Gentoo Archives: gentoo-hardened

From:	Matthew Thode <prometheanfire@g.o> (prometheanfire)
To:	gentoo-hardened@l.g.o
Cc:	powerman@××××××××.name
Subject:	Re: [gentoo-hardened] Security Level: high/server/workstation/virtualization
Date:	Fri, 27 Jan 2012 21:16:11
Message-Id:	`20120127151412.3a346c84@khorne.mthode.org`
In Reply to:	Re: [gentoo-hardened] Security Level: high/server/workstation/virtualization by Alex Efros

1	On Fri, 27 Jan 2012 22:19:42 +0200
2	Alex Efros <powerman@××××××××.name> wrote:
3
4	> Hi!
5	>
6	> Two small notes related to security level defaults:
7	>
8	> 1) On my system vmware reboot host OS when starting guest OS if any
9	> one (or both) of these are enabled:
10	>
11	> CONFIG_PAX_KERNEXEC (enabled by default on workstation security
12	> level) CONFIG_PAX_MEMORY_UDEREF
13	>
14	> 2) When wireshark started by non-root user this option kill all my
15	> processes (https://bugs.gentoo.org/show_bug.cgi?id=379369):
16	>
17	> CONFIG_GRKERNSEC_BRUTE (enabled by default on all security levels)
18	>
19
20	You should be using the virt profile.
21
22	--
23	Matthew Thode (prometheanfire)

File name	MIME type
signature.asc	application/pgp-signature

Subject	Author
Re: [gentoo-hardened] Security Level: high/server/workstation/virtualization	Alex Efros <powerman@××××××××.name>