Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Quick question on kernel sources and hardened profile.
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Kernel & Hardware
View previous topic :: View next topic  
Author Message
mahtso
n00b
n00b


Joined: 02 Jan 2024
Posts: 5
Location: United States
PostPosted: Fri Feb 09, 2024 5:34 pm    Post subject: Quick question on kernel sources and hardened profile. Reply with quote
Hey all,

I have my system set to the hardened profile and had the distribution kernel on it for awhile. After having my install running for awhile I wanted to do the usual kernel handroll but just have one question. This is my first time using the Hardened profile and was wondering if the kernel sources replace my hardened kernel with a less secure one? I was trying to find information about it and I did find a mail that states the hardened sources were discontinued back in 2017 so I would like to know if I have anything else I need to do to make sure Im hardened with the regular sources or is all of the hardening in portage and tool chain these days?

Thanks for your time!
_________________
Its the guy. He did everything correct.
Back to top
View user's profile Send private message
NeddySeagoon
Administrator
Administrator


Joined: 05 Jul 2003
Posts: 54834
Location: 56N 3W
PostPosted: Fri Feb 09, 2024 5:59 pm    Post subject: Reply with quote
mahtso,

The hardened kernel disappeared when the grsecurity patches went behind a paywall.

A lot of the last available GPL grsecurity patches eventually found there way into the kernel too.
Then there is the Kernel Self Protection Project which has a list of Recommended Kernel Settings for various architectures.

Lastly, if you turn on
Code:
 [ ] Gentoo Linux support
in menuconfig one of the options is
Code:
Kernel Self Protection Project
which is another menu.
Have a look there.
_________________
Regards,

NeddySeagoon

Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail.
Back to top
View user's profile Send private message
mahtso
n00b
n00b


Joined: 02 Jan 2024
Posts: 5
Location: United States
PostPosted: Fri Feb 09, 2024 8:10 pm    Post subject: Reply with quote
Thank you for the reply! I appreciate you turning me to the right resources as I was having a hard time finding them. Gentoo really is the best and I just want to take advantage of what it has to offer.
_________________
Its the guy. He did everything correct.
Back to top
View user's profile Send private message
pietinger
Moderator
Moderator


Joined: 17 Oct 2006
Posts: 5377
Location: Bavaria
PostPosted: Fri Feb 09, 2024 9:02 pm    Post subject: Reply with quote
Please let me add: https://wiki.gentoo.org/wiki/User:Pietinger/Tutorials/Kernel_Hardening_with_KSPP

;-)
_________________
https://wiki.gentoo.org/wiki/User:Pietinger
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Kernel & Hardware All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy