Re: LSM or GRSecurity
Thanks for the info on this.
I'll try out GRSec 1.9.2. Are there any Debian packages, besides the
actual patch itself, that i need to download (or perhaps would be
benefitial in supplementing GRSec, even if not required)?
Thanks.
----- Original Message -----
From: "Russell Coker" <russell@coker.com.au>
To: "Jason Lim" <maillist@jasonlim.com>; <debian-isp@lists.debian.org>
Sent: Thursday, February 28, 2002 10:31 PM
Subject: Re: LSM or GRSecurity
> On Wed, 27 Feb 2002 15:14, Jason Lim wrote:
> > So you just applied the kernel patches (they work on 2.4.17, right?),
and
> > that should be it? Blah... I know I should be installing the package
and
>
> Yes, it just works!
>
> I started with Linux when patching your own kernel was expected, and
> something you did regularly. So I've never had any aversion to patching
> kernels, running beta kernels on servers, etc. I can understand how you
> might get nervous about it though.
>
> One thing to note with grsecurity, lsm, and probably many other kernel
> patches is that the feature set that's available depends on the version
of
> the kernel you use. The current grsecurity kernel-patch package has two
> versions of the patch, 1.9.2 for kernels >= 2.4.16 and 1.8.9 for kernels
<=
> 2.4.14. I am not sure which version you'll get if you apply it to
2.4.15.
>
> --
> If you send email to me or to a mailing list that I use which has >4
lines
> of legalistic junk at the end then you are specifically authorizing me
to do
> whatever I wish with the message and all other messages from your
domain, by
> posting the message you agree that your long legalistic sig is void.
>
>
> --
> To UNSUBSCRIBE, email to debian-isp-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
listmaster@lists.debian.org
>
>
Reply to: