Hi Bartosz Golaszewski, I gave it a try and its the same result :(. I disabled the following in defaults/config.busybox and build the kernel.
CONFIG_INIT=n CONFIG_GETTY=n CONFIG_LOGIN=n CONFIG_PASSWD=n CONFIG_SU=n CONFIG_SULOGIN=n CONFIG_FEATURE_MOUNT_NFS=n CONFIG_MOUNT=n CONFIG_CROND=n CONFIG_DEVFSD=n CONFIG_NAMEIF=n CONFIG_FAK=n and CONFIG_FEATURE_SYSLOG=n bash-3.2$ grep -r "CONFIG_FEATURE_SYSLOG" ./user/busybox/.config *CONFIG_FEATURE_SYSLOG=y* # CONFIG_FEATURE_SYSLOGD_DUP is not set CONFIG_FEATURE_SYSLOGD_CFG=y CONFIG_FEATURE_SYSLOGD_READ_BUFFER_SIZE=256 Please advice if I am missing something here. thanks Purushotham. On Mon, Jul 27, 2015 at 2:56 PM, purushi1 . <[email protected]> wrote: > Hi Bartosz Golaszewski, > > Thanks for quick feedback. From what I understand, it requires to disable > all options that select CONFIG_FEATURE_SYSLOG from busybox' Kconfig > So will this help me? > > CONFIG_INIT=n > CONFIG_GETTY=n > CONFIG_LOGIN=n > CONFIG_PASSWD=n > CONFIG_SU=n > CONFIG_SULOGIN=n > CONFIG_FEATURE_MOUNT_NFS=n > CONFIG_MOUNT=n > CONFIG_CROND=n > CONFIG_DEVFSD=n > CONFIG_NAMEIF=n > CONFIG_FAK=n > and > CONFIG_FEATURE_SYSLOG=n > > I will give it a try now, and update again. > > thanks, > Purushotham. > > On Mon, Jul 27, 2015 at 2:29 PM, Bartosz Gołaszewski <[email protected] > > wrote: > > 2015-07-27 7:45 GMT+02:00 purushi1 . <[email protected]>: >> > Hi, >> > >> > As per kernel hardening requirement, i am trying to disable >> > "CONFIG_FEATURE_SYSLOG" in defaults/config.busybox and build the kernel. >> > >> > However, after doing a make, i still see "CONFIG_FEATURE_SYSLOG" enabled >> > >> > ############ >> > >> > grep -r "CONFIG_FEATURE_SYSLOG" user/busybox/.config >> > >> > CONFIG_FEATURE_SYSLOG=y >> > >> > # CONFIG_FEATURE_SYSLOGD_DUP is not set >> > >> > CONFIG_FEATURE_SYSLOGD_CFG=y >> > >> > CONFIG_FEATURE_SYSLOGD_READ_BUFFER_SIZE=256 >> > >> > ############ >> > Can somebody, help me how to disable CONFIG_FEATURE_SYSLOG? >> > >> > thanks, >> > Purushotham. >> >> Hi Purushotham, >> >> CONFIG_FEATURE_SYSLOG is a hidden option in busybox' Kconfig. You can >> disable it only by disabling all options that select it. This is the >> list of packages that select FEATURE_SYSLOG taken from manuconfig >> help: >> >> Symbol: FEATURE_SYSLOG [=y] >> Selected by: INIT || GETTY || LOGIN || PASSWD || SU || SULOGIN || >> FEATURE_MOUNT_NFS && MOUNT || CROND || DEVFSD || NAMEIF || FAK >> >> -- >> Best regards >> Bartosz Golaszewski >> > >
_______________________________________________ busybox mailing list [email protected] http://lists.busybox.net/mailman/listinfo/busybox
