On Mar 20, 9:17am, mar...@duskware.de (Martin Husemann) wrote: -- Subject: Re: compat code function pointers
| On Mon, Mar 19, 2018 at 05:55:58PM +0000, David Holland wrote: | > On Mon, Mar 19, 2018 at 08:35:11AM -0400, Christos Zoulas wrote: | > > That's a good idea, but it is more complicated that what we do now, and does | > > not solve the problem for things like NTP or COMPAT_BSDPTY or SYSV_*. | > | > COMPAT_BSDPTY at least should be its own module anyway. | | I'd argue that it should NOT be available as module at all, but work only | when build into the kernel. | | It is only usefull for installers and similar very limited setups and | dangerous in general (or am I misrembering?) As long as it does not autoload; it is actually better to be not compiled in all the time from a security POV. christos
