Edit

Grsecurity

Unreviewed changes are displayed on this page

The latest reviewed version was checked on 26 July 2015. There are template/file changes awaiting review.

Wikipedia has related information at PaX

A PDF version is available. (info)

A printable version of Grsecurity is available. (edit it)

grsecurity is a set of patches for the Linux kernