[svlug] Kernel security in 2.6 (grsec/Pax/Lids/etc...)

Marc MERLIN marc_news at merlins.org
Sat Oct 29 19:26:29 PDT 2005

Previous message: [svlug] Debian question
Next message: [svlug] Kernel security in 2.6 (grsec/Pax/Lids/etc...)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

So, I've been using grsecurity for a long time, but it doesn't seem to be
kept up to date for the 2.6 kernel.

Not surprisingly, neither is Pax (which is mostly the part I care about:
sensible kernel protection as opposed to access control at runtime)

Lids looks like it's not as far behind, but it's also one kernel rev behind.
Besides LIDS does MAC, just like SE Linux, which isn't what I'm looking for

SE Linux does MAC obviously, not what I need

So, how do I get:
- proper chroot protection
- no symlinks in /tmp
- read protected /proc
- random PIDs
- signal logging
- chdir/exec logging
- tpe (trusted path execution)
- logging of the IP on the other side of the socket running the current
  process?

or at least a subset of what grsec can do in current 2.6 kernels?

Thanks
Marc
-- 
"A mouse is a device used to point at the xterm you want to type in" - A.S.R.
Microsoft is to operating systems & security ....
                                      .... what McDonalds is to gourmet cooking
Home page: http://marc.merlins.org/   |   Finger marc_f at merlins.org for PGP key

Previous message: [svlug] Debian question
Next message: [svlug] Kernel security in 2.6 (grsec/Pax/Lids/etc...)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the svlug mailing list