On 04/27/2018 03:26 AM, jdow wrote:
And before I forget there are two features of the RDBs that I heartily recommend never implementing on Linux. They were good ideas at the time; but, times changed. The RDBs are capable of storing a filesystem driver and some drive init code for the plugin disk driver card. That is giving malware authors entirely goo easy a shot at owning a machine. Martin S., I would strongly suggest that going forward those two capabilities be removed from the RDB readers in AmigaOS as well as Linux OS.
I assume removing the feature for AmigaOS isn't really possible since we don't have the source code for that, do we? Also, if I remember correctly, Mac partitions can store filesystem drivers as well and its actually a feature being used in MacOS. parted received a patch some time ago to fix the correct handling for storing the filesystem driver in the partition table. I would be generally against removing these features as I don't think the security risk is relevant for the majority of users. The Amiga is a hobbyist machine these days and AmigaOS has certainly way more on than way to be compromised through vulnerabilities. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaubitz@xxxxxxxxxx `. `' Freie Universitaet Berlin - glaubitz@xxxxxxxxxxxxxxxxxxx `- GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To unsubscribe from this list: send the line "unsubscribe linux-m68k" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
