Gentoo Archives: gentoo-hardened

From:	pageexec@××××××××.hu
To:	gentoo-hardened@l.g.o
Subject:	Re: [gentoo-hardened] RSBAC / PaX -> Compiling error
Date:	Tue, 04 Jul 2006 16:42:03
Message-Id:	`44AAB4B1.2609.3902D34A@pageexec.freemail.hu`
In Reply to:	[gentoo-hardened] RSBAC / PaX -> Compiling error by Michael Decker

1	On 4 Jul 2006 at 16:19, Michael Decker wrote:
2	> But I've detect that RSBAC and PAX manual are different, could be here
3	> an error? (showing only the differences here):
4	> http://www.gentoo.org/proj/en/hardened/rsbac/quickstart.xml
5	>
6	> --- SNIP ---
7	> PaX Control --->
8	> [*] Support soft mode (Turn that option off on a production kernel)
9	> [ ] Use legacy ELF header marking
10	> [ ] Use ELF program header marking
11	> Use ELF program header marking MAC system integration (direct) --->
12	> (X) direct
13
14	the problem is the MAC integration setting, for RSBAC you need
15	the 'hook' type (i added it explicitly per Amon's request ;-),
16	and the gentoo guide is wrong on this. the PaX guide suggests
17	'none' because it's, well, a PaX-only guide hence there's no
18	MAC integration.
19
20	--
21	gentoo-hardened@g.o mailing list

Subject	Author
Re: [gentoo-hardened] RSBAC / PaX -> Compiling error	"Kevin F. Quinn" <kevquinn@g.o>
Re: [gentoo-hardened] RSBAC / PaX -> Compiling error	Michael Decker <MDecker@×××××.de>