[NTLUG:Discuss] Security patch 'grsecurity'
Richard Geoffrion
richard at rain.lewisville.tx.us
Wed Jun 6 11:18:05 CDT 2001
Has anyone used grsecurity? Does anyone see any problems with implementing
this in a production environment?
[snip from site: http://www.getrewted.net ]
grsecurity v1.4 released!
just finished a new patch. This one has several new features and several
fixes. v1.4 includes the newly released version of PaX
(http://pax.low-level.net) which provides a much greater range of protection
against buffer overflow exploits than the regular Openwall stack patch, as
well as randomized TCP source ports, and additional chroot options. The
patch also fixes several logging issues. Both the LIDS and non-LIDS versions
are available in the downloads section. I included the new version of LIDS
as well, even adding a patch that was forgotten in the official release, the
fix for sending alerts to qmail. enjoy!
[/snip]
Here is the feature list for those that want to go right to it..
http://www.getrewted.net/grsecurity/FEATURES
More information about the Discuss
mailing list