[svlug] Kernel security in 2.6 (grsec/Pax/Lids/etc...)
marc_news at merlins.org
Sat Oct 29 19:26:29 PDT 2005
So, I've been using grsecurity for a long time, but it doesn't seem to be
kept up to date for the 2.6 kernel.
Not surprisingly, neither is Pax (which is mostly the part I care about:
sensible kernel protection as opposed to access control at runtime)
Lids looks like it's not as far behind, but it's also one kernel rev behind.
Besides LIDS does MAC, just like SE Linux, which isn't what I'm looking for
SE Linux does MAC obviously, not what I need
So, how do I get:
- proper chroot protection
- no symlinks in /tmp
- read protected /proc
- random PIDs
- signal logging
- chdir/exec logging
- tpe (trusted path execution)
- logging of the IP on the other side of the socket running the current
or at least a subset of what grsec can do in current 2.6 kernels?
"A mouse is a device used to point at the xterm you want to type in" - A.S.R.
Microsoft is to operating systems & security ....
.... what McDonalds is to gourmet cooking
Home page: http://marc.merlins.org/ | Finger marc_f at merlins.org for PGP key
More information about the svlug