Hey i like to protect my system against hackers. So i patched my kernel with grsecurity (www.grsecurity.org). It is a patch like openwall++. I have written a script to read a config-file in /etc and a init.d-script to start this while booting (grsecurity could use sysctl - you need to enable it to use these scripts!) You could use 'grsec init' to create a config-file with all options disabled. Enable the ones you like. Then start the init.d-script '/etc/init.d/grsec start' or put it to your boot-runlevel 'rc-update add grsec boot' Ok, please try it and tell me suggestions, Thanks Sebastian Werner