diff options
| author |   Ned Ludd <solar@gentoo.org> | 2004-01-11 05:45:02 +0000 |
|---|---|---|
| committer | Ned Ludd <solar@gentoo.org> | 2004-01-11 05:45:02 +0000 |
| commit | 518f03cf96fd598646ddafdd8392b7af34a1f43e (patch) | |
| tree | 9bf6527e8db88c5fc988f9194241286bcfaf395d /sys-kernel/grsec-sources/files | |
| parent | now really bumping to stable ;) (Manifest recommit) (diff) | |
| download | gentoo-2-518f03cf96fd598646ddafdd8392b7af34a1f43e.tar.gz gentoo-2-518f03cf96fd598646ddafdd8392b7af34a1f43e.tar.bz2 gentoo-2-518f03cf96fd598646ddafdd8392b7af34a1f43e.zip | |
version bump and a clean up of the src code for dealing with hppa
Diffstat (limited to 'sys-kernel/grsec-sources/files')
| -rw-r--r-- | sys-kernel/grsec-sources/files/2.4.24-x86.config | 107 | ||||
| -rw-r--r-- | sys-kernel/grsec-sources/files/digest-grsec-sources-2.4.24.1.9.13 | 1 |
2 files changed, 108 insertions, 0 deletions
diff --git a/sys-kernel/grsec-sources/files/2.4.24-x86.config b/sys-kernel/grsec-sources/files/2.4.24-x86.config new file mode 100644 index 000000000000..f85800874a1b --- /dev/null +++ b/sys-kernel/grsec-sources/files/2.4.24-x86.config @@ -0,0 +1,107 @@ +# +# Grsecurity +# +CONFIG_GRKERNSEC=y +CONFIG_CRYPTO=y +CONFIG_CRYPTO_SHA256=y +# CONFIG_GRKERNSEC_LOW is not set +# CONFIG_GRKERNSEC_MID is not set +# CONFIG_GRKERNSEC_HI is not set +CONFIG_GRKERNSEC_CUSTOM=y + +# +# Address Space Protection +# +CONFIG_GRKERNSEC_PAX_NOEXEC=y +CONFIG_GRKERNSEC_PAX_PAGEEXEC=y +CONFIG_GRKERNSEC_PAX_SEGMEXEC=y +CONFIG_GRKERNSEC_PAX_EMUTRAMP=y +# CONFIG_GRKERNSEC_PAX_EMUSIGRT is not set +CONFIG_GRKERNSEC_PAX_MPROTECT=y +# CONFIG_GRKERNSEC_PAX_NOELFRELOCS is not set +CONFIG_GRKERNSEC_PAX_ASLR=y +CONFIG_GRKERNSEC_PAX_RANDKSTACK=y +CONFIG_GRKERNSEC_PAX_RANDUSTACK=y +CONFIG_GRKERNSEC_PAX_RANDMMAP=y +CONFIG_GRKERNSEC_PAX_RANDEXEC=y +CONFIG_GRKERNSEC_KMEM=y +# CONFIG_GRKERNSEC_IO is not set +CONFIG_GRKERNSEC_PROC_MEMMAP=y +CONFIG_GRKERNSEC_HIDESYM=y + +# +# ACL options +# +CONFIG_GRKERNSEC_ACL_HIDEKERN=y +CONFIG_GRKERNSEC_ACL_MAXTRIES=3 +CONFIG_GRKERNSEC_ACL_TIMEOUT=30 + +# +# Filesystem Protections +# +CONFIG_GRKERNSEC_PROC=y +# CONFIG_GRKERNSEC_PROC_USER is not set +CONFIG_GRKERNSEC_PROC_USERGROUP=y +CONFIG_GRKERNSEC_PROC_GID=10 +CONFIG_GRKERNSEC_PROC_ADD=y +CONFIG_GRKERNSEC_LINK=y +CONFIG_GRKERNSEC_FIFO=y +CONFIG_GRKERNSEC_CHROOT=y +CONFIG_GRKERNSEC_CHROOT_MOUNT=y +CONFIG_GRKERNSEC_CHROOT_DOUBLE=y +CONFIG_GRKERNSEC_CHROOT_PIVOT=y +CONFIG_GRKERNSEC_CHROOT_CHDIR=y +CONFIG_GRKERNSEC_CHROOT_CHMOD=y +CONFIG_GRKERNSEC_CHROOT_FCHDIR=y +CONFIG_GRKERNSEC_CHROOT_MKNOD=y +CONFIG_GRKERNSEC_CHROOT_SHMAT=y +CONFIG_GRKERNSEC_CHROOT_UNIX=y +CONFIG_GRKERNSEC_CHROOT_FINDTASK=y +CONFIG_GRKERNSEC_CHROOT_NICE=y +CONFIG_GRKERNSEC_CHROOT_SYSCTL=y +CONFIG_GRKERNSEC_CHROOT_CAPS=y + +# +# Kernel Auditing +# +# CONFIG_GRKERNSEC_AUDIT_GROUP is not set +CONFIG_GRKERNSEC_EXECLOG=y +CONFIG_GRKERNSEC_RESLOG=y +CONFIG_GRKERNSEC_CHROOT_EXECLOG=y +CONFIG_GRKERNSEC_AUDIT_CHDIR=y +CONFIG_GRKERNSEC_AUDIT_MOUNT=y +CONFIG_GRKERNSEC_AUDIT_IPC=y +CONFIG_GRKERNSEC_SIGNAL=y +CONFIG_GRKERNSEC_FORKFAIL=y +CONFIG_GRKERNSEC_TIME=y + +# +# Executable Protections +# +CONFIG_GRKERNSEC_EXECVE=y +CONFIG_GRKERNSEC_DMESG=y +CONFIG_GRKERNSEC_RANDPID=y +CONFIG_GRKERNSEC_TPE=y +CONFIG_GRKERNSEC_TPE_ALL=y +CONFIG_GRKERNSEC_TPE_GID=100 + +# +# Network Protections +# +# CONFIG_GRKERNSEC_RANDNET is not set +CONFIG_GRKERNSEC_RANDISN=y +CONFIG_GRKERNSEC_RANDID=y +CONFIG_GRKERNSEC_RANDSRC=y +CONFIG_GRKERNSEC_RANDRPC=y +# CONFIG_GRKERNSEC_SOCKET is not set + +# +# Sysctl support +# +CONFIG_GRKERNSEC_SYSCTL=y + +# +# Logging options +# +CONFIG_GRKERNSEC_FLOODTIME=10 +CONFIG_GRKERNSEC_FLOODBURST=4 diff --git a/sys-kernel/grsec-sources/files/digest-grsec-sources-2.4.24.1.9.13 b/sys-kernel/grsec-sources/files/digest-grsec-sources-2.4.24.1.9.13 new file mode 100644 index 000000000000..c53c09ff6087 --- /dev/null +++ b/sys-kernel/grsec-sources/files/digest-grsec-sources-2.4.24.1.9.13 @@ -0,0 +1 @@ +MD5 1e055c42921b2396a559d84df4c3d9aa linux-2.4.24.tar.bz2 29837818 |