[grsec] Release candidate of grsecurity 2.1.0 for 2.4.28/2.6.10, please test

Brad Spengler spender at grsecurity.net
Wed Jan 5 14:16:55 EST 2005


> Could you please clarify the meaning and order of the patches? This is
> too important for me to go by trial and error... If I understand the
> patch is for 2.4.28 and not 2.4.29-pre3. There's also
> linux-2.4.28-secfixes.patch. Is this the fixes that are included in
> the transition from 2.4.28 to 2.4.29-pre3? Something else or less?
> Is it already included in
> grsecurity-2.1.0-2.4.28-200501051112.patch? If not in which order
> should they be applied?


The grsecurity patch should be applied first, then the 2.4.28 secfix 
patch (if you're patching 2.4.28).  The secfix patch includes all the 
fixes applied to the grsec-sources kernel package of gentoo, along with 
some other fixes.
You can view a listing of the fixes in the grsec-sources tree at:
http://gentoo.kems.net/gentoo-x86-portage/sys-kernel/grsec-sources/files/
and the other fixes at:
http://www.exinferis.de/linux/kernel/security/2.4.28/

I've uploaded a new secfix patch that has the date in the filename.

-Brad
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://grsecurity.net/pipermail/grsecurity/attachments/20050105/fdf78125/attachment.pgp


More information about the grsecurity mailing list