For a start, he's not crying wolf. It's pretty clear from his posts that these issues are
The majority of the people who understand these security issues are actively trying to abuse
them. The kernel developers either wish to down play the situation so linux doesn't look bad,
don't understand, or do understand but have undeclared motives. It's the PaXTeam and spender
who are exposing the seriousness of the situation. Not only that, they are the ones that have
been pioneering practical exploit mitigation for the last 7-8 years openly, and for free. PaX
features have ended up in every other OS but end up in linux last and watered down. To label
his comments on linux security as spam is ridiculous quite frankly.
FWIW all my dealings with the PaXTeam and spender have been exemplary. Any issue I've had was
answered or fixed unbelievably quickly. They are extremely helpful when approached, yet afaik
no kernel developer has ever actually approached them. The only difficiency in their approach
is that they spend time dealing with trolls like you.
A certain kernel developer said that the kernel land ssp implementation would have mitigated
the vmsplice exploit earlier in the year. The PaXTeam showed (on lkml) that it didn't even
work as intended, fixed it and explained it's shortcomings. I don't think this has even been
fixed upstream, months later.
Also, this is not a "random website". It's a (the?) site dedicated to helping users and
developers digest what's happening in the linux world and discuss it. Not everyone can follow