Re: kernel-source 2.4.20 + grsecurity + freeswan
On Thu, Jun 05, 2003 at 10:32:59PM +0200, Vinai Kopp wrote:
>Hi,
>
>currently I'm setting up a gateway machine for a small office
>network. After the recent threads about rooted woody boxes I feel it
>would be iresponsible to set up a box without a grsecurity patched
>kernel.
>The problem is I also need the box to be a VPN gateway. One of
>the reasons I got the deal was because I said IPSEC would be a good
>solution, so I don't want to back out and use another VPN option
>like openvpn.
>
>There seem to be problems using both the grsecurity and the freeswan
>patches (at least I haven't been successfull applying the patches - I
>tried the debian versions and the "official" ones from the different
>project sites of the patches and the kernel sources).
>
>Does anybody have debian/stable boxes running kernels with
>grsecurity and freeswan? Any hints/experiences to share?
>
>Is there another solution I'm missing that you would suggest?
>
>Google turned up plenty of hits, but I didn't find any solutions.
>
>Thank you and best regards,
>
>Vinai
You might want to have a look at adamantix.org. It is a woody based
distro with freeswan, PAX, and RSBAC kernel patches, plus all the
packages are compiled with the gcc stack smashing patch.
--
Peter Hicks
GnuPG public key: http://jah.net/~petong/public_key.txt
Key Fingerprint: 4E24 3C78 A165 537C 729C 8D25 3547 3CE9 9E7D 42B6
There are no controlled substances, only controlled people. - Thomas Szasz
Reply to: