Re: [POSSIBLE GRAVE SECURITY HOLD]

To: Pierre Beyssac <beyssac@enst.fr>
Cc: Samuel Tardieu <sam@debian.org>, Adam Di Carlo <adam@onshore.com>, "Huneycutt, Doug" <doug.huneycutt@lmco.com>, 56821@bugs.debian.org, pb@enst.fr, quinot@enst.fr, debian-devel@lists.debian.org
Subject: Re: [POSSIBLE GRAVE SECURITY HOLD]
From: John Goerzen <jgoerzen@complete.org>
Date: 02 Feb 2000 11:26:19 -0600
Message-id: <87n1pjy0qs.fsf@erwin.complete.org>
In-reply-to: Pierre Beyssac's message of "Wed, 2 Feb 2000 18:18:55 +0100"
References: <2000-02-02-11-38-12+trackit+sam@debian.org> <87vh47k3v1.fsf@erwin.complete.org> <20000202175255.E50448@enst.fr> <873drby1na.fsf@erwin.complete.org> <20000202181855.H50448@enst.fr>

Pierre Beyssac <beyssac@enst.fr> writes:

> On Wed, Feb 02, 2000 at 11:06:49AM -0600, John Goerzen wrote:
> > Your attempt to take my argument to the logical extreme has failed.  I
> > suggest that we should make the system as secure as possible while
> > keeping it usable.
> 
> And my answer is that your argument is flawed in that particular
> case.

No it's not, because the case you suggested was not one that ever
existed.

> 
> I'd like to know what your answer to the following questions is:
> 
> 	- what is the purpose, in terms of system usability, of
> 	  this MBR, other than bypassing BIOS and Lilo controls,
> 	  which hardly qualifies by my book?

Uhmm, is this not inherently obvious?  If you don't want LILO in the
MBR, then you have to have SOMETHING there to boot the box.  Not
everyone had DOS on the machine previously.

What about thsoe that don't use LILO?  Maybe they use syslinux or some
such.  Still need a boot record.  And if they can fit a partition
selector into there too, great!  this way, even if you repartition
your disk, you can still select which partition to boot.

> 	- what is the purpose, in terms of system usability, of
> 	  NOT EXPLICITLY DOCUMENTING that behaviour in the install
> 	  process?

It is documented.  As I already acknowledged, perhaps a help button in
dinstall would be usefull, but let's stop this over-reaction and
FUD-spreading please.   It's not a "GRAVE SECURITY HOLD" issue.

> 	- what is the purpose, in terms of system usability, of
> 	  not issuing an advisory to warn vulnerable sites?

Of what?

Reply to:

Follow-Ups:
- Re: [POSSIBLE GRAVE SECURITY HOLD]
  - From: Pierre Beyssac <beyssac@enst.fr>
- Re: [POSSIBLE GRAVE SECURITY HOLD]
  - From: Nils Jeppe <nils@jeppe.de>
- Re: [POSSIBLE GRAVE SECURITY HOLD]
  - From: Michael Stone <mstone@debian.org>

References:
- [POSSIBLE GRAVE SECURITY HOLD]
  - From: Samuel Tardieu <sam@debian.org>
- Re: [POSSIBLE GRAVE SECURITY HOLD]
  - From: John Goerzen <jgoerzen@complete.org>
- Re: [POSSIBLE GRAVE SECURITY HOLD]
  - From: Pierre Beyssac <beyssac@enst.fr>
- Re: [POSSIBLE GRAVE SECURITY HOLD]
  - From: John Goerzen <jgoerzen@complete.org>
- Re: [POSSIBLE GRAVE SECURITY HOLD]
  - From: Pierre Beyssac <beyssac@enst.fr>

Prev by Date: Securing a Debian machine
Next by Date: Re: [POSSIBLE GRAVE SECURITY HOLD]
Previous by thread: Re: [POSSIBLE GRAVE SECURITY HOLD]
Next by thread: Re: [POSSIBLE GRAVE SECURITY HOLD]
Index(es):
- Date
- Thread