wblock@ said:
I would say that as "You are a target. Get used to it."
This.
Most exploits these days are not some guy sitting down plotting how to break into your specific network.
They're a canned exploit that is sprayed all over.
If you are vulnerable, and you are exposed, you will eventually be exploited - whether you are "a target" or not.
Your choices are pretty much
- eliminate the vulnerability
- eliminate the exposure (often not possible due to service provision)
- both of the above
- get hacked
I'm keen to see IPv6 properly take off, as scanning for vulnerable hosts to exploit or even just spraying a subnet hoping to hit something is a lot harder. Sure, you'll still have public services exposed via DNS, but collecting surveillance is going to be a lot more difficult and will require network sniffing. And even then, due to the randomized IPv6 privacy stuff, it will only be valid for a limited time.
kpedersen said:
This kinda gives me the feeling that the developers of the proprietary catalyst drivers don't actually understand how Linux works. This is ultimately AMD forcing it's users to use an old deprecated and insecure version of Linux whilst AMD chant how perfect the drivers are.
Alternatively, I would suggest it is the Linux kernel devs not understanding how driver development works in the real world.
If they actually want hardware vendors to start caring and supporting their hardware on Linux, maintaining a stable kernel ABI for some committed period of time would be a start. How can a hardware vendor budget for Linux driver support when there is a big unknown regarding re-writes to support a moving platform?
Yes this will enable closed source drivers to function more easily. Do you want drivers or not?
