"One tactic to deal with LLM-powered vulnerability detection is simple - just speed up the removal of old code. If it's gone, it no longer matters if it's buggy."
"The good news is that there's one fairly dramatic but simple approach to handling this: if the bugs are in very old drivers for very old hardware, then don't even try to fix them - just remove them."
"Linux benchmarking and news site Phoronix reckons just the Ethernet devices will remove nearly 30,000 lines of code."
Automated tools are rapidly detecting software flaws, including long-standing bugs in systems like OpenBSD and Linux. A practical approach to address these vulnerabilities is to remove outdated drivers and hardware support instead of attempting fixes. Recent kernel changes have eliminated drivers for various old devices, including 3Com hardware and other legacy cards. This strategy not only simplifies code maintenance but also significantly reduces the codebase, with estimates suggesting nearly 30,000 lines of code could be removed by focusing on obsolete devices.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]