This is purely interest and of course feel free to ignore. I value OpenBSD over Linux with grsecurity for many reasons such as patched by default X and randomisation in any case.
I have just been wondering while some cards have run poorly in the past at machdep.allowaperture=1, with KMS some now run well. Is the following Grsecurity feature equivalent to machdep.allowaperture=0, machdep.allowaperture=1 or completely different to how machdep.allowaperture protects. http://en.wikibooks.org/wiki/Grsecurity/Appendix/Grsecurity_and_PaX_Configuration_Options#Disable_privileged_I.2FO p.s. Not relating to this feature at all but whilst I don't believe OpenBSD has copied any ideas from PAX or if they have the vice versa is likely true. Who cares (except PAX devs, still?) when what we all want is the most secure systems. -- _______________________________________________________________________ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) In Other Words - Don't design like polkit or systemd _______________________________________________________________________
