1 |
You should run these questions by the grsec mailing list. |
2 |
|
3 |
|
4 |
On Thu, 2004-01-29 at 06:07, Lesley van Zijl wrote: |
5 |
> I want to play around with usermode linux, So I am reading the docs and |
6 |
> patching the kernels etc. |
7 |
> But I noticed that I couldn't patch the grsec-sources with the skas |
8 |
> patch(1), the skas patch isn't that long (about 570 lines) |
9 |
> so I thought maybe I can look into the patch and see what is going wrong |
10 |
> and adjust the patch so that it is able to patch my kernel tree. |
11 |
> But since it's 'the kernel' I am pretty afraid that I would do something |
12 |
> really stupid :) |
13 |
> |
14 |
> I only use the kernel options for grsec, not (yet) any acl's. |
15 |
> |
16 |
> Does anyone have any experience with this or can anyone tell me what I |
17 |
> can break or just tell me to stay away from it because it isn't going to |
18 |
> help |
19 |
> security in any way. |
20 |
> My idea was to apply grsec on both the uml kernel and on my host kernel, |
21 |
> but first the host |
22 |
> |
23 |
> The files that fail are: |
24 |
> mm/mprotect.c |
25 |
> include/linux/mm.h |
26 |
> arch/i386/kernel/sys_i386.c |
27 |
> |
28 |
> regards, |
29 |
> Lesley van Zijl |
30 |
> |
31 |
> 1. http://user-mode-linux.sourceforge.net/skas.html |
32 |
> |
33 |
> -- |
34 |
> gentoo-security@g.o mailing list |
35 |
-- |
36 |
Ned Ludd <solar@g.o> |
37 |
Gentoo Linux Developer |