]> git.pld-linux.org Git - packages/kernel.git/blobdiff - kernel-grsec.config
projects / packages / kernel.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
up to 2.6.32.63, use .xz patch
[packages/kernel.git] / kernel-grsec.config
diff --git a/kernel-grsec.config b/kernel-grsec.config
index 2566c554fa5e4a5c48c612ce9e218fa9d7cbc785..e9a3c3e15560cda2cc6303c15c96e51cacf05ec8 100644 (file)
--- a/kernel-grsec.config
+++ b/kernel-grsec.config
@@ -16,6 +16,9 @@ CONFIG_GRKERNSEC_CUSTOM=y
 CONFIG_GRKERNSEC_BRUTE=y
 CONFIG_GRKERNSEC_MODSTOP=y
 # CONFIG_GRKERNSEC_HIDESYM is not set
+# CONFIG_GRKERNSEC_KERN_LOCKOUT is not set
+
+CONFIG_GRKERNSEC_VM86=y
 
 #
 # Role Based Access Control Options
@@ -35,6 +38,8 @@ CONFIG_GRKERNSEC_PROC_GID=17
 CONFIG_GRKERNSEC_PROC_ADD=y
 CONFIG_GRKERNSEC_LINK=y
 CONFIG_GRKERNSEC_FIFO=y
+CONFIG_GRKERNSEC_SYSFS_RESTRICT=y
+CONFIG_GRKERNSEC_ROFS=y
 CONFIG_GRKERNSEC_CHROOT=y
 CONFIG_GRKERNSEC_CHROOT_MOUNT=y
 CONFIG_GRKERNSEC_CHROOT_DOUBLE=y
@@ -58,6 +63,7 @@ CONFIG_GRKERNSEC_AUDIT_GID=1007
 CONFIG_GRKERNSEC_EXECLOG=y
 CONFIG_GRKERNSEC_RESLOG=y
 CONFIG_GRKERNSEC_CHROOT_EXECLOG=y
+CONFIG_GRKERNSEC_AUDIT_PTRACE=y
 CONFIG_GRKERNSEC_AUDIT_CHDIR=y
 CONFIG_GRKERNSEC_AUDIT_MOUNT=y
 CONFIG_GRKERNSEC_AUDIT_IPC=y
@@ -72,6 +78,9 @@ CONFIG_GRKERNSEC_AUDIT_TEXTREL=y
 #
 CONFIG_GRKERNSEC_EXECVE=y
 CONFIG_GRKERNSEC_DMESG=y
+CONFIG_GRKERNSEC_HARDEN_PTRACE=y
+CONFIG_GRKERNSEC_PTRACE_READEXEC=y
+CONFIG_GRKERNSEC_SETXID=y
 CONFIG_GRKERNSEC_TPE=y
 CONFIG_GRKERNSEC_TPE_ALL=y
 # CONFIG_GRKERNSEC_TPE_INVERT is not set
@@ -103,3 +112,6 @@ CONFIG_GRKERNSEC_FLOODTIME=10
 CONFIG_GRKERNSEC_FLOODBURST=10
 
 CONFIG_IP_NF_MATCH_STEALTH=m
+
+# CONFIG_GRKERNSEC_MODHARDEN is not set
+# CONFIG_PAX_MEMORY_STACKLEAK is not set
The Linux kernel (the core of the Linux operating system)
This page took 0.023687 seconds and 4 git commands to generate.