SCIENTIFIC-LINUX-DEVEL Archives

December 2006

SCIENTIFIC-LINUX-DEVEL@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Sender:
Maillling list for Scientific Linux developers worldwide <[log in to unmask]>
Date:
Sat, 2 Dec 2006 02:15:01 +0100
MIME-version:
1.0
Reply-To:
[log in to unmask]
Content-type:
multipart/signed; boundary=6c2NcOVqGQ03X4Wi; protocol="application/pgp-signature"; micalg=pgp-sha1
Subject:
Re: SL5 - Kernel Modules
From:
Axel Thimm <[log in to unmask]>
In-Reply-To:
<[log in to unmask]>
Content-disposition:
inline
Comments:
To: [log in to unmask]
Parts/Attachments:
text/plain (679 bytes) , application/pgp-signature (194 bytes) 
On Fri, Dec 01, 2006 at 04:21:57PM -0700, Stephen John Smoogen wrote:
> dkms

> Cons)
> a. Its different from how you are currently using
> b. It is yet another way of maintaining kernels.
> c. You have to use a naming convention to say that dkms whatever means
> a kernel module.

The real con for security relevant systems is the need for existence
of build tools (compiler, binutils) on client systems. And you don't
have cryptocraphic security of a central distributed binary
package. You also depend on the client's environment, e.g. if a
scientist is testing gcc5 of rawhide on his system, the kernel modules
would evetually get built by the wrong environment.
-- 
Axel.Thimm at ATrpms.net

ATOM RSS1 RSS2