In this post, Ts'o writes: "Since there is no location on disk, there is no place to write the data on a commit; but it also means that there is no security problem." Well, this means that the specific security problem identified, exposure of information to those who are not authorized to see it, or more importantly, introduction of a covert storage channel, has been eliminated However, the lack of a guarantee of the order of writing data can introduce other security issues, such as an incomplete audit trail or inconsistent data (which can both be exploited). Following the POSIX recommendations will close these security holes for trusted applications.
-- Ext4 data loss https://bugs.launchpad.net/bugs/317781 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
