Use grsecurity on critical machines!
Posted Dec 13, 2003 7:58 UTC (Sat) by penguinroar
In reply to: Use grsecurity on critical machines!
Parent article: Lessons from the Debian compromise
I agree with the parent poster, its time to harden the kernel a bit to keep ahead of the crackers. I dont meen that bugs should be downplayed but to have both belt and straps is by my own opinion a good thing. There are several implementations of hardened kernels but i havent seen any broad use of them yet.
Intrusion detection is a harder nut to crack since a to vicious one will cry wolf to much. Some kind of self check of the kernel against a hash only readable and written once at boot maybe?
to post comments)