[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: is Kernel 2.4 "secure" ? [Was: /proc permissions patch]
- To: Eli Marmor <marmor(at-nospam)netmask.it>
- Subject: Re: is Kernel 2.4 "secure" ? [Was: /proc permissions patch]
- From: Eran Levy <eranle(at-nospam)netvision.net.il>
- Date: Sat, 12 May 2001 15:44:30 +0200
- Cc: linux-il(at-nospam)linux.org.il
- Delivered-To: linux.org.il-linux-il@linux.org.il
- In-Reply-To: <3AF53F65.ADB856E1@netmask.it>
- References: <Pine.LNX.4.30.0105061508320.21631-100000@europa.betalfa.org.il>
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
Hi, I dont know if its off-topic right now but I just wanted to notice some
things:
Now the only kernel with the mdk "improvments" is: 2.4.3 - soon 2.4.4 -
There isnt any mdk patch yet - as I said - soon.
gresecurity 1.1 is released which means this patch is for 2.4.4
OpenWall projects released security patch for 2.2.19 kernel -
http://www.openwall.com/linux/
At 15:11 06/05/01 +0300, you wrote:
>Oded Arbel wrote:
>
> > Actually, what I would like to know is - what happened to the "Secure"
> > version of Mandrake's 2.2 kernel ? is the 'secure' patches were ported to
> > 2.4.3mdk ?
>
>As far as I understood, this stuff is based on 3rd parties and orgs which
>didn't make it available for 2.4 yet.
>
> > does 2.4.3mdk contains no security patches ?
>
>Not the extra ones.
>
> > does 2.4.3mdk
> > contain any Mandrake specific improvments ?
>
>No.
>
> > does that means that using
> > 2.4.3mdk is less secure then using 2.2.19mdk-secure ?
>
>Yes.
>
>In any case, please let me repeat what I wrote in my previous response:
>
>If you want to enjoy both of the worlds (2.4 AND security), the best is
>to take 2.4.4 (with the latest AC patches because of some annoying bugs),
>and apply the patches of Getrewted (grsecurity 1.0) into it.
>
>Unfortunately, this way you lose the non-security patches of Mandrake,
>and the kernel which comes with Mandrake 8.0 is 2.4.3, which is not the
>one required for grsecurity 1.0.
>
>So the question that I raised before, returns:
>
>Where can 2.4.4 kernel WITH Mandrake improvements be found?
>Or is there any patch which can be applied into the standard Linus kernel
>that implements Mandrake additions?
>
>If there is such a version, you can take it, apply grsecurity, and then
>enjoy the combination of Mandrake, a 2.4.* kernel, better security, and
>Mandrake improvements.
>
>--
>Eli Marmor
>marmor@netmask.it
>CTO, Founder
>Netmask (El-Mar) Internet Technologies Ltd.
>__________________________________________________________
>Tel.: +972-9-766-1020 8 Yad-Harutzim St.
>Fax.: +972-9-766-1314 P.O.B. 7004
>Mobile: +972-50-23-7338 Kfar-Saba 44641, Israel
>
>=================================================================
>To unsubscribe, send mail to linux-il-request@linux.org.il with
>the word "unsubscribe" in the message body, e.g., run the command
>echo unsubscribe | mail linux-il-request@linux.org.il
----
Regards,
Eran Levy.
E-mail: eranle@netvision.net.il
WebSite: http://come.to/liloboot
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il