Hello, On Sun, Jun 29, 2003 at 12:19:29AM -0700, Chris Hecker wrote: > I now build my own linux kernel for alpha (see the thread about SRM > nightmare, etc.), and I've been using 2.4.21 from kernel.org on the > recommendation of this list. I just got the following security advisory on > the debian-security mailing list. The question is, the 2.4.21 source on > the kernel.org homepage doesn't seem to have changed. What is the right > way for me to get the changes mentioned below to secure my kernel now that > I build it myself? Is there an official site for this kind of thing?
I solved the problem by charting the kernel problems I was aware of
and comparing the various kernel (stock 2.4.21, Debian, Redhat). The
best kernel I came up with was the *sid* 2.4.21. It is no problem to
download the .tar.gz from an archive and to build it on woody (or any
other distro for that matter). I also applied the grsec-patch, but it
fails; the latest stock one (from the grsec-home page) (not the Debian
one!!) only has a few conflicts which I was able to fix manually
except for the ones in the ip4-layer.
So my recomendation: Get the Debian 2.4.21 *unless* you need some of
the things in the HP-Kernels (Hardware-Support mainly). It runs nicely
on i386 and alpha.
Greetings
Helge
P.S. You can of course build this kernel with make-kpkg; I had to
remove the Debian-directory for that though.
--
Helge Kreutzmann, Dipl.-Phys. [EMAIL PROTECTED]
gpg signed mail preferred gpg-key: finger [EMAIL PROTECTED]
64bit GNU powered http://www.itp.uni-hannover.de/~kreutzm
Help keep free software "libre": http://www.freepatents.org/
pgpndNzTGpZKq.pgp
Description: PGP signature

