, 4:08 pm)

Re: [stable] Linux 2.6.25.10, pageexec, (Tue Jul 15, 4:09 pm)

Re: [stable] Linux 2.6.25.10, David Miller, (Tue Jul 15, 4:21 pm)

Re: [stable] Linux 2.6.25.10, pageexec, (Tue Jul 15, 4:22 pm)

Re: [stable] Linux 2.6.25.10, pageexec, (Tue Jul 15, 4:26 pm)

Re: [stable] Linux 2.6.25.10, Tiago Assumpcao, (Tue Jul 15, 4:26 pm)

Re: [stable] Linux 2.6.25.10, Tiago Assumpcao, (Tue Jul 15, 4:34 pm)

Re: [stable] Linux 2.6.25.10, David Miller, (Tue Jul 15, 4:35 pm)

Re: [stable] Linux 2.6.25.10, Aidan Thornton, (Thu Jul 17, 2:08 pm)

RE: [stable] Linux 2.6.25.10, David Schwartz, (Fri Jul 18, 5:47 pm)

RE: [stable] Linux 2.6.25.10, david, (Fri Jul 18, 6:01 pm)

RE: [stable] Linux 2.6.25.10, David Schwartz, (Fri Jul 18, 6:51 pm)

Re: [stable] Linux 2.6.25.10, Willy Tarreau, (Fri Jul 18, 10:41 pm)

Re: [stable] Linux 2.6.25.10, Bernd Eckenfels, (Sat Jul 19, 6:13 pm)


linux-kernel:
Bruce Allen	ECC and DMA to/from disk controllers
Chuck Ebbert	Re: Why do so many machines need "noapic"?
Thomas Gleixner	Re: Why do so many machines need "noapic"?
Junio C Hamano	[ANNOUNCE] Git 1.7.1
Linus Torvalds	Linux 2.6.24-rc8
git:
Radoslaw Szkodzinski	git-unadd anyone?
carbonated beverage	Re: fatal: ambiguous argument 'HEAD': unknown revision or path not in the working ...
Giuseppe Bilotta	git-svn tags and branches
Michael Hendricks	removing content from git history
Oliver Kullmann	Re: "bash: git-upload-pack: command not found" ??
linux-netdev:
Frans Pop	[PATCH] ipv4: make default for INET_LRO consistent with help text
Tetsuo Handa	Re: [PATCH] LSM: Add post recvmsg() hook.
Francois Romieu	Re: ksoftirqd high cpu load on kernels 2.6.24 to 2.6.27-rc1-mm1
FUJITA Tomonori	[PATCH] ARM: dmabounce: fix partial sync in dma_sync_single_* API
David Lamparter	[BUG] bridge leaks 3 references on lo per up&down
openbsd-misc:
Tourville Ferebee	u get it, Miss M'ri."
Marco Peereboom	Re: tmux vs screen questions
CICG (Centre d'Information et de Communication Gouvernementale)	Conseil des Ministres du 22 Juillet 2010
jared r r spiegel	Re: openbsd.mirror.frontiernet.net downtime
Justin	Re: PF synproxy - never worked?
git-commits-head:
Linux Kernel Mailing List	Disallow gcc versions 4.1.{0,1}
Linux Kernel Mailing List	intel_idle: native hardware cpuidle driver for latest Intel processors
Linux Kernel Mailing List	igb: restrict WoL for 82576 ET2 Quad Port Server Adapter
Linux Kernel Mailing List	powerpc: Fix feature-fixup tests for gcc 4.5
Linux Kernel Mailing List	hwmon: Fix autoloading of fschmd on recent Fujitsu machines