to remind - currently almost none of the security options in secure kernel are enabled by default - they have to be manually turned with sysctl.
this makes secure kernel just faked promise. Installing it does not give any more security (well, a bit more) than in normal kernel. trusted, it can be enabled, but majority of people do not even know about it. I ask once more - the patch that enables all configured security settings is two lines. Ater that people can do what they wish - enable or disable at will, but it will boot up as secure as you have configured it. Please note, the problem affects MNF as well that by default does NOT run secure kernel at all. chmouel? warly? -andrey
