On Mon, Mar 20, 2017 at 3:50 PM, Cristian Rodríguez <
crrodrig...@opensuse.org> wrote:
>
>
> El 20-03-2017 a las 10:26, D.S. Ljungmark escribió:
> > I find your argument to be strange.
> >
> > "The kernel has this functionality, please do not use it and rather
> > reimplement it in every piece of
El 20-03-2017 a las 10:26, D.S. Ljungmark escribió:
> I find your argument to be strange.
>
> "The kernel has this functionality, please do not use it and rather
> reimplement it in every piece of userspace that ever needs it, because
> that's supposed to be more secure."
>
> I simply don't buy
I find your argument to be strange.
"The kernel has this functionality, please do not use it and rather
reimplement it in every piece of userspace that ever needs it, because
that's supposed to be more secure."
I simply don't buy your argument here.
//D.S.
On Mon, Mar 20, 2017 at 8:22 AM, Eric
Hello,
The latest systemd README and NEWS claim that the userspace interface to the
in-kernel hash algorithms (CONFIG_CRYPTO_USER_API_HASH) is now required.
I don't know how much thought was put into this decision, but I think it's a
mistake security-wise. AF_ALG sockets increase the kernel's at