grsecurity users?
Arkadiusz Miśkiewicz
arekm at maven.pl
Mon Nov 21 20:08:34 CET 2011
On Monday 21 of November 2011, Marek Guevara Braun wrote:
> W dniu 21 listopada 2011 11:33 użytkownik Arkadiusz Miśkiewicz
>
> <arekm at maven.pl> napisał:
> > Ok but what part? RBAC?
>
> Yes. without PAX
Ouh, help fixing grsec+vserver then.
I'm also thinking about another aproach, introducing second type of kernel:
- kernel without vserver, without grsecurity, possibly with grsec minimal
(3.1.x at the moment)
- kernel with vserver and full grsecurity (3.0.x at the moment)
I guess both with all related packages.
> >> I've got issues with
> >> vservers on 3.0 kernels,
> >
> > What issues?
>
> OpenVPN server in vserver does not see any tun interfaces provided by
> host (3.0.8-1). This config (documented in docs.pld-li...) works with
> older 2.6 kernels, but unfortunatelly not with the newest kernel from
> th repository.
Don't have such setup. Here openvpn is running on host and is only providing
single IP address to two guests.
--
Arkadiusz Miśkiewicz PLD/Linux Team
arekm / maven.pl http://ftp.pld-linux.org/
More information about the pld-devel-en
mailing list