Re: grsecurity 2.1.11 released for Linux 220.127.116.11/18.104.22.168
Carlos Carvalho wrote:
> Brad Spengler (spender@...) wrote on 14 April 2008 21:07:
> >It is not clear if the PaX Team will be able to continue supporting
> >future versions of the 2.6 kernels, given their rapid rate of release
> >and the incredible amount of work that goes into porting such a
> >low-level enhancement to the kernel (especially now in view of the
> >reworking of the i386/x86-64 trees). It may be necessary that grsecurity
> >instead track the Ubuntu LTS kernel so that users can have a stable
> >kernel with up-to-date security fixes. I will update this page when a
> >final decision has been reached.
> This would be very inconvenient for those who don't run ubuntu, and
> worse for those that compile their own kernels...
at first, we (me and my collegues) very appreciate a work you have done
so far for linux kernel security. Thank you ... cause of YOUR work, we
are still winning every day fight with naughty students of our
university, who test any new kernel exploit on our servers instead of
researching in Matlab ;))
at second. I have to agree with Carlos, I'd rather like a patch with
fits with original vanilla kernel - it's more generic - more usefull. IMHO.