On Tue, 05 Oct 2010 19:43:26 -0400
"Anthony G. Basile" wrote:
> If anyone can test all four possibilities for me, KERNEXEC=y/n and
> UDEREF=y/n, for a *paravirt* guest and tell me how it goes, I would
> appreciate it.
I also started to test this on a CentOS 5 Dom0, Gentoo DomU. I must
have trigg
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10/11/2010 01:20 PM, Tom Hendrikx wrote:
> On 06/10/10 01:43, Anthony G. Basile wrote:
>> On 10/05/2010 10:25 AM, Mike Edenfield wrote:
>>> and then build and install a PaX kernel.
>>
>> Be careful when installing a hardened kernel for a guest under
On 06/10/10 01:43, Anthony G. Basile wrote:
> On 10/05/2010 10:25 AM, Mike Edenfield wrote:
>> and then build and install a PaX kernel.
>
> Be careful when installing a hardened kernel for a guest under xen. If
> your guest is fully virtualized, you shouldn't have any problems. I've
> run full v
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10/05/2010 10:25 AM, Mike Edenfield wrote:
> and then build and install a PaX kernel.
Be careful when installing a hardened kernel for a guest under xen. If
your guest is fully virtualized, you shouldn't have any problems. I've
run full virt gues
On 05/10/10 16:25, Mike Edenfield wrote:
> On 10/4/2010 10:50 AM, Tom Hendrikx wrote:
>
>> This means that I will have only the changes triggered by the profile
>> change later on. Are there particular issues that I need to take care
>> of? And how to deal with the gcc change? I remember that ther
On 10/4/2010 10:50 AM, Tom Hendrikx wrote:
> This means that I will have only the changes triggered by the profile
> change later on. Are there particular issues that I need to take care
> of? And how to deal with the gcc change? I remember that there was some
> kind of 'vanilla to hardened' guide
Hi,
Last week, I ordered a XEN-based VPS with some commercial party with a
gentoo image. The image is (of course) created with the default profile
for amd64 (default/linux/amd64/10.0).
I want to convert the host to hardened (hardened/linux/amd64/10.0
profile), but in the process I noticed all kin
