| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
Stephen Clowater wrote: |
| 5 |
| Compiling from stage 1 is a very important step, by compiling everythig, |
| 6 |
| and by turning on the memory randomization features in GRsecurity |
| 7 |
| (random mallac() base as a _very_ good one that I sorly miss on 2.6.0 as |
| 8 |
| I wait like a 18 year old girl on prom night for the 2.6.0 GRsecurity |
| 9 |
| patch :)) you will do alot to protect yourself. |
| 10 |
Actually that's wrong. The system call is changed in the kernel, so |
| 11 |
regardless of whether or not the program was compiled/linked before or |
| 12 |
after it will have the same effect. malloc() will return an integer |
| 13 |
that's more random then before. |
| 14 |
|
| 15 |
You could put grsecurity kernel on a stock redhat box, and still benefit |
| 16 |
as much as recompiling everything from scratch. |
| 17 |
|
| 18 |
-----BEGIN PGP SIGNATURE----- |
| 19 |
Version: GnuPG v1.2.1 (MingW32) |
| 20 |
|
| 21 |
iD8DBQFANElX1mDajpZ9rHwRAtJIAJ9tgFopsjGTfSyjQOjimFjKpbmWIwCg2tDh |
| 22 |
K7zzKhtwY196GoeIf+gzJKg= |
| 23 |
=MUrP |
| 24 |
-----END PGP SIGNATURE----- |
| 25 |
|
| 26 |
-- |
| 27 |
gentoo-security@g.o mailing list |
Archives