bug#61216: Disabling unprivileged BPF by default in our kernels

help-debbugs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#61216: Disabling unprivileged BPF by default in our kernels

From:	Tobias Geerinckx-Rice
Subject:	bug#61216: Disabling unprivileged BPF by default in our kernels
Date:	Wed, 01 Feb 2023 20:43:42 +0100

Ekaitz Zarraga 写道：

What does Debian's kconfig list forCONFIG_BPF_UNPRIV_DEFAULT_OFF?

I've always had this option set to Y in my own kernels, and it hasnever so much as inconvenienced me. However, I'm not a BPF poweruser.

Does anyone know any serious and concrete drawbacks to settingthis option in all Guix kernels, to increase default security &better align with other major distros?


Kind regards,

T G-R

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

bug#61216: Disabling unprivileged BPF by default in our kernels, Tobias Geerinckx-Rice <=

Prev by Date: Re: bug#61142: Acknowledgement (29.0.60; java-ts-mode - Wrong indentation for the body of multiple lines conditions)
Next by Date: bug#61557: vdirsyncer fails to verify certificates
Previous by thread: Re: bug#61142: Acknowledgement (29.0.60; java-ts-mode - Wrong indentation for the body of multiple lines conditions)
Next by thread: bug#61557: vdirsyncer fails to verify certificates
Index(es):
- Date
- Thread