On Mon, 2017-05-01 at 12:34 +, Alexander Harrigan wrote:
> It looks Gentoo's Hardened Kernel Project oficially started.
>
> https://wiki.gentoo.org/wiki/Hardened/Hardened_Kernel_Project
Gentoo wiki page != Gentoo project.
signature.asc
Description: This is a digitally signed message part
It looks Gentoo's Hardened Kernel Project oficially started.
https://wiki.gentoo.org/wiki/Hardened/Hardened_Kernel_Project
\-- Sent using MsgSafe.io's Free Plan Private, encrypted, online communication
For everyone. https://www.msgsafe.io
It isn't a contradiction. If the focus is on an LTS, then it's a dead
end and there will be nothing to show for it in the future. The easiest
time to start deciding what to drop and porting forward is now while
it's only one kernel version behind.
signature.asc
Description: This is a digitally sig
Name doesn't matter. When it breaks with systemd then it will be stopped but
that won't be in months. Paxd is avalaible and it always be assumed to
maintain it by yourself. Also I see contradiction when you say many critical
grsecurity features won't be avalaible in mainline kernels anytime soon an
On Sat, 2017-04-29 at 17:03 +, Alexander Harrigan wrote:
> I found someone from opensuse started to maintain grsec patches for
> 4.9 kernel
> series [1]. Maybe it will be possible to add linux-lts-grsec package
> to AUR
> based on Daniel's PKGBUILD and config with RANDSTRUCT enabled linked
> to
I found someone from opensuse started to maintain grsec patches for 4.9 kernel
series [1]. Maybe it will be possible to add linux-lts-grsec package to AUR
based on Daniel's PKGBUILD and config with RANDSTRUCT enabled linked to new
upstream source.
[1] https://github.com/kdave/grsecurity-patches/tr
On 04/27/2017 01:19 PM, Daniel Micay via arch-general wrote:
> The PaX and grsecurity patches are no longer going to be public, so
> official support in Arch Linux has ended:
this is highly disappointing but not completely unexpected. thanks for
your work all this time.
On Thu, 2017-04-27 at 20:45 +, Alexander Harrigan wrote:
> It would be great if you can provide linux-hardened kernel with
> everything
> what KSPP has enabled by default. Even in AUR so you won't have to
> rebuild it
> constantly and random stack option would have more sense.
>
> Two question
It would be great if you can provide linux-hardened kernel with everything
what KSPP has enabled by default. Even in AUR so you won't have to rebuild it
constantly and random stack option would have more sense.
Two questions:
1\. Do you think maintaining 4.9 lts grsec kernel would be doable until
On Thu, 2017-04-27 at 19:12 +, Carsten Mattner wrote:
> Is CopperheadOS using grsec or something derived from it?
It starts from the baseline provided by Google and ports features from
PaX and grsecurity as needed to the kernels. It used to use a full PaX
port on ARM devices but that hasn't ma
On Thu, Apr 27, 2017 at 7:12 PM, Carsten Mattner
wrote:
> Is CopperheadOS using grsec or something derived from it?
Found the technical details, it seems to be select grsec features
ported to AOSP but not a full port of grsec, which together with the
other hardening looks reasonable since it's a
On Thu, 2017-04-27 at 19:11 +, Carsten Mattner wrote:
> This is an undesirable situation for users, but I want to offer a
> positive outlook on this. Ever since KSPP started, some of the
> dynamics started to shift and I wager that closing off grsec will
> motivate more users and developers to
Is CopperheadOS using grsec or something derived from it?
This is an undesirable situation for users, but I want to offer a
positive outlook on this. Ever since KSPP started, some of the
dynamics started to shift and I wager that closing off grsec will
motivate more users and developers to consider supporting efforts that
are in mainline linux. Short-term
The PaX and grsecurity patches are no longer going to be public, so
official support in Arch Linux has ended:
https://grsecurity.net/passing_the_baton.php
https://grsecurity.net/passing_the_baton_faq.php
I'll be clearing out the AUR packages for PaX and grsecurity soon since
the current 4.10 patc
15 matches
Mail list logo
