Any luck on figuring out why PaX doesn't enable??? I"m
stuck in the same rutt.
> It's the first time for me, that paxtest shows
> something else than Vulnerable.
> I'll now continue with customising the system and
try
> to find out, which of my
> actions break PaX.
>
> Thank you very much to eve
On 15 Feb 2007 at 13:43, "Tino Müller" wrote:
> [EMAIL PROTECTED] wrote:
> > check COMPAT_VDSO, it has to be disabled for PaX.
> >
>
> I checked that. It's disabled. This is the default setting.
then i don't know, that's the only dependency for these options...
--
gentoo-hardened@gentoo.org mail
Hello,
I installed once again, but this time with default settings and only editing
mandatory config files (like fstab). It's the original
stage3-x86-hardened-2.6-2006.0.tar.bz2 without rebuilding any packages. Kernel
config is mostly default, but with mandatory hardware drivers for disk and ne
[EMAIL PROTECTED] wrote:
> On 15 Feb 2007 at 10:04, "Tino Müller" wrote:
>
>> [EMAIL PROTECTED] wrote:
>>> maybe if you actually enabled any of the non-exec implementations... ;-)
>>>
>> Unfortunately I can't, because the config options are gone.
>
> check COMPAT_VDSO, it has to be disabled for P
On 15 Feb 2007 at 10:04, "Tino Müller" wrote:
> [EMAIL PROTECTED] wrote:
> > maybe if you actually enabled any of the non-exec implementations... ;-)
> >
>
> Unfortunately I can't, because the config options are gone.
check COMPAT_VDSO, it has to be disabled for PaX.
--
gentoo-hardened@gentoo.or
Kevin F. Quinn wrote:
> On Wed, 14 Feb 2007 17:09:22 +0100
> "Tino Müller" <[EMAIL PROTECTED]> wrote:
>
>> # CONFIG_PAX_NO_ACL_FLAGS is not set
>> CONFIG_PAX_HAVE_ACL_FLAGS=y
>> # CONFIG_PAX_HOOK_ACL_FLAGS is not set
>
> I think your DAC is overriding the PaX headers on the paxtest
> binaries, an
[EMAIL PROTECTED] wrote:
> On 14 Feb 2007 at 17:09, "Tino Müller" wrote:
>
>> #
>> # Non-executable pages
>> #
>> CONFIG_PAX_NOEXEC=y
>
> maybe if you actually enabled any of the non-exec implementations... ;-)
>
Unfortunately I can't, because the config options are gone.
With ACCEPT_KEYWORDS=
On 14 Feb 2007 at 17:09, "Tino Müller" wrote:
> #
> # Non-executable pages
> #
> CONFIG_PAX_NOEXEC=y
maybe if you actually enabled any of the non-exec implementations... ;-)
--
gentoo-hardened@gentoo.org mailing list
On Wed, 14 Feb 2007 17:09:22 +0100
"Tino Müller" <[EMAIL PROTECTED]> wrote:
> # CONFIG_PAX_NO_ACL_FLAGS is not set
> CONFIG_PAX_HAVE_ACL_FLAGS=y
> # CONFIG_PAX_HOOK_ACL_FLAGS is not set
I think your DAC is overriding the PaX headers on the paxtest
binaries, and it's operating in a mode where it r
Alex Efros wrote:
> Please check your profile:
>
> # ls -ld /etc/make.profile
> lrwxrwxrwx 1 root root 41 Окт 29 00:11 /etc/make.profile ->
> ../usr/portage/profiles/hardened/x86/2.6/
>
> You doesn't mention it in your list, but probably it's already set
> correctly because you used stage3-x86-h
Hi!
On Wed, Feb 14, 2007 at 05:09:22PM +0100, "Tino M?ller" wrote:
> I have trouble setting up Hardened Gentoo. I've tried several ways, read a
> dozen posts in forums and the fine documentation, but to no avail.
>
> I did the following (step by step, short form):
Please check your profile:
#
Hello list,
I have trouble setting up Hardened Gentoo. I've tried several ways, read a
dozen posts in forums and the fine documentation, but to no avail.
I did the following (step by step, short form):
1. boot from CD built from install-x86-minimal-2006.0.iso
2. partition, make filesystems, mou
12 matches
Mail list logo
