| 1 |
You should run a PAE enabled kernel. |
| 2 |
Boot from the gentoo-livecd with "gentoo mem=64" on the prompt. |
| 3 |
Than during kernel configuration choose highmem=64. |
| 4 |
As said use the kernel options noexec=on noexec32=on. |
| 5 |
As far as i know this only functions with 32-bit kernels. |
| 6 |
|
| 7 |
dmesg |grep NX should give: NX (Execute Disable) protection: active |
| 8 |
|
| 9 |
|
| 10 |
On 1/11/07, Philipp Riegger <lists@××××××××××××.de> wrote: |
| 11 |
> |
| 12 |
> On 11.01.2007, at 19:26, pageexec@××××××××.hu wrote: |
| 13 |
> |
| 14 |
> > indeed, the kernel message should be: |
| 15 |
> > |
| 16 |
> > NX (Execute Disable) protection: active |
| 17 |
> > |
| 18 |
> > do you get it if you boot with noexec=on? |
| 19 |
> |
| 20 |
> dmesg | grep NX still gives me nothing. noexec=on did not solve my |
| 21 |
> problem. Where does the kernel know from, that my processor supports |
| 22 |
> NX? On the one hand, it could know it since it is listed in /poc/ |
| 23 |
> cpuinfo, on the other hand i cannot choose my processor as cpu family |
| 24 |
> but i have to choose i586/i686. |
| 25 |
> |
| 26 |
> This would also interest me.If i do make menuconfig there is 1 entry |
| 27 |
> for i586, i686 and some more. If i look at .config, there is an |
| 28 |
> option for i586, another for i686... does that make a difference? |
| 29 |
> |
| 30 |
> Philipp |
| 31 |
> -- |
| 32 |
> gentoo-hardened@g.o mailing list |
| 33 |
> |
| 34 |
> |
| 35 |
|
| 36 |
|
| 37 |
-- |
| 38 |
I have made this letter longer than usual, because i lack the time to |
| 39 |
make it short. |
| 40 |
-- |
| 41 |
gentoo-hardened@g.o mailing list |
Archives