RE: [vserver] vserver vs. freevsd

About this list Date view Thread view Subject view Author view Attachment view

From: edward_at_paradigm4.com.au
Date: Fri Feb 08 2002 - 11:51:47 EST


On Friday, 8 February 2002 at 13:19, klavs klavsen wrote:

> I have no problem with compiling/patching kernels. Sorry if I somehow
> gave that impression. I just want the safest possible setup for my need.
> was also thining of asking alter, how LIDS works with the vserver patch.

Last time I tried LIDS it clashed with vserver. A lot of work would be needed
to adapt/combine both patches which is made even more difficult by LIDS
lagging a bit behind in the base kernel ( e.g. their latest 2.4.x is 2.4.16 ).

One of the great things about vserver is that it allows you to run
more than 1 distro ( or set of servers ) _transparently_ on the same machine.

If you are not really interested in that aspect and just want tight ( MAC ) security,
you may want to look into SeLinux.

http://www.nsa.gov/selinux/

There is also a set of security stuff for 2.4.x which you may find useful:

http://www.grsecurity.net/

hth
Ed


About this list Date view Thread view Subject view Author view Attachment view

This archive was generated by hypermail 2.1.4 : Mon Aug 19 2002 - 12:01:00 EDT