| 1 |
On Sunday 08 July 2007 23:23:26 Christian Heim wrote: |
| 2 |
> On Saturday 07 July 2007 10:26:58 Natanael Copa wrote: |
| 3 |
> > hmm.... |
| 4 |
> > |
| 5 |
> > I compared with the vserver+grsec patch from http://linux-vserver.org |
| 6 |
> > and just copied the patched file on rejected files. There is no vserver |
| 7 |
> > +grsec patch for 2.6.20 there so its more work. |
| 8 |
> > |
| 9 |
> > However, if there would be any interest in a official gentoo hardened |
| 10 |
> > vserver kernel, I might put some extra effort in it. |
| 11 |
> |
| 12 |
> It won't get any more "official" than my overlay, sorry :) |
| 13 |
|
| 14 |
for what reason? |
| 15 |
|
| 16 |
I mean, there seems to be an interest in it, not just him (and me, most |
| 17 |
obviousely). |
| 18 |
|
| 19 |
I guess most ppl who want to setup a vserver environment also want to be a |
| 20 |
little bit *more* secure than the standard way - i'm thinking about grsec |
| 21 |
here. |
| 22 |
|
| 23 |
why isn't there an option to (by default) provide this to the vserver-sources |
| 24 |
(or optional via hardened useflag that is enabled in a hardened profile |
| 25 |
anyways?) - makes sense to me at least ;) |
| 26 |
|
| 27 |
Regards, |
| 28 |
Christian Parpart. |
Archives