On Fri, Oct 26, 2012 at 11:50 AM, Kees Cook <keescook@xxxxxxxxxxxx> wrote:
> There are situations where devices running without initrds may need
> very early protection from link vulnerabilities
I really don't see what this argument is all about.
If you don't have initrd, you still have early bootup scripts etc.
If your early bootup has security problems, you have security
problems. It has nothing to do with initrd, or with restricted links,
or anything else.
I also refuse to add these kinds of micro-management config options
and ask any kind of normal person these kinds of "do you want this
random crazy feature". A config option would need to be way more sane,
not this kind of micro-management.
Linus
--
To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
