On 12/19/15, Yves-Alexis Perez <cor...@debian.org> wrote: > On jeu., 2015-11-05 at 22:08 +0100, Yves-Alexis Perez wrote: >> On sam., 2015-10-10 at 21:55 +0200, Yves-Alexis Perez wrote: >> > This is really a work in progress and this mail a request for comment. >> > Especially missing is: >> >> So, did any of you have the chance to test it? I'm currently running the >> 4.2.5 >> kernel with grsecurity-3.1-4.2.5-201511021814 (just uploaded to my >> repository >> and to git.d.o) and it works just fine. >> >> I'm really interested by any feedback you would have on this. >> > With a lot of help from Ben I've made quite some progress in having the > less possible differences with src:linux package. With 4.3.3 we still have few > things differing, some of them which I think will be integrated in the > upcoming src:linux releases. >
Great news - this looks fantastic! > I'm intending to upload the current version to NEW during the week-end, so > if any of you want to test it, now would be a good time. > I've installed it - I've also tuned a few things. It seems to work as well as my previous kernel - audio works, etc. > You can find it on the git repository > at https://anonscm.debian.org/cgit/colla > b-maint/linux-grsec.git and the source and binary packages on my apt > repository > at https://perso.corsac.net/~corsac/debian/kernel-grsec/packages/ To boot Debian Jessie (with some testing pacakes too) to X - I had to set: kernel.grsecurity.disable_priv_io=0 kernel.pax.softmode=1 kernel.grsecirity.grsec_lock=0
