From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-180539-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id 6ACEC1396D9
	for <garchives@archives.gentoo.org>; Sat, 28 Oct 2017 19:12:43 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 6B77F2BC138;
	Sat, 28 Oct 2017 19:12:38 +0000 (UTC)
Received: from w1.tutanota.de (w1.tutanota.de [81.3.6.162])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id C39F32BC125
	for <gentoo-user@lists.gentoo.org>; Sat, 28 Oct 2017 19:12:37 +0000 (UTC)
Received: from localhost (unknown [127.0.0.1])
	by w1.tutanota.de (Postfix) with ESMTP id 8EB1BFB19A9
	for <gentoo-user@lists.gentoo.org>; Sat, 28 Oct 2017 19:12:36 +0000 (UTC)
Received: from w1.tutanota.de ([127.0.0.1])
	by localhost (w1.tutanota.de [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id tjUBgcCsN2Uc for <gentoo-user@lists.gentoo.org>;
	Sat, 28 Oct 2017 21:12:34 +0200 (CEST)
Received: from w1.tutanota.de (unknown [192.168.1.162])
	by w1.tutanota.de (Postfix) with ESMTP id 2E922FB1AB2
	for <gentoo-user@lists.gentoo.org>; Sat, 28 Oct 2017 19:12:34 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=tutanota.com;
	s=20161216; t=1509217954;
	bh=8IvC0zH1bdHuExNqKrSj7LAXHX23uj+TWPYdQiOfCL4=;
	h=Date:From:To:In-Reply-To:References:Subject:From;
	b=vJ5VJVsc5s8glQmwqQlsLKrzAcHoSFJ8VlQ3g2Hpj7bB1PfQPo+hboq6imlca7AE+
	 yfPvfmwHTQXdUd64XgjdnwSHitc0d70LbMNU5tlJoTyMW6DF7XVnHiwRO+PtCQ1Kfz
	 lBMfVCmpsKIRWQO4c8F39IWV+8v+aJo+NYjOe0IchaPMRXX1Zdi+pNS1pThr6vR3mn
	 9hk2IYUhTAxDaqPdWYNXBEQtYc3mP/eEM6i1Iq94qYRws01uXlfquVgqkSM74bIhr/
	 2KLUTBvR6yZDMNSQWRfZFApc/aowxHW0EJkCnUPIGunsyUw25pR+9Ugum99Jkd2Zxv
	 4d1G649b5K0Zw==
Date: Sat, 28 Oct 2017 21:12:34 +0200 (CEST)
From:  <mad.scientist.at.large@tutanota.com>
To:  <gentoo-user@lists.gentoo.org>
Message-ID: <KxZOaUb--3-0@tutanota.com>
In-Reply-To: <CADPrc81+qub=fdU7gJDB+KLWv5wA+SL3wOR-s2N2EO=wYHXJ3w@mail.gmail.com>
References: <ot2gog$nh9$1@blaine.gmane.org> <<ot2gog$nh9$1@blaine.gmane.org>> <CADPrc802w2xLW5wWrb-+curZacEXb4ei9k9R+wuqpiFeiCN2Yg@mail.gmail.com> <<CADPrc802w2xLW5wWrb-+curZacEXb4ei9k9R+wuqpiFeiCN2Yg@mail.gmail.com>> <ot2j6m$64g$1@blaine.gmane.org> <<ot2j6m$64g$1@blaine.gmane.org>> <CADPrc81+qub=fdU7gJDB+KLWv5wA+SL3wOR-s2N2EO=wYHXJ3w@mail.gmail.com>
Subject: Re: [gentoo-user] Re: systemd: "local system does not support
 BPF/cgroup based firewalling"
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: multipart/alternative; 
	boundary="----=_Part_168508_647553802.1509217954173"
X-Archives-Salt: fd46ca8c-287c-4297-af78-0f446bf6de27
X-Archives-Hash: 5c894e55daa648c665d4278c42672465

------=_Part_168508_647553802.1509217954173
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

you should probably update your' kernel anyway, a lot of recent security fi=
xes in the newer kernels.

mad.scientist.at.large (a good madscientist)
--
"The U.S. intelligence community concluded in a report made public in Janua=
ry that the Kremlin sought to disrupt the 2016 election and sway the race i=
n Trump's favor."=C2=A0 From "thehill.com".=C2=A0 Only Trump and his duplic=
itous supports try to say it was Clinton who conspired.=C2=A0 Frankly Trump=
 is likely guilty of treason, the sooner he's impeached and indited the bet=
ter, along with ALL of his supporters in goverment.


