| 1 |
If I make the change will I have to recompile the toolchain&userland? |
| 2 |
Just booting the new kernel didnt fix anything. |
| 3 |
|
| 4 |
On 5/20/07, lnxg33k <lnxg33k@×××××.com> wrote: |
| 5 |
> Matt Poletiek wrote: |
| 6 |
> > What do I lose by disabling it? If I am reading this correctly all the |
| 7 |
> > grsec features will be on by default if sysctl support is disabled? |
| 8 |
> |
| 9 |
> I don't know the full extent of sysctl's purpose other than you can dynamically |
| 10 |
> change kernel parameters. You should (I think) still be able to change them |
| 11 |
> through /proc. If that's true, in a really basic sense, then you shouldn't lose |
| 12 |
> much if any functionality. |
| 13 |
> |
| 14 |
> The reason it's killing the hardened features is you can do something like |
| 15 |
> "sysctl -w someHardenedFeature=0" to disable it. I'm sure others will have a |
| 16 |
> much better explanation, but I believe disabling sysctl will be the quick and |
| 17 |
> proper fix. |
| 18 |
> -- |
| 19 |
> gentoo-hardened@g.o mailing list |
| 20 |
> |
| 21 |
> |
| 22 |
|
| 23 |
|
| 24 |
-- |
| 25 |
Matthew Poletiek |
| 26 |
www.chill-fu.net |
| 27 |
-- |
| 28 |
gentoo-hardened@g.o mailing list |
Archives