List Archive: gentoo-hardened
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
> Remember that RSBAC does not work with PaX on a recent kernels. If you
> really want more security with Linux, PaX is the first and the most
> important thing you should consider. It aims to prevent exploits from
> working, while MAC/RBAC/RSBAC fights the consequences in userspace and
> does little to protect against the kernel exploits.
RSBAC with PaX works with new kernels, you can patch it yourself or
you can download one kernel that is already patched from
> A server without PaX is barely a better choice.
The same as before, PaX runs with rsbac in new kernels