upvote

points

by mort967 hours ago |
comments
upvoteby DarkUranium2 hours ago|
next
[-]
The Linux Foundation hasn't been about Linux (except marginally) in a long while, if ever.

The name is a misnomer.

reply
upvoteby dotancohen6 hours ago|
prev|
[-]
A rogue actor may create a new distro, maybe for some niche use case such as accessibility or retro gaming. After acquiring enough false (and even some real) users that the Linux Foundation accepts them as a notifiable distro maintainer, this maintainer could then pwn machines before the exploit is made public.
reply
upvoteby mort966 hours ago|
parent|
next
[-]
I didn't say all distros should be notified, for that exact reason. I listed a handful of major fistros.
reply
upvoteby steve19776 hours ago|
parent|
[-]
Who gets to decide who the lucky few are?
reply
upvoteby mort965 hours ago|
parent|
next
[-]
Sounds like a job for the Linux Foundation maybe?
reply
upvoteby lillecarl5 hours ago|
parent|
prev|
[-]
Human beings
reply
upvoteby steve19775 hours ago|
parent|
[-]
Qualified by what?
reply
upvoteby Dylan168071 hours ago|
parent|
[-]
Are you implying it requires expertise to figure out the ten (plus or minus a factor of two) biggest distros? I think most people that understand the context of the question can figure out pretty similar lists.
reply
upvoteby danlitt6 hours ago|
parent|
prev|
[-]
Rather than the current situation, where they can pwn machines after the exploit is made public?
reply
upvoteby dotancohen4 hours ago|
parent|
[-]
Yes. After the exploit is made public, the window of opportunity closes quickly.
reply
upvoteby danlitt45 minutes ago|
parent|
[-]
Not if people don't get notified!
reply