![](https://seccdn.libravatar.org/avatar/27baa448681c4a5c26d14d8f44fbe635.jpg?s=120&d=mm&r=g)
On Mon, 20 Jan 2003 21:18:26 +0100 (CET)
"Carlos E. R."
The 03.01.20 at 07:42, zentara wrote:
Here is the "help" from the grsecurity patch menuconfig section.
I'll save this to my "interesting" folder :-) As for using it... well, not for home; perhaps for a fulltime firewall. Unless it become part of the kernel, and all programs adapt to it...
Well the grsecurity patch is a whole collection of useful patches to tighten-up your system. The "executable pages" patch is just one of them. It is still worth looking at even for a home system, it includes things like "randomized pids", "trampoline protection", and various proc and socket restrictions, which are useful if you have other users working from the console. You can limit users from opening sockets, etc. I don't know if it applies cleanly to suse kernel sources though, probably not. ;-( http://grsecurity.net It's been around awhile, and is scrutinized by alot of people. -- use Perl; #powerful programmable prestidigitation