Red Hat Bugzilla – Bug 60471
add grsecurity patches to kernel
Last modified: 2007-04-18 12:40:40 EDT
Description of Problem:
grsecurity (http://www.grsecurity.net/features.htm) has a collection of security
enhancements to the linux kernel. It seems all (most?) are available as "not
enabled by default", add via sysctl and/or /proc.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
IMHO, this "would be cool"
it looks cool. unfortionatly quite a few of these "security" things either don't
actually improve security or actually open new holes. (remember the MSVC++ thing
a few weeks ago, the same is true for some of the linux security patches).....
If something truely works it actually will be included into the mainline kernel.
(and obviously in the RHL kernel)
I'm closing this because we don't expect to use grsecurity,
but we'll still look at some of the other security patches,
so the general idea behind the request we'll still be looking
at, so even though it's closed it doesn't mean we won't end
up providing what you want...