Torvalds irate over Linux Smack

By on
Torvalds irate over Linux Smack

Linus Torvalds has launched a blistering attack on security programmers who object to adding the Smack application to the upcoming 2.6.24 Linux kernel.

In an often heated exchange, Torvalds accused security programmers of being too concerned with theoretical problems and not enough with practical applications.

Smack uses Linux Security Modules (LSM) which some researchers believe could be used to aid attacks on systems using the code. The researchers would prefer to see Security-Enhanced Linux as the option of choice.

"If LSM remains, security will never be a first class citizen of the kernel, " said Linux developer James Morris.

"Application developers will see multiple security schemes, and either burn themselves trying to support them, or more likely ignore them.

"On a broader scale, we will miss the potential of Linux having a coherent, semantically strong security architecture."

But this set Torvalds off on a rant about the impossibility of satisfying the demands of security researchers.

"You security people are insane. I am tired of this 'only my version is correct' crap," he wrote.

"The whole and only point of LSM was to get away from that. And anybody who claims that there is 'consensus' on Security-Enhanced Linux is just in denial."

Torvalds got so riled that he started posting some comments in block capitals, which in discussion terms represents shouting.

"If you guys had been able to argue on hard data and be in agreement, LSM would not have been needed in the first place. BUT THAT WAS NOT THE CASE," he wrote.

"And perhaps more importantly: BUT THAT IS *STILL* NOT THE CASE. Sorry for the shouting, but I am serious about this."

Torvalds concluded by stating that LSM will stay in the kernel and that this is his final decision.

He added that he might change his mind if security people made decent arguments, but that this was as likely as "hell freezing over or pigs nesting in trees".
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
iratelinuxoversmacksoftwaretorvalds

Sponsored Whitepapers

Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see
Beyond FTP: Securing and Managing File Transfers
Beyond FTP: Securing and Managing File Transfers
NextGen Security Operations: A Roadmap for the Future
NextGen Security Operations: A Roadmap for the Future
Video: Watch Juniper talk about its Aston Martin partnership
Video: Watch Juniper talk about its Aston Martin partnership
Don’t pay the ransom: A three-step guide to ransomware protection
Don’t pay the ransom: A three-step guide to ransomware protection

Events

Most Read Articles

NSW digital driver's licences 'easily forgeable'

NSW digital driver's licences 'easily forgeable'
Kmart Australia re-platforms ecommerce site to AWS

Kmart Australia re-platforms ecommerce site to AWS
NBN Co's 250Mbps and gigabit growth is finally clear

NBN Co's 250Mbps and gigabit growth is finally clear
NBN Co sizes up six-figure customer exodus a year to fixed wireless

NBN Co sizes up six-figure customer exodus a year to fixed wireless

Digital Nation

Case Study: PlayHQ leverages graph technologies for sports administration
Case Study: PlayHQ leverages graph technologies for sports administration
As NFTs gain traction, businesses start taking early bets
As NFTs gain traction, businesses start taking early bets
The other ‘CTO’: The emerging role of the chief transformation officer
The other ‘CTO’: The emerging role of the chief transformation officer
COVER STORY: From cost control to customer fanatics, AI is transforming the contact centre
COVER STORY: From cost control to customer fanatics, AI is transforming the contact centre
Metaverse hype will transition into new business models by mid decade: Gartner
Metaverse hype will transition into new business models by mid decade: Gartner

Log In

  |  Forgot your password?