<font face="Verdana, Arial, Helvetica, sans-serif" size="2">Originally posted by winkydink:
Virtually all linux pathches and upgrades can be installed without rebooting the entire machine. As a matter of fact, the only time you do need to reboot is if you're installing a new kernel. Most kernel exploits require local access to the box and are beyond the realm of the script-kiddies.</font>
But not Jane in accounting. Or any other disgrunted or malice-motivated employee.
To be perfectly blunt, I would lose my head (and job) if I tried to pass off a local exploit as "no big deal" to our security auditors. Internal threat vectors are worse than external threat vectors in many cases--you have to let your employees work, after all.....
*shrugs*
------------------
Saving the world, one clue at a time.