HSC
Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet
 Text mode: access to the page content
Hervé Schauer Consultants
You are here: Home > Resources > Lectures > Linux Kernel Hardening - The useful and the futile in the grsecurity patch
Go to: HSC Trainings
Search:  
 Version française
   Services   
o Skills & Expertise
o Consulting
o ISO 27001 services
o Vulnerabilities monitoring
o Audit & Assessment
o Penetration tests
o Vunerability assessment (TSAR)
o Forensics
o ARJEL
o Training courses
o E-learning
   Conferences   
o Agenda
o Past events
o Tutorials
   Resources   
o Thematic index
o Tips
o Lectures
o Courses
o Articles
o Tools (download)
o Vulnerability watch
   Company   
o Hervé Schauer
o Team
o Job opportunities
o Credentials
o History
o Partnerships
o Associations
   Press and
 communication 		  
o HSC Newsletter
o Press review
o Press releases
o Publications
   Contacts   
o How to reach us
o Specific inquiries
o Directions to our office
o Hotels near our office
|>|Linux Kernel Hardening
The useful and the futile in the grsecurity patch  
> Access to the content HTML Beginning of the presentation
PDF PDF version [113KB]  
> Description What's useful and what's not in the grsecurity linux kernel patch.  
> Context & Dates Talk made at the RÉSIST working group, on 28 January 2002.
 
> Author Denis Ducamp  
> Type 100 slides [ French - HTML ]
Also available as a PDF file [PDF - 113KB]  
> Abstract &
Table of content		 Flyleaf
HSC - Hervé Schauer Consultants
Introduction
Le patch grsecurity
Les autres patches
Pourquoi ce patch ?
Quelques notions
Grsecurity
Groupe d'options 1 : Buffer Overflow Protection
Groupe d'options 2 : Access Control Lists
Groupe d'options 3 : Filesystem Protections
Groupe d'options 4 : Kernel Auditing
Groupe d'options 5 : Executable Protections
Groupe d'options 6 : Network Protections
Groupe d'options 7 : Sysctl support
Groupe d'options 8 : Miscellaneous Enhancements
Quelques cas concrets
Conclusion  
> Related documents
themeKernel
[Presentation]  Strengthening the Linux Kernel [6 February 2001 - French]
[Presentation]  Unix SSUID and SSGID bits [7 July 1992 - French]
themeLinux
[Presentation]  Linux security characteristics [26 September 2000 - French/English]
[Presentation]  Overview of the main applications of Linux for security [26 April 2000 - French/English]
[Course]  Linux Security
[Presentation]  Linux and security [22 November 2002 - French]
[Presentation]  Some of Linux specificities for security [1 February 2002 - French]
[Presentation]  Strengthening the Linux Kernel [6 February 2001 - French]
[Article]  Open-source software and security, the example of Linux [November 2000 - French]
[Tip]  Linux Kernel Modules (LKM): what benefits for administrators? [25 October 2000 - French/English]
[Presentation]  Linux and Security [13 April 2000 - French]
[Course]  Linux Security [9 December 1999 - French]
[Presentation]  Encrypted tunnels with Linux [18 June 1999 - French]
[Presentation]  Specific security characteristics of Linux [18 June 1999 - French]
[Presentation]  Linux for computer security [18 June 1999 - French]
[Presentation]  Linux for Computer Security [24 March 1999 - French]
> Copyright © 2002, Hervé Schauer Consultants, all rights reserved.

 

Last modified on 28 November 2002 at 16:57:09 CET - webmaster@hsc.fr
Information on this server - © 1989-2010 Hervé Schauer Consultants