Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for December 5, 2013
Deadline scheduling: coming soon?
LWN.net Weekly Edition for November 27, 2013
ACPI for ARM?
LWN.net Weekly Edition for November 21, 2013
Update-notifier is a useful part of the solution.
You missed the point
Posted Feb 14, 2008 4:19 UTC (Thu) by JoeBuck (subscriber, #2330)
So it isn't good enough to have a "notify that there are updates" mechanism.
A vendor might mitigate that risk by coming up initially in a "safe mode", where the very first thing the user does is grab the updates, with as tight as possible a firewall installed. If the purchaser of a new box pretty much has to install the security updates before having a fully functional machine, that should mitigate security disasters.
If vendors won't do the responsible thing, then we have to make sure that users understand that security updates are not optional. And if a vendor doesn't provide adequate security coverage, then we need to shame them into it.
Posted Feb 14, 2008 6:59 UTC (Thu) by midg3t (guest, #30998)
I like your suggestion of requiring security updates upon first boot.
Of course there would have to be a small button that says "No thanks, I know what I'm doing"
for when the update server is unreachable.
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds