> So even with Alan's hypervisor support the whole thing would be still > quite holey. The argument of raising the bar also doesn't seem very
Its materially harder, especially with the hypervisor. > convincing to me, because attackers reuse code too and it's enough > when someone publishes such code once, then they can cut'n'paste > it into any exploits forever. Then you fix the specific case and the game continues. > In general the .data protection is only considered a debugging > feature. I don't know why Fedora enables it in their production > kernels. That would be because we think you are wrong 8) Alan - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
