>>>>> "Jeff" == Jeff Waugh <[EMAIL PROTECTED]> writes:
Jeff> <quote who="O Plameras"> >> Yes, it is. Jeff> Oscar, quite seriously, the concept of "building a kernel" has Jeff> absolutely nothing to do with security. Someone has been telling Jeff> you tall stories. There are cases where rebuilding your kernel, with specific options, patches, etc., *is* desireable to obtain particular security goals. For example, I used to compile my firewall's kernel with IP packet forwarding turned off (and the bits to enable it commented out). That way there's no way to get past the firewall other than using one of the few user-mode proxies that I have configured and audited. -- Dr Peter Chubb http://www.gelato.unsw.edu.au peterc AT gelato.unsw.edu.au The technical we do immediately, the political takes *forever* -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
