RE: Linux Hardening

Hi,

I would suggest looking at grSecurity (http://www.grsecurity.net)

And SELinux (http://www.nsa.gov/selinux/info/faq.cfm)

Whichever suits your environment.

Regards,
Uzair

Relevant Pages

  • Re: Value of selinux+grsecurity (was: Re: Anybody deploy grsecurity on Fedora?)
    ... I noticed that the PaX stuff seems to now be merged into grsecurity. ... Anyone deploy grsecurity on a recent Fedora release or RHEL ... I believe the two (selinux and ...
    (Fedora)
  • Re: Value of selinux+grsecurity (was: Re: Anybody deploy grsecurity on Fedora?)
    ... I noticed that the PaX stuff seems to now be merged into grsecurity. ... Anyone deploy grsecurity on a recent Fedora release or RHEL ... I believe the two (selinux and ...
    (Fedora)
  • Re: [Full-disclosure] TCP Port randomization paper
    ... it's just *some* popular implementations. ... grsecurity in the next revision of the draft. ... known the the selinux developers are in 'grsec/pax denial' (similar to ... stack overflow, kernel vulernablity, and null pointer deference protections. ...
    (Full-Disclosure)
  • 2.6 freeze and grsecurity
    ... Is there any plan to impliment grsecurity into the final 2.6 release ... I did notice seLinux, but as far as I understand ... seLinux is a lower-than-os ACL system, whereas grsecurity is a security ... name escapes me right now) would at least consider allowing grsec to make ...
    (Linux-Kernel)