Gentoo Archives: gentoo-security

From: Ned Ludd <solar@g.o>
To: Lesley van Zijl <zyl@××××××.nl>
Cc: gentoo-security List <gentoo-security@l.g.o>
Subject: Re: [gentoo-security] grsecurity + usermode Linux + skas ?
Date: Thu, 29 Jan 2004 22:00:59
Message-Id: 1075412147.30964.1852.camel@simple
In Reply to: [gentoo-security] grsecurity + usermode Linux + skas ? by Lesley van Zijl
You should run these questions by the grsec mailing list.


On Thu, 2004-01-29 at 06:07, Lesley van Zijl wrote:
> I want to play around with usermode linux, So I am reading the docs and > patching the kernels etc. > But I noticed that I couldn't patch the grsec-sources with the skas > patch(1), the skas patch isn't that long (about 570 lines) > so I thought maybe I can look into the patch and see what is going wrong > and adjust the patch so that it is able to patch my kernel tree. > But since it's 'the kernel' I am pretty afraid that I would do something > really stupid :) > > I only use the kernel options for grsec, not (yet) any acl's. > > Does anyone have any experience with this or can anyone tell me what I > can break or just tell me to stay away from it because it isn't going to > help > security in any way. > My idea was to apply grsec on both the uml kernel and on my host kernel, > but first the host > > The files that fail are: > mm/mprotect.c > include/linux/mm.h > arch/i386/kernel/sys_i386.c > > regards, > Lesley van Zijl > > 1. http://user-mode-linux.sourceforge.net/skas.html > > -- > gentoo-security@g.o mailing list
-- Ned Ludd <solar@g.o> Gentoo Linux Developer

Attachments

File name MIME type
signature.asc application/pgp-signature