Hi!
I've just updated to opera-11.60.1185 and firefox-bin-8.0.
Opera work just fine, but firefox fail to start (hangs using 100% CPU)
because paxmarking -m isn't enough. To fix firefox paxmarking -r needed too:
paxctl -r /opt/firefox/firefox
I'm using only GrSec+PaX, so there are may be also
On Sun, Dec 11, 2011 at 3:30 PM, Kevin Chadwick wrote:
> On Sun, 11 Dec 2011 10:18:51 +
> Sven Vermeulen wrote:
>
> > Also consider hardening your system settings-wise. I would appreciate if
> you
> > take a look at
> > http://dev.gentoo.org/~swift/docs/previews/oval/gentoo-xccdf-guide.html.
>
On Sun, 11 Dec 2011 10:18:51 +
Sven Vermeulen wrote:
> Also consider hardening your system settings-wise. I would appreciate if you
> take a look at
> http://dev.gentoo.org/~swift/docs/previews/oval/gentoo-xccdf-guide.html.
> With the instructions given, you can even have your system validated
On Sun, 11 Dec 2011 16:53:02 +0200
Alex Efros wrote:
> Hi!
>
> On Sun, Dec 11, 2011 at 02:25:19PM +, Sven Vermeulen wrote:
> > > 1) How can
> > > 4.2.4.1. Root Logon Through SSH Is Not Allowed
> > > increase security, if we're already using
> > > 4.2.4.2. Public Key Authentication On
On 11 December 2011 06:53, Alex Efros wrote:
> On Sun, Dec 11, 2011 at 02:25:19PM +, Sven Vermeulen wrote:
>> > 1) How can
>> > 4.2.4.1. Root Logon Through SSH Is Not Allowed
>> > increase security, if we're already using
>> > 4.2.4.2. Public Key Authentication Only
>> > Disab
On Sun, 11 Dec 2011 16:53:02 +0200
Alex Efros wrote:
> Hi!
>
> On Sun, Dec 11, 2011 at 02:25:19PM +, Sven Vermeulen wrote:
> > > 1) How can
> > > 4.2.4.1. Root Logon Through SSH Is Not Allowed
> > > increase security, if we're already using
> > > 4.2.4.2. Public Key Authentication O
Hi!
On Sun, Dec 11, 2011 at 02:25:19PM +, Sven Vermeulen wrote:
> > 1) How can
> > 4.2.4.1. Root Logon Through SSH Is Not Allowed
> > increase security, if we're already using
> > 4.2.4.2. Public Key Authentication Only
> > Disabling root may have sense with password auth, but
On Sun, Dec 11, 2011 at 02:20:43PM +0200, Alex Efros wrote:
> On Sun, Dec 11, 2011 at 10:18:51AM +, Sven Vermeulen wrote:
> > Also consider hardening your system settings-wise. I would appreciate if you
> > take a look at
> > http://dev.gentoo.org/~swift/docs/previews/oval/gentoo-xccdf-guide.ht
Hi guys,
I just pushed rev 8 of selinux-base-policy (and the various policy modules
that have changes in them since rev 7). The included changes are:
- dontaudit statements for portage (netlink_route_socket)
- update file contexts to support slim and lxdm
- fix syntax issue with mutt
- initia
Hi!
On Sun, Dec 11, 2011 at 10:18:51AM +, Sven Vermeulen wrote:
> Also consider hardening your system settings-wise. I would appreciate if you
> take a look at
> http://dev.gentoo.org/~swift/docs/previews/oval/gentoo-xccdf-guide.html.
Some points at that guide looks strange to me. For example
On Sat, Dec 10, 2011 at 02:52:04PM -0600, Matthew Thode wrote:
> As with most things gentoo, 'best' is a mater of opinion. I personally
> use grsec (includes pax) for hardening and selinux for policies. To
> convert you generally do the following.
>
> profile-config set 12 (this sets to nomultil
11 matches
Mail list logo
