Der Grsecurity Patch 2.6.24.3 ist raus.

http://www.grsecurity.org/test/grsecurity-2.1.11-2.6.24.3-200803031942.patch



grsecurity
grsecurity is an innovative approach to security utilizing a multi-layered detection, prevention, and containment model. It is licensed under the GPL.
It offers among many other features:

* An intelligent and robust Role-Based Access Control (RBAC) system that can generate least privilege policies for your entire system with no configuration
* Change root (chroot) hardening
* /tmp race prevention
* Extensive auditing
* Prevention of arbitrary code execution, regardless of the technique used (stack smashing, heap corruption, etc)
* Prevention of arbitrary code execution in the kernel
* Randomization of the stack, library, and heap bases
* Kernel stack base randomization
* Protection against exploitable null-pointer dereference bugs in the kernel
* Reduction of the risk of sensitive information being leaked by arbitrary-read kernel bugs
* A restriction that allows a user to only view his/her processes
* Security alerts and audits that contain the IP address of the person causing the alert

hi!

das ist ein testing-patch.
ich denke nicht, dass man den so anpreisen sollte. :=)

//richard

Mitlerweile ist der Patch für 2.6.24.4 stabil!
Wurde auch mal Zeit :)