On 11/18/2011 08:28 AM, Stan Sander wrote: > On 11/17/2011 09:16 PM, Francisco Blas Izquierdo Riera (klondike) wrote: >> El 18/11/11 05:02, Stan Sander escribió: >>> I actually have the grsecurity turned off in the kernel right now, >>> though PAX is enabled. I'm still trying to transition to running >>> SELinux, then I'll turn on the grsecurity stuff. I have gradm because I >>> intend to eventually use it and I re-emerged it just in case. BTW I am >>> still booting and running in permissive mode for SELinux. >> Just to be on the safe side, have you enabled auditing? If you have try >> starting the kernel with a high logging level (so most messages get >> logged) and check if there are any complains on the screen. >> > I'll give that a go, though I may not be able to work on it again until > tomorrow. >
Don't waste any more time on 3.0.9. It has a problem with inserting modules and will be removed from the tree in a few hours. Play with hardened-sources-3.1.1 which will be there in its place. I'm testing it now. As an aside, please don't use ~arches on production system because part of the testing process is seeing what feedback I get from the community on those kernels. Only when I've heard nothing bad, and run a kernel myself for a while, do I mark it stable. So I encourage people to play with ~arches in non-critical environments and let me know. But do expect the occasional breakage. -- Anthony G. Basile, Ph.D. Gentoo Linux Developer [Hardened] E-Mail : bluen...@gentoo.org GnuPG FP : 8040 5A4D 8709 21B1 1A88 33CE 979C AF40 D045 5535 GnuPG ID : D0455535
