RE: [Cooker] Software submission for the Mandrake distribution

Wed, 20 Aug 2003 23:09:55 -0700 

> I agree too.
:(

> But I have another reason : such a software on the same computer is a
> fantastic SECURITY HOLE !
Please!!! Could you define a 'SECURITY HOLE'??

Letting an unauthorized user access an ext2 partition from Windows NT
could cause a 'security breach'.

Setting up a dual-boot would be a security hole! :))

> It allows to write on protected files. I remember such a software for
> windows95 which allows to acces to ext2. Please don't spread this
> software ... and use reiserfs or better the new reiser4.
Not spreading that software is *not* a solution to this
'Security hole'.
:))

I am not even suggesting that this is not an issue.
Guillaume Cottenceau ([EMAIL PROTECTED]), they guy who responded to me
when I wrote to [EMAIL PROTECTED] also expressed similar concerns.

Probable solutions to this issue:
1. Permit the Administrator to configure who can access what.
        a. who can access system files
        b. protected files
2. Set the driver to load manually - with only administrators allowed to
        load it.

Trying to map the users in NT with that of that linux installation is IMHO
not a practical solution.

Right now, it does not prevent any user from accessing any file.
But that can be changed. :)

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Pierre Jarillon
Sent: Thursday, August 21, 2003 4:52 AM
To: [EMAIL PROTECTED]
Subject: Re: [Cooker] Software submission for the Mandrake distribution


Le Mercredi 20 Août 2003 15:54, Frederic Crozat a écrit :
> On Wed, 20 Aug 2003 19:18:25 +0530, Manoj Joseph wrote:
> > Hi,
> >
> > I have a piece of software that I would like to submit for
> > consideration for inclusion in the Mandrake distribution.
> > I wrote to [EMAIL PROTECTED] I was directed to make a
> > presentation in this forum.
> >
> > The software is an ext2 file system driver for Windows NT 4.0.
> > URL : http://winext2fsd.sourceforge.net
>
> We are doing a linux distribution.. You should ask Microsoft to ship this
> driver, not us..

I agree too.
But I have another reason : such a software on the same computer is a
fantastic SECURITY HOLE !

It allows to write on protected files. I remember such a software for
windows95 which allows to acces to ext2. Please don't spread this
software ... and use reiserfs or better the new reiser4.

--
Pierre Jarillon - http://pjarillon.free.fr/
Vice-président de l'ABUL : http://abul.org/

Reply via email to