OVH Community, your new community space.

grsecurity kernel help/questions


Garry
18-04-2014, 12:30
I got this sorted.
I followed http://blog.securitytargets.com/2010...rsecurity.html
But used a new version of the Kernel and GRSecurity patch.

Then I editted the grub.conf to remove the old kernel and rebooted.

Garry
17-04-2014, 15:30
Hi,.

I have a VPS Cloud 1 which has is a vmware, with CentOS 6.5 and cPanel/WHM on it.
So I could get ConfigServer Firewall working, I installed the CentOS kenerl through yum

I would like to setup a grsecurity kernel and would like some advice
So far I have the below?

wget http://www.kernel.org/pub/linux/kern...-3.2.57.tar.gz
wget http://grsecurity.net/stable/grsecur...04131252.patch

tar -xf linux-3.2.57.tar
cd linux-3.2.57
patch -p1 < ../grsecurity-2.9.1-3.2.57-201404131252.patch

make menuconfig


1. Is the above correct

2. Can I download the 2 files anywhere on the VPS?

3. Once I have patched and configure it, do I move it to the /boot/ folder?

4. How many files will I need to move to the boot folder?

5. Do I then config the grub.conf file like the below

Code:
default=0
timeout=5

        title linux centos6-cpanel11_64
        kernel /boot/kernel_filename_here root=/dev/sda1  ro
        root (hd0,0)
6. If I need to add more modules to the kernel, if make it, do I just do menu makeconfig to change it and copy it to the /boot/ folder?

If you have any advice or help, that would be great.