From: <no...@fr...> - 2002-12-15 05:06:08
|
This email is to inform you of release '1.9.8-rc2' of 'grsecurity' through freshmeat.net. All URLs and other useful information can be found at http://freshmeat.net/projects/grsecurity/ The changes in this release are as follows: A shared memory chroot restriction was added. Two flags which provide automatic local attack response have been added to the ACL system, along with a read-only ptrace flag, and a flag that ensures a process cannot execute any trojaned code. The PaX VM mirroring code has been completely rewritten. /proc restrictions have been redesigned, the IP process correlation code has been improved, and gradm supports more syslog applications. Project description: grsecurity is a complete security system for Linux 2.4 that implements a detection/prevention/containment strategy. It prevents most forms of address space modification, confines programs with least privilege via its process-based MAC system, hardens syscalls, and provides many of the OpenBSD randomness features. It was written for performance, ease-of-use, and security. The MAC system has an intelligent learning-mode, and all of grsecurity supports a feature that logs the IP of the attacker that causes an alert or audit. If you would like to cancel subscription to releases of this project, login to freshmeat.net and choose 'home' from the personal menubar at the top of the page. You'll be presented with a list of projects you're subscribed to in the right column, which you may cancel by highlighting the project in question and clicking the 'delete' button. Sincerely, freshmeat.net |