| 1 |
On Sat, 08 Aug 2009 15:28:10 -0400 |
| 2 |
Michael Orlitzky <michael@××××××××.com> wrote: |
| 3 |
|
| 4 |
> Yiannis wrote: |
| 5 |
> > Hello, |
| 6 |
> > |
| 7 |
> > I am running hardened gentoo with the toolchain provided by the |
| 8 |
> > xake-toolchain overlay. I am looking for a way to use virtualization |
| 9 |
> > with my current config. I am aware of linux-vserver project which |
| 10 |
> > has grsecurity integration, but as far as I remember does not play |
| 11 |
> > well with rbac. Anyone that has a similar working config? |
| 12 |
> |
| 13 |
> I'm using KVM here under a similar setup with few issues. |
| 14 |
> Occasionally the modules that ship with KVM will get out of sync with |
| 15 |
> the ones provided by the hardened kernel, but that hasn't caused me |
| 16 |
> any trouble in a while. And you can always use the modules that ship |
| 17 |
> with KVM. |
| 18 |
|
| 19 |
Can you plz elaborate on your setup? Is host & guest os |
| 20 |
both using grsec+pax? Are you using the xake-toolchain? Any |
| 21 |
drawbacks? This seems (to me) that is the most secure solution, and |
| 22 |
maybe I should consider upgrading my pc. |
Archives