1 |
I added kernel.grsecurity.disable_modules = 1 to my /etc/sysctl.conf . |
2 |
However, iptables and net.eth1 init scripts were unable to start. I |
3 |
already had the module for my NIC (8139too) in |
4 |
/etc/modules.autoload.d/kernel-2.6 . I added iptable_filter and |
5 |
nf_conntrack_ipv4 to it, then rebooted, but the init scripts were |
6 |
still unable to start. What other modules must I load? To send this |
7 |
message, I had to comment the line in /etc/sysctl.conf and reboot |
8 |
again. |
9 |
|
10 |
By the way, why the runtime module disabling feature is a sysctl |
11 |
setting, regardless of the sysctl support kernel configuration option? |
12 |
-- |
13 |
gentoo-hardened@g.o mailing list |