[gentoo-user] Re: systemd: "local system does not support BPF/cgroup based firewalling"

2017-10-28 Thread Nikos Chantziaras
Alright, thanks. Looks like I'll have to live with that message for a while. Which isn't a big deal. On 28/10/17 21:58, Canek Peláez Valdés wrote: On Sat, Oct 28, 2017 at 1:44 PM, Nikos Chantziaras > wrote: > > There is no such kernel option.

Re: [gentoo-user] Re: systemd: "local system does not support BPF/cgroup based firewalling"

2017-10-28 Thread mad.scientist.at.large
you should probably update your' kernel anyway, a lot of recent security fixes in the newer kernels. mad.scientist.at.large (a good madscientist) -- "The U.S. intelligence community concluded in a report made public in January that the Kremlin sought to disrupt the 2016 election and sway the

Re: [gentoo-user] Re: systemd: "local system does not support BPF/cgroup based firewalling"

2017-10-28 Thread mad.scientist.at.large
you should update the kernel anyway.  some serious security holes have recently been found and corrected in the newest kernel. mad.scientist.at.large (a good madscientist) -- "The U.S. intelligence community concluded in a report made public in January that the Kremlin sought to disrupt the

Re: [gentoo-user] Re: systemd: "local system does not support BPF/cgroup based firewalling"

2017-10-28 Thread mad.scientist.at.large
updating the kernel is a really good idea, recent kernels have corrected a number of serious security issues that are definitely  real and exploitable. mad.scientist.at.large (a good madscientist) -- "The U.S. intelligence community concluded in a report made public in January that the Kremlin

Re: [gentoo-user] Re: systemd: "local system does not support BPF/cgroup based firewalling"

2017-10-28 Thread Canek Peláez Valdés
On Sat, Oct 28, 2017 at 1:44 PM, Nikos Chantziaras wrote: > > There is no such kernel option. Yes, there is[1]. However, there is no such option for kernel version 4.9[2], although there is for 4.10[3]. I think that's the problem, for using the firewall BPF options of systemd,

[gentoo-user] Re: systemd: "local system does not support BPF/cgroup based firewalling"

2017-10-28 Thread Nikos Chantziaras
There is no such kernel option. On 28/10/17 21:21, Canek Peláez Valdés wrote: Do you have CONFIG_CGROUP_BPF enabled? Regards. On Sat, Oct 28, 2017 at 1:03 PM, Nikos Chantziaras > wrote: I'm getting these at startup: systemd[1]: File