From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <peter@pcswebdesign.nl>
X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-14) on finch.gentoo.org
X-Spam-Level: 
X-Spam-Status: No, score=-0.1 required=5.0 tests=DMARC_NONE,MAILING_LIST_MULTI
	autolearn=unavailable autolearn_force=no version=4.0.0
Received: from mail3.home.nl (mail3.home.nl [213.51.129.227])
	by chiba.3jane.net (Postfix) with ESMTP id 3868B2022CBA
	for <gentoo-dev@gentoo.org>; Fri, 15 Mar 2002 10:51:45 -0600 (CST)
Received: from dors.sho ([217.121.131.224]) by mail3.home.nl
          (InterMail vM.4.01.03.00 201-229-121) with SMTP
          id <20020315164644.ESGO18796.mail3.home.nl@dors.sho>
          for <gentoo-dev@gentoo.org>; Fri, 15 Mar 2002 17:46:44 +0100
Date: Fri, 15 Mar 2002 17:47:31 +0100
From: P.Gnodde <peter@pcswebdesign.nl>
To: gentoo-dev@gentoo.org
Message-Id: <20020315174731.114baf7f.peter@pcswebdesign.nl>
Organization: PCS Webdesign BV
X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i686-pc-linux-gnu)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Subject: [gentoo-dev] Security patches
Sender: gentoo-dev-admin@gentoo.org
Errors-To: gentoo-dev-admin@gentoo.org
X-BeenThere: gentoo-dev@gentoo.org
X-Mailman-Version: 2.0.6
Precedence: bulk
Reply-To: gentoo-dev@gentoo.org
List-Help: <mailto:gentoo-dev-request@gentoo.org?subject=help>
List-Post: <mailto:gentoo-dev@gentoo.org>
List-Subscribe: <http://lists.gentoo.org/mailman/listinfo/gentoo-dev>,
	<mailto:gentoo-dev-request@gentoo.org?subject=subscribe>
List-Id: Gentoo Linux developer list <gentoo-dev.gentoo.org>
List-Unsubscribe: <http://lists.gentoo.org/mailman/listinfo/gentoo-dev>,
	<mailto:gentoo-dev-request@gentoo.org?subject=unsubscribe>
List-Archive: <http://lists.gentoo.org/pipermail/gentoo-dev/>
X-Archives-Salt: 657b0ae3-e7b3-4ee8-92be-5f4d86bef9a0
X-Archives-Hash: 6edc7609923a51f554833439f08cc4cb

Hi all,

I've noticed a lot of people are interested in security patches for the gentoo kernel. I've been busy integrating a couple of nice patches in the gentoo 2.4.18 kernel and here are the results.

http://www.pcswebdesign.nl/patches/util-linux-2.11l-crypto.patch.gz
http://www.pcswebdesign.nl/patches/linux-2.4.18-gentoo-secure.patch.gz

The first is the util-linux patch of the kerneli project, but upgraded to the util-linux-2.11l package (I've used the stock package, but I cannot remember if the gentoo util-linux has been patched). It makes losetup, mount and umount to work with encrypted filesystems.

The second patch is a collection, it includes the kerneli patch (encrypted filesystems), rml's netdev-random patches (lets netwerk devices contribute to the random entropy) and the grsecurity patch (version 1.9.4).
It should apply cleanly to the gentoo 2.4.18 kernel.

NOTE: The grsecurity patch had a couple of tricky failed hunks, so it could be unstable! I am running a stability test at this moment and should know more about the stability after the weekend, be careful when using it!

I hope you have some use for these patches and use them wisely :).

Regards,

Peter Gnodde