Proposed F19 Feature: Dracut HostOnly
Matthew Miller
mattdm at fedoraproject.org
Tue Jan 29 16:44:55 UTC 2013
On Tue, Jan 29, 2013 at 05:40:04PM +0100, Nicolas Mailhot wrote:
> bios and glue usb ports). Will fallback perform the security checks of
> the main boot path? When I see 'never ever be removed' does that mean this
> will make sure any Fedora box will have a boot entry to an old kernel,
> with known security bugs, that you only need to trick boot into to get a
> vulnerable system?
Presumably the image is local-only, at least by default. That's not any
worse than letting one provide the kernel with arbitrary parameters at boot
time, which we do already by default. (I'm not sure if the new installer
even has an option for password-protecting grub2, offhand.)
--
Matthew Miller ☁☁☁ Fedora Cloud Architect ☁☁☁ <mattdm at fedoraproject.org>
More information about the devel
mailing list