:: [DNG] grsecurity ripoff by Google,…
トップ ページ
このメッセージを削除
このメッセージに返信
著者: Rick Moen
日付:  
To: dng
題目: [DNG] grsecurity ripoff by Google, with Linus' approval WAS: I have a question about libsystemd0 in devuan ascii,
Miroslav Rovis wrote:

> Heads, which is one of the marvelous thing that happened in FOSS
> lately, and it happened in the Devuan realm of OSes, remains, on top
> of completely free, secured with grsecurity, and not via the Schmoog
> underhanded ripoff of grsecurity code...


Point of information: Wind River (now a subsidiary of Intel) was also
guilty of the same thing, shipping an old release of grsecurity with
backported patches applied to an old kernel, calling the resulting
commercial product 'Carrier Grade Profile for Wind River Linux'
https://web.archive.org/web/20140521162030/http://www.windriver.com:80/announces/security_carrier_grade_profile/
(without even acknowledging grsecurity's trademark).

And also VeriFone (according to spender)
https://forums.grsecurity.net/viewtopic.php?f=3&t=3938&p=13940#p13940

Also the Intel/ARM alliance took grsecurity code without credit.
http://openwall.com/lists/kernel-hardening/2017/05/03/1

Etc.

So, in short, it wasn't just Google, but a widespread problem. Google
was just the last straw for spender & co.