| 1 |
On Sun, 2005-05-29 at 20:08 +0100, Ed W wrote: |
| 2 |
> I am running a hardened kernel using the grsec stuff. Is it safe to |
| 3 |
> recompile glibc with NPTL under hardened kernel? Everything is |
| 4 |
> basically the standard unmasked stuff as available right now from portage |
| 5 |
|
| 6 |
Well, I'm using it currently on a ~x86 hardened (pax, selinux, bits of |
| 7 |
grsec) system with no obvious issues. Haven't tried the grsec rbac |
| 8 |
stuff, but I don't see an obvious reason why it would break. |
| 9 |
|
| 10 |
> Any reasons not to change? Any issues during the upgrade that I might |
| 11 |
> want to be aware of (it's a running web server, would rather not break |
| 12 |
> it...) |
| 13 |
|
| 14 |
There might well be nastiness hiding in the conversion process ... last |
| 15 |
I knew some software didn't work with NPTL, so if you're going to use it |
| 16 |
you probably want to keep nptlonly off, etc. The normal caveats with any |
| 17 |
change to an important system package apply. |
| 18 |
|
| 19 |
-- |
| 20 |
gentoo-hardened@g.o mailing list |
Archives