Comment by rincebrain
4 years ago
You keep posting all over this discussion about how the Linux maintainers are making a poor choice and shooting the messenger.
What would you like them to do instead or in addition to this?
4 years ago
You keep posting all over this discussion about how the Linux maintainers are making a poor choice and shooting the messenger.
What would you like them to do instead or in addition to this?
Indeed the situation is bad, nothing can be done. At the very least as long as they can make unintentional vulnerabilities, they are defenseless against intentional ones, and fixing only the former is already a very big deal.
> What would you like them to do instead or in addition to this?
Update the processes and tools to try and catch such malicious infiltrators. Lynching researchers isn't fixing the actual issue right now.
I saw at least one developer lamenting that they were going to potentially bring up mechanisms for having to treat every committer as malicious by default instead of not at the next kernel summit, so it's quite possible that's going to take place.
> lamenting that they were going to potentially bring up mechanisms for having to treat every committer as malicious by default
I think "lamenting" is very much the wrong attitude here. Given all the things that make use of Linux today that seems like the only sane approach to me.
1 reply →
> Update the processes and tools to try and catch such malicious infiltrators.
How?
That's what I'm saying kernel maintainers should figure out.
1 reply →