Gentoo Archives: gentoo-hardened

From: Mansour Moufid <mansourmoufid@×××××.com>
To: gentoo-hardened@l.g.o
Subject: [gentoo-hardened] Regarding hardened-sources
Date: Wed, 24 Mar 2010 19:48:56
Message-Id: 44a1f4d21003241247h17a8da37h8ef98144338549fe@mail.gmail.com
1 Hello,
2
3 The latest stable release of grsecurity is for 2.6.32 kernels.
4 Gentoo's hardened-sources have been stuck at 2.6.28-r9 for a while
5 now. Is there any particular reason for this?
6
7 Stability is important, but it's also fact that many (most?)
8 vulnerabilities in Linux are fixed silently as non-security updates in
9 the latest kernels. The grsecurity/PaX team has been tracking and
10 backporting these sorts of stealth vulnerability fixes. Therefore,
11 would it not make more sense for Gentoo Hardened to follow their lead?
12 Especially considering they will be supporting 2.6.32 on a long term
13 basis[1].
14
15 Thanks for your time.
16
17 [1] <http://grsecurity.net/news.php#stablechosen>
18
19 --
20 Mansour Moufid

Replies

Subject Author
Re: [gentoo-hardened] Regarding hardened-sources Guillaume Castagnino <casta@×××××.info>