grsecurity in kernel?

Maybe it might be a good idea to embed grsecurity in the kernel - for two reasons: * Debug programs and drivers (faster debugging?) * Heighten security ? Have no idea how the performance impact might be. http://grsecurity.net/ Quote: ... [02/10] Official grsecurity/PaX support on ARM [01/25

Re: grsecurity in kernel?

Glenn glenn.mh...@gmail.com writes: Maybe it might be a good idea to embed grsecurity in the kernel - for two reasons: I think the main goal should be to upstream our changes, not add new changes that are not upstream. * Debug programs and drivers (faster debugging?) What has grsecurity

Re: grsecurity in kernel?

At 0:06 +0200 30/12/10, Timo Juhani Lindfors wrote: Glenn glenn.mh...@gmail.com writes: Maybe it might be a good idea to embed grsecurity in the kernel - for two reasons: I think the main goal should be to upstream our changes, not add new changes that are not upstream. * Debug programs

Re: grsecurity in kernel?

Glenn glenn.mh...@gmail.com writes: What has grsecurity to do with debugging? On there home page they write: # Prevention of arbitrary code execution, regardless of the technique used (stack smashing, heap corruption, etc) # Prevention of arbitrary code execution in the kernel #

Re: grsecurity in kernel?

В Срд, 29/12/2010 в 23:28 +0100, Glenn пишет: At 0:06 +0200 30/12/10, Timo Juhani Lindfors wrote: Glenn glenn.mh...@gmail.com writes: Maybe it might be a good idea to embed grsecurity in the kernel - for two reasons: I think the main goal should be to upstream our changes, not add new

Re: grsecurity in kernel?

...@gmail.com writes: Maybe it might be a good idea to embed grsecurity in the kernel - for two reasons: I think the main goal should be to upstream our changes, not add new changes that are not upstream. * Debug programs and drivers (faster debugging?) What has grsecurity to do

Re: grsecurity in kernel? (PaX: The Guaranteed End of Arbitrary Code Execution)

At 23:38 +0100 29/12/10, Vinzenz Hersche wrote: Glenn, i like to try this for a kernel.. it should need just be a patched kernel (so need to recompile) and a loaded kernel or what do you think? i don't know so much about cross-compile, but i like to learn it.. if also someone else like to join

Re: grsecurity in kernel?

Vinzenz Hersche hers...@puzzle.ch writes: it should need just be a patched kernel (so need to recompile) and a loaded kernel or what do you think? ...a loaded module, of course.. sry, typo.. :) I don't think grsec can be a separate module. ___

Re: grsecurity in kernel? [ doc and PaX performance impact]

At 23:38 +0100 29/12/10, Vinzenz Hersche wrote: Glenn, i like to try this for a kernel.. it should need just be a patched kernel (so need to recompile) and a loaded kernel or what do you think? i don't know so much about cross-compile, but i like to learn it.. if also someone else like to join