Hi,
I still have hardened-sources running on one PC and I keep trying to
compile a replacement gentoo-sources with as much hardening as I can,
but I haven't found anything to help me that actually works. There are
some guides on the Internet but most of the them are quite old (still
grsecurity) and some of them are really old (Kernel 2.2, for example).
I found the KSPP website and built a kernel using their suggested
"paranoid" settings. It worked for a brief moment but then I think I
upgraded gcc to 6.4 and it just panicked during boot causing a lot of
pain to reverse out of.
Does anyone know of a good, post GRSecurity guide to reasonable security
for the kernel? In the absence of anything else I will have to go back
to the KSPP list and start removing stuff until I can get a stable kernel.
Thanks in advance,
Robert Sharp
I still have hardened-sources running on one PC and I keep trying to
compile a replacement gentoo-sources with as much hardening as I can,
but I haven't found anything to help me that actually works. There are
some guides on the Internet but most of the them are quite old (still
grsecurity) and some of them are really old (Kernel 2.2, for example).
I found the KSPP website and built a kernel using their suggested
"paranoid" settings. It worked for a brief moment but then I think I
upgraded gcc to 6.4 and it just panicked during boot causing a lot of
pain to reverse out of.
Does anyone know of a good, post GRSecurity guide to reasonable security
for the kernel? In the absence of anything else I will have to go back
to the KSPP list and start removing stuff until I can get a stable kernel.
Thanks in advance,
Robert Sharp