Conversation
larsmb@mastodon.online

Lars Marowsky-Brée 😷

It is 2025.

Customers want to run high-end storage performance tests for software released this month on 5.10.

(Yes, I know it's a (S)LTS kernel, but still, that's ridiculous.)

2
1
0
gregkh

Greg K-H

Reply to @larsmb@mastodon.online
@larsmb Surely nothing has changed in Linux since 2020 :)
1
0
1
ptesarik@infosec.exchange

Petr Tesařík

Reply to @larsmb@mastodon.online

@larsmb I'm not surprised. Obsolete software tends to receive fewer updates, which is perceived as being “more stable”.

1
0
0
larsmb@mastodon.online

Lars Marowsky-Brée 😷

Reply to @ptesarik@infosec.exchange

@ptesarik I know (and I also know it's partly "our" fault b/c we trained them to perceive updates as dangerous), but why even bother to test a software release (that brings in a fairly modern storage engine that relies on, well, modern kernel features among other things) on Debian Bullseye, which is out of security support and EOLs in <1 year?

That makes very little sense to me.

0
0
0
ptesarik@infosec.exchange

Petr Tesařík

Reply to @gregkh

@gregkh @larsmb Definitely. Maybe a few lines in the MAINTAINERS file, but that's it, right?

2
0
0
larsmb@mastodon.online

Lars Marowsky-Brée 😷

Reply to @ptesarik@infosec.exchange

@ptesarik @gregkh Probably tons of new bugs, best not to risk it.

(Which, yeah, can be valid in very specific environments. Which, uh, politely, I don't think most of them doing this qualify as. But again, I also realize *why* they do it and whose fault that ultimately is, I just don't like it.)

0
0
0
darix@mastodon.social

darix

Reply to @ptesarik@infosec.exchange

@ptesarik @gregkh @larsmb QNAP just released a new NAS ... with kernel 4.2

1
0
0
gregkh

Greg K-H

Reply to @darix@mastodon.social
@darix @ptesarik @larsmb Good news is that it will be trivial to get root on the thing so that you can update the kernel yourself to a more secure one :)
1
0
3
ptesarik@infosec.exchange

Petr Tesařík

Reply to @gregkh

@gregkh @larsmb @darix
Remember: Always close the backdoor behind you after using it.

0
1
0
About social.kernel.org

Terms of service

  1. Please do not use this service in violation of the Linux Kernel Code of Conduct. Doing so will result in your account suspension with the referral of the matter to the CoC committee.

  2. "Repeating"/"boosting" someone else's status on this platform will be treated as endorsement and will fall under rule #1.

  3. You are encouraged to use this platform to promote your work on the Linux Kernel, but there is no restriction on permitted topics (with the exception of anything covered by #1 above).

  4. There is no requirement to post in English, but it should be considered the primary language of communication on this platform.

Privacy notice

The admins of this service have access to all posted statuses. They aren't looking, but if it's something they shouldn't know about, then you should not post it on this platform.

Please see the Linux Foundation Privacy Policy, which applies to this platform as well.

Getting your own account

If you would like an account on this instance, please check that the following applies to you:

  • You are listed in MAINTAINERS or CREDITS

  • OR: You have a kernel.org account or email address

  • OR: You have a long and established history of involvement with the Linux Kernel

If the above is true and you agree with the Terms of Service and Privacy Notice listed above, please use these instructions to request an account: