[Volunteers] We have a new server
james at linuxrebel.org
Wed Apr 19 17:03:49 PDT 2006
On Wednesday 19 April 2006 16:38, Rick Moen wrote:
> Quoting Alvin Oga (alvin at mail.Linux-Consulting.com):
> > which bring up the issue of applying security patches
> > in that is it tested patches before applied or just apply
> > them patches and cross your fingers
> Which reminds me: One of the nice things about the old host is use
> grsecurity, a very comprehensive suite of kernel security patches
> (http://www.grsecurity.net/), including PaX stack-protection and
> numerous other good things. I credit these patches in large part
> the old host not getting h4x0red despite deferred maintenance.
If I may. I checked with GRSecurity (via the website) and 2.6.14 is
the latest supported 2.6 kernel they claim. However I then went over
and pinged a friend of mine who was at Mandriva (until Gael Left) and
he noted that with the inclusion of SELinux into the kernel tree (no
longer needing to apply a patch) they decided to drop GRSecurity. No
need to have 2 things doing the same thing. That plus the somewhat
spotty update cycle they have.
I'll defer to wiser heads but I thought this might be helpful info.
More information about the volunteers