From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LEO4W-0007Jp-Im for garchives@archives.gentoo.org; Sun, 21 Dec 2008 13:10:16 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id C7F2FE039B; Sun, 21 Dec 2008 13:10:04 +0000 (UTC) Received: from mu-out-0910.google.com (mu-out-0910.google.com [209.85.134.186]) by pigeon.gentoo.org (Postfix) with ESMTP id 82847E039B for ; Sun, 21 Dec 2008 13:10:04 +0000 (UTC) Received: by mu-out-0910.google.com with SMTP id i2so827007mue.6 for ; Sun, 21 Dec 2008 05:10:03 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=IMBnr9qYMhexI6bRFjrDKVPtQqw2xdGUwN+axFUzJgo=; b=K7tfvmoHGE1tkZE4LDlsHQawfbCjUoqQ2gA8Edd/JnhreyjnahmgsiAYiZ9IAXdKFu bkOf3asQ6geWftHYlRdFVVS2zFGQhbg/cwOxlYb/1oggcLGmDpAzltD0Fu2moeBuJm0o ix+CS933Qj2Ulb5Xkmxti0UN+2VT/2B3LI1hA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=Rlkbgue5GI5ChV2YIRDqQPZ3ksmEjQREi8HRIvoB7Rr25kXySb3uRC5jzYFnYmlqVn McMcIh9BBzfawiLB4c7DfnRDaEprVnKicDWqaQtF/TKoMGKfDBJYe9CUG182P7ZZiiB8 w6OGEeY+28pMv9/TZlGl7Ko+zsDj5iSXd1v48= Received: by 10.103.131.18 with SMTP id i18mr1915235mun.120.1229865003887; Sun, 21 Dec 2008 05:10:03 -0800 (PST) Received: by 10.103.214.9 with HTTP; Sun, 21 Dec 2008 05:10:03 -0800 (PST) Message-ID: <897813410812210510x213af7dhe692529c5f5e8a3@mail.gmail.com> Date: Sun, 21 Dec 2008 14:10:03 +0100 From: "=?ISO-8859-1?Q?Javier_J._Mart=EDnez_Cabez=F3n?=" To: gentoo-hardened@lists.gentoo.org Subject: Re: [gentoo-hardened] KVM & Gentoo Hardened In-Reply-To: <49481B57.4010801@gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <49481B57.4010801@gmail.com> X-Archives-Salt: a5ebdab8-f42a-443c-8eb1-f36db05c55bb X-Archives-Hash: 7dd6c73770fa278d855a90a9cc9f10b3 I have one virtualbox using VT extensions, and runs fine. I have used PaX in the guest with rsbac 1.3.7 and the noexec based on segmentation and all others on (peMRXS flags) and goes fine (with pageexec does not work, hangs at boot, so I switch segmexec). I think that you shouldn't have any troubles with kvm, if you have some try using virtualbox. I added -D_FORTIFY_SOURCE=2 to the cflags in make.conf compilation, it runs fine too and I think is safe. Not hangs at the moment. 2008/12/16 Romain BERGE : > Hey all, > > I am wondering of using and AMD CPU with the AMD-V. > I wonder of using KVM to virtualise a few Hardened server. > > Someone used already KVM+ Hardened ? > > Working fine ? > > Thanks > > Regards > >