On 6/21/2011 9:53 AM, Karanbir Singh wrote:
> On 06/21/2011 03:51 PM, Les Mikesell wrote:
>>>
>>> I think a whitelist to allow stuff through on a per rpm basis would be a
>>> better fit.
>>
>> Why is it that you think having the new rpm will be worse than
>> continuing to have the problem the update is intended to fix?
>>
>
> a kernel that does not boot can kind of do that...
But is that really worse than one that allows anyone to become root,
which might be the other choice? And if you can't take the chance or
think you are firewalled well enough that it doesn't matter, why update
at all?
--
Les Mikesell
lesmikesell at gmail.com