Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

On Monday 27 March 2006 07:57, Richard Fish wrote: On 3/26/06, Walter Dnes [EMAIL PROTECTED] wrote: The subject says it all. I've done some spelunking through /usr/src/linux/.config, and I don't see anything relavant. It's enabled by default. If you don't want it, you need to boot with

Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

On 3/27/06, Hemmann, Volker Armin [EMAIL PROTECTED] wrote: On Monday 27 March 2006 07:57, Richard Fish wrote: On 3/26/06, Walter Dnes [EMAIL PROTECTED] wrote: The subject says it all. I've done some spelunking through /usr/src/linux/.config, and I don't see anything relavant. It's

Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

Richard Fish [EMAIL PROTECTED] writes: But I agree that PAE is the necessary option if your processor is too old and does not support the NX bit. Sorry I did not mention that. Even if the processor supports the NX bit, in arch/i386/mm/init.c it looks as though NX is only enabled if PAE is

Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

On 3/27/06, Graham Murray [EMAIL PROTECTED] wrote: Richard Fish [EMAIL PROTECTED] writes: But I agree that PAE is the necessary option if your processor is too old and does not support the NX bit. Sorry I did not mention that. Even if the processor supports the NX bit, in

Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

On Mon, Mar 27, 2006 at 06:00:25PM +0100, Graham Murray wrote Even if the processor supports the NX bit, in arch/i386/mm/init.c it looks as though NX is only enabled if PAE is configured (which requires setting 64G highmem) Let me get this straight. In make menuconfig... Processor type

[gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

The subject says it all. I've done some spelunking through /usr/src/linux/.config, and I don't see anything relavant. -- Walter Dnes [EMAIL PROTECTED] In linux /sbin/init is Job #1 My musings on technology and security at http://tech_sec.blog.ca -- gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

Am Montag 27 März 2006 06:29 schrieb Walter Dnes: The subject says it all. I've done some spelunking through /usr/src/linux/.config, and I don't see anything relavant. It's a kernel patch called PAX, and Gentoo offers hardened-sources which incorporate this kernel patch. Google for Gentoo

Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

On 3/26/06, Walter Dnes [EMAIL PROTECTED] wrote: The subject says it all. I've done some spelunking through /usr/src/linux/.config, and I don't see anything relavant. It's enabled by default. If you don't want it, you need to boot with the noexec=off kernel option. -Richard --

Re: [gentoo-user] Is there a DEP (Data Execution Protection) option for Gentoo?

On Mon, 2006-03-27 at 07:50 +0200, Heiko Wundram wrote: Am Montag 27 März 2006 06:29 schrieb Walter Dnes: The subject says it all. I've done some spelunking through /usr/src/linux/.config, and I don't see anything relavant. It's a kernel patch called PAX, and Gentoo offers