Hello, On Sun, Jun 29, 2003 at 12:19:29AM -0700, Chris Hecker wrote: > I now build my own linux kernel for alpha (see the thread about SRM > nightmare, etc.), and I've been using 2.4.21 from kernel.org on the > recommendation of this list. I just got the following security advisory on > the debian-security mailing list. The question is, the 2.4.21 source on > the kernel.org homepage doesn't seem to have changed. What is the right > way for me to get the changes mentioned below to secure my kernel now that > I build it myself? Is there an official site for this kind of thing? I solved the problem by charting the kernel problems I was aware of and comparing the various kernel (stock 2.4.21, Debian, Redhat). The best kernel I came up with was the *sid* 2.4.21. It is no problem to download the .tar.gz from an archive and to build it on woody (or any other distro for that matter). I also applied the grsec-patch, but it fails; the latest stock one (from the grsec-home page) (not the Debian one!!) only has a few conflicts which I was able to fix manually except for the ones in the ip4-layer. So my recomendation: Get the Debian 2.4.21 *unless* you need some of the things in the HP-Kernels (Hardware-Support mainly). It runs nicely on i386 and alpha. Greetings Helge P.S. You can of course build this kernel with make-kpkg; I had to remove the Debian-directory for that though. -- Helge Kreutzmann, Dipl.-Phys. Helge.Kreutzmann@itp.uni-hannover.de gpg signed mail preferred gpg-key: finger kreutzm@rigel.itp.uni-hannover.de 64bit GNU powered http://www.itp.uni-hannover.de/~kreutzm Help keep free software "libre": http://www.freepatents.org/
Attachment:
pgpF8lJjlBfDO.pgp
Description: PGP signature