Handling kernel security problems

> the out-of-tree grsecurity project which, from a suitably cynical point
> of view, could be seen to benefit from raising the profile of Linux
> kernel security problems. 

given that we're talking about kernel security bugs and grsecurity is implemented in the
kernel, we're almost as much affected by them as anyone else is. while we do provide
protection mechanisms on certain archs against a few classes of bugs and exploit techniques,
they're very far from being an as comprehensive protection as say the one against remotely
exploitable memory corruption bugs. so what is this benefit we're supposed to have? if it's
increasing the number of grsec users then i think they're indeed better off, i don't see it as
anything negative. do you? also you should have noticed that we *never* once brought grsec or
PaX into the discussion, it was every single time someone else who just couldn't help it. it
was a very conscious decision exactly to avoid such accusations that your cynical self threw
out.