"[…] It is clear that the current process is based on the learnings, and frustrations, the [#Linux #kernel's CVE] team has faced in the past. […] By taking this position, this effort is now duplicated across thousands of engineering teams ad infinitum, […]"
Well, yeah, but guess what: maybe then the companies behind those engineering teams will join up and invest money to handle the problem "[…] at the source, in a central, efficient and reliable manner. […]". 😬
https://amanitasecurity.com/posts/dear-linux-kernel-cna-what-have-you-done/
Thorsten Leemhuis (acct. 1/4) /
npub1fz…emju7
2024-03-07 11:42:41
Author Public Key
npub1fzflkuaynm4r0fgzxpjky4t3266gm8es3cw34xtmlczwa3wt70us6emju7Published at
2024-03-07 11:42:41Event JSON
{
"id": "14dd3a38f2e2b79611e4d3ee03650980eef8f24da240158d4fa48b251576fb66",
"pubkey": "4893fb73a49eea37a502306562557156b48d9f308e1d1a997bfe04eec5cbf3f9",
"created_at": 1709811761,
"kind": 1,
"tags": [
[
"t",
"linux"
],
[
"t",
"kernel"
],
[
"proxy",
"https://fosstodon.org/users/kernellogger/statuses/112054223576853071",
"activitypub"
]
],
"content": "\"[…] It is clear that the current process is based on the learnings, and frustrations, the [#Linux #kernel's CVE] team has faced in the past. […] By taking this position, this effort is now duplicated across thousands of engineering teams ad infinitum, […]\"\n\nWell, yeah, but guess what: maybe then the companies behind those engineering teams will join up and invest money to handle the problem \"[…] at the source, in a central, efficient and reliable manner. […]\". 😬 \n\nhttps://amanitasecurity.com/posts/dear-linux-kernel-cna-what-have-you-done/",
"sig": "16a8a52f248f3da0286e205ff9c41f8836a3517a06e86880885600229de619ab737314727e61a684ca54c40f82577c2c31afe108c6b63fc9d4bc3584088badfe"
}