grsecurity forums

Skip to content

splitted patches?

Discuss and suggest new grsecurity features
Topic locked

splitted patches?

Postby bse » Thu Feb 19, 2004 6:53 pm

Hi!

I'd like to patch my kernel with only the randomization and chroot features of grsecurity. I don't need the RBAC or MAC features from grsecurity, cause i'm using RSBAC. Can anyone help me on that one?
bse
 
Posts: 9
Joined: Tue Sep 02, 2003 11:07 am
Top

Postby perlish » Sat Feb 21, 2004 1:19 am

I thought the RSBAC's jail module are more powerful than chroot

it seens that the rsbac do not have learning mode

I'd like grsec's acl

but if the grsec has the bsdjail function it may be PERFECT!!!
perlish
 
Posts: 42
Joined: Sun Jan 11, 2004 10:42 pm
Top

Postby bse » Sat Feb 21, 2004 5:05 am

Yes it has a JAIL module, but if u're a little paranoid, some extra protection may be good ;)

And still it doesn't have the randomization features.
bse
 
Posts: 9
Joined: Tue Sep 02, 2003 11:07 am
Top

Postby magicq » Sun Feb 22, 2004 11:08 am

if u have used the freebsd's jail function ,I thought u also will show interesting in it

if u only need random function ,u can use PAX with rsbac,and use the rsbac's jail function instead of chroot
magicq
 
Posts: 5
Joined: Sun Feb 22, 2004 9:59 am
Top
Topic locked

Return to grsecurity development

Powered by phpBB® Forum Software © phpBB Group