Hi,

On Freitag, 2. März 2012, Kees Cook wrote:
> > +  * The new kernel version includes security restrictions on links,
> > +    These restrictions may cause some legitimate programs to fail.
> > +    In particular, if the 'at' package is installed, you should either:
> > +    - Upgrade it to at least version 3.1.13-1 (or a backport of that)
> > +    - Set sysctl fs.protected_hardlinks=0 (see /etc/sysctl.conf)
> It's a trivial patch[1] to fix "at". How about just backporting that
> change to stable, to avoid that known trouble too? This is what Ubuntu
> did for the Lucid LTS release that was getting backported kernels (with
> link restrictions) built for it.

sounds like a reasonable plan to me, cc:ing debian-release to get a comment
on this, and cc:ing the at maintainer too.

> [1]
> http://anonscm.debian.org/gitweb/?p=collab-maint/at.git;a=commitdiff;h=f4114656c3a6c6f6070e315ffdf940a49eda3279


cheers,
        Holger


--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/201203021147.16121.hol...@layer-acht.org

Reply via email to