Enhancing kernel security with grsecurity

Is your server as secure as it could be? Sure, you use a firewall, mandate strong passwords, and patch regularly. You even take a proactive approach by performing security audits with tools such as nmap and Nessus. Yet you may still be vulnerable to zero-day exploits and privilege escalation attacks. If these possibilities keep you awake at night, you're not alone. The sleepless folks with the grsecurity project have developed an easy-to-use set of security enhancements to help put your fears to rest.
To say that grsecurity provides many enhancements is an understatement. There are more than 30 options to choose from after installation.
Take note that grsecurity requires the use of a vanilla kernel from www.kernel.org. The kernel source supplied by your distribution's vendor has most likely been patched beyond recognition to grsecurity. With that caveat in mind, installation is simple.
-
- Login or register to post comments
Printer-friendly version
- 2825 reads
PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
Security: Updates, IBM, Elytron and Container Vulnerability Scanning
| NetBSD 8.0 RC1 Available, Bringing Initial USB 3.0 Support & Spectre/Meltdown Mitigation
It's a busy month for the BSDs with DragonFlyBSD 5.2 having come along with OpenBSD 6.3 and right before that was TrueOS 18.03. Now there's finally the release candidate of the long-awaited NetBSD 8.0 update.
NetBSD 7.0 arrived back in October 2015 while the NetBSD 8.0 release should not be too much further out. Arguably most interesting with NetBSD 8.0 is its finally bring initial USB 3.0 support though the change-log currently just describes it as "some USB 3 support."
|
FFmpeg 4.0 Released
| Graphics: AMD, Intel and Vulkan
|
Recent comments
1 day 4 hours ago
1 day 4 hours ago
1 day 16 hours ago
1 day 17 hours ago
2 days 12 hours ago
2 days 13 hours ago
3 days 17 hours ago
4 days 21 hours ago
6 days 4 hours ago
1 week 13 hours ago