Am 03.09.2015 23:08 schrieb Marc Schiffbauer:
* Matthew Thode schrieb am 03.09.15 um 21:46 Uhr:
On 09/03/2015 02:28 PM, Marc Schiffbauer wrote:
> * Anthony G. Basile schrieb am 02.09.15 um 18:13 Uhr:
>> Hi everyone,
>>
>> So by now most people have heard the news that the Grsecurity/PaX team
>
Am 15.08.2017 21:13 schrieb Alex Efros:
[...]
[3] https://github.com/minipli/linux-unofficial_grsec
[4] https://github.com/copperhead/linux-hardened
Sounds cool, but is anyone is going to provide ebuilds for these
kernels?
Not official, but having these in some overlay is better than nothin
Am 16.08.2017 16:46 schrieb Michael Orlitzky:
There is one thing you have to watch out for: certain vanilla kernel
hardened features were subjugated to grsecurity ones and you'll
probably
want to enable them. For example, you probably want CONFIG_VMAP_STACK
once you've switched, but it won't be
Am 23.08.2017 20:58 schrieb Luis Ressel:
Since all a kernel ebuild does is to dump the sources in /usr/src, it
doesn't make much of a difference anyway, but if someone wants to
create an ebuild in their overlay, they're of course welcome to do so.
It was included in the pentoo overlay two days
Hi,
the last publicly available version of PaX / grsecurity will probably
never be ported to work with the Meldown / Spectre fixes.
The only option is to use minipli's last release (4.9.74) and port all
non-spectre related fixes from upstream's 4.9 branch [1] to it. However
you should only r
