1 |
If I make the change will I have to recompile the toolchain&userland? |
2 |
Just booting the new kernel didnt fix anything. |
3 |
|
4 |
On 5/20/07, lnxg33k <lnxg33k@×××××.com> wrote: |
5 |
> Matt Poletiek wrote: |
6 |
> > What do I lose by disabling it? If I am reading this correctly all the |
7 |
> > grsec features will be on by default if sysctl support is disabled? |
8 |
> |
9 |
> I don't know the full extent of sysctl's purpose other than you can dynamically |
10 |
> change kernel parameters. You should (I think) still be able to change them |
11 |
> through /proc. If that's true, in a really basic sense, then you shouldn't lose |
12 |
> much if any functionality. |
13 |
> |
14 |
> The reason it's killing the hardened features is you can do something like |
15 |
> "sysctl -w someHardenedFeature=0" to disable it. I'm sure others will have a |
16 |
> much better explanation, but I believe disabling sysctl will be the quick and |
17 |
> proper fix. |
18 |
> -- |
19 |
> gentoo-hardened@g.o mailing list |
20 |
> |
21 |
> |
22 |
|
23 |
|
24 |
-- |
25 |
Matthew Poletiek |
26 |
www.chill-fu.net |
27 |
-- |
28 |
gentoo-hardened@g.o mailing list |