Compile And Patch Your Own Secure Linux Kernel With PaX and Grsecurity
The reason why Linux and open source will always be more secure than Windows is because you can build advanced security right in. This guide’s going to show you how to do that. I’ll be explaining how...
View ArticleWhy Grsecurity Is Always On Top
Earlier today there was an excellent blog post about bypassing SMAP (or KERNEXEC, for the PaX implementation via the Grsecurity patch) in the Linux kernel using JIT spraying. SMAP is the latest...
View ArticleHardening Ubuntu Linux
I’m going to keep some tips here for users looking to improve their security, when I update it I’ll tweet about it, so feel free to follow me @insanitybit. This is aimed at desktop users but naturally...
View ArticleGrsecurity On Desktop Is Simple
Some people find the idea of compiling their own kernel to be fairly daunting. And, to an extent, it is. There’s greater chance for issues to arise when you start handling things yourself if you aren’t...
View ArticleConfiguring Grsecurity Is Easier – New Autoconfig
My previous guide on configuring Grsecurity isn’t too difficult to follow, but if messing with those settings is more than you want to do, there’s an autoconfig option. Open your configuration with...
View ArticleUbuntu 13.10 And mprotect() Restrictions
For a while I’ve had to keep the Restrict mprotect() option in PaX disabled because it wasn’t compatible with certain programs. It was kind of a huge pain to deal with for that reason. But I’ve finally...
View Article
More Pages to Explore .....