Re: own kernel vs debian kernel (was: ptrace exploit)

To: debian-security@lists.debian.org
Subject: Re: own kernel vs debian kernel (was: ptrace exploit)
From: Filippo Carone <f.carone@fastwebnet.it>
Date: Thu, 17 Apr 2003 03:05:13 +0200
Message-id: <[🔎] 20030417010513.GA1243@robinhood.taz>
In-reply-to: <[🔎] 20030412123521.GA17439@vnl.com>
References: <[🔎] 20030412034533.GA17590@heimdall.wolfheart.ro> <[🔎] 200304121055.31029.lgomez@infoemergencias.com> <[🔎] 20030412123521.GA17439@vnl.com>

* Dale Amon (amon@vnl.com) ha scritto:
> I roll my own; nomodules for servers or secure machines, modules for 
> non-secure workstations. Configure them to the specific minimum requirements
> of the particular use and not one option more.

 What you say here may lead to confusion. A monolithic kernel doesn't
give you added security toward a modular kernel. To make the kernel a
little bit more secure I'd use grsecurity (ie to prevent code injection,
syscall hijacking and so on).

 Just use modules if you like them.

> 
> Probably best recommendation is to build your own and make
> kpkg's.
> 

 IMHO that's a "Good Thing"(TM).

 Cheers,
 fc

Reply to:

Follow-Ups:
- Re: own kernel vs debian kernel (was: ptrace exploit)
  - From: Dale Amon <amon@vnl.com>

References:
- ptrace exploit
  - From: Birzan George Cristian <ymir@wolfheart.ro>
- own kernel vs debian kernel (was: ptrace exploit)
  - From: Luis Gomez <lgomez@infoemergencias.com>
- Re: own kernel vs debian kernel (was: ptrace exploit)
  - From: Dale Amon <amon@vnl.com>

Prev by Date: Re: VPN: SSH or IPSec???
Next by Date: RE: own kernel vs debian kernel (was: ptrace exploit)
Previous by thread: Re: own kernel vs debian kernel
Next by thread: Re: own kernel vs debian kernel (was: ptrace exploit)
Index(es):
- Date
- Thread