Re: [RFC][PATCH} 2.6 and grsecurity
From: James Morris
Date: Tue Feb 17 2004 - 01:17:11 EST
On Mon, 16 Feb 2004 Valdis.Kletnieks@xxxxxx wrote:
> On Mon, 16 Feb 2004 18:15:46 PST, Chris Wright said:
> > * Valdis.Kletnieks@xxxxxx (Valdis.Kletnieks@xxxxxx) wrote:
> > > Here's the patch, versioned against 2.6.3-rc3-mm1. Comments?
> >
> > Aside of the dubious security value...the typical no #ifdefs apply here.
>
> Agreed - the only one that seems at all a *big* win is randomizing PID's
> (and even there it probably should default a higher value for pid_max to
> increase the search space). But as long as I was looking at it anyhow.. :)
How is this a big win? Looks like cargo cult security to me.
> > > + * 3. All advertising materials mentioning features or use of this softwar
> e
> > > + * must display the following acknowledgement:
> > > + * This product includes software developed by Niels Provos.
> >
> > Advertsing clause...this is not GPL compatible.
>
> Or they OK because they're only doing a separately distributed patch?
No.
- james
--
James Morris
<jmorris@xxxxxxxxxx>
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/