1 |
On Sunday 08 July 2007 23:23:26 Christian Heim wrote: |
2 |
> On Saturday 07 July 2007 10:26:58 Natanael Copa wrote: |
3 |
> > hmm.... |
4 |
> > |
5 |
> > I compared with the vserver+grsec patch from http://linux-vserver.org |
6 |
> > and just copied the patched file on rejected files. There is no vserver |
7 |
> > +grsec patch for 2.6.20 there so its more work. |
8 |
> > |
9 |
> > However, if there would be any interest in a official gentoo hardened |
10 |
> > vserver kernel, I might put some extra effort in it. |
11 |
> |
12 |
> It won't get any more "official" than my overlay, sorry :) |
13 |
|
14 |
for what reason? |
15 |
|
16 |
I mean, there seems to be an interest in it, not just him (and me, most |
17 |
obviousely). |
18 |
|
19 |
I guess most ppl who want to setup a vserver environment also want to be a |
20 |
little bit *more* secure than the standard way - i'm thinking about grsec |
21 |
here. |
22 |
|
23 |
why isn't there an option to (by default) provide this to the vserver-sources |
24 |
(or optional via hardened useflag that is enabled in a hardened profile |
25 |
anyways?) - makes sense to me at least ;) |
26 |
|
27 |
Regards, |
28 |
Christian Parpart. |