28. Oct 2017 12:58 by caneko@gmail.com:


> On Sat, Oct 28, 2017 at 1:44 PM, Nikos Chantziaras <> realnc@gmail.com> >=
 wrote:
> >
> > There is no such kernel option.
>
> Yes, there is[1]. However, there is no such option for kernel version 4.9=
[2], although there is for 4.10[3]. I think that's the problem, for using t=
he firewall BPF options of systemd, you'll need to use kernel version >=3D =
4.10.
> Regards.
> [1] > https://github.com/torvalds/linux/blob/master/init/Kconfig#L848> [2=
]=C2=A0> https://github.com/torvalds/linux/blob/v4.9/init/Kconfig> [3] > ht=
tps://github.com/torvalds/linux/blob/v4.10/init/Kconfig#L1157
> --
> Dr. Canek Pel=C3=A1ez Vald=C3=A9s
> Profesor de Carrera Asociado C
> Departamento de Matem=C3=A1ticas
> Facultad de Ciencias
> Universidad Nacional Aut=C3=B3noma de M=C3=A9xico
------=_Part_168508_647553802.1509217954173
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<html>
  <head>
    <meta http-equiv=3D"content-type" content=3D"text/html; charset=3DUTF-8=
">
  </head>
  <body>
you should probably update your' kernel anyway, a lot of recent security fi=
xes in the newer kernels.<br /><br />mad.scientist.at.large (a good madscie=
ntist)<br />
--
<br />&quot;The U.S. intelligence community concluded in a report made publ=
ic in=20
January that the Kremlin sought to disrupt the 2016 election and sway=20
the race in Trump's favor.&quot;&nbsp; From &quot;thehill.com&quot;.&nbsp; =
Only Trump and his duplicitous supports try to say it was Clinton who consp=
ired.&nbsp; Frankly Trump is likely guilty of treason, the sooner he's impe=
ached and indited the better, along with ALL of his supporters in goverment=
.<br /><br /><br />28. Oct 2017 12:58 by <a href=3D"mailto:caneko@gmail.com=
" target=3D"_blank" rel=3D"noopener noreferrer">caneko@gmail.com</a>:<br />=
<br /><blockquote class=3D"tutanota_quote" style=3D"border-left: 1px solid =
#93A3B8; padding-left: 10px; margin-left: 5px;"><div>On Sat, Oct 28, 2017 a=
t 1:44 PM, Nikos Chantziaras &lt;<a href=3D"mailto:realnc@gmail.com" target=
=3D"_blank" rel=3D"noopener noreferrer">realnc@gmail.com</a>&gt; wrote:<br =
/>&gt;<br />&gt; There is no such kernel option.<br /><br />Yes, there is[1=
]. However, there is no such option for kernel version 4.9[2], although the=
re is for 4.10[3]. I think that's the problem, for using the firewall BPF o=
ptions of systemd, you'll need to use kernel version &gt;=3D 4.10.<div><div=
><br /></div><div>Regards.</div><div><br /></div><div>[1] <a href=3D"https:=
//github.com/torvalds/linux/blob/master/init/Kconfig#L848" target=3D"_blank=
" rel=3D"noopener noreferrer">https://github.com/torvalds/linux/blob/master=
/init/Kconfig#L848</a></div><div>[2]&nbsp;<a href=3D"https://github.com/tor=
valds/linux/blob/v4.9/init/Kconfig" target=3D"_blank" rel=3D"noopener noref=
errer">https://github.com/torvalds/linux/blob/v4.9/init/Kconfig</a></div><d=
iv>[3] <a href=3D"https://github.com/torvalds/linux/blob/v4.10/init/Kconfig=
#L1157" target=3D"_blank" rel=3D"noopener noreferrer">https://github.com/to=
rvalds/linux/blob/v4.10/init/Kconfig#L1157</a><br />--<br />Dr. Canek Pel&a=
acute;ez Vald&eacute;s<br />Profesor de Carrera Asociado C<br />Departament=
o de Matem&aacute;ticas<br />Facultad de Ciencias<br />Universidad Nacional=
 Aut&oacute;noma de M&eacute;xico</div></div></div></blockquote>  </body>
</html>

------=_Part_168508_647553802.1509217954173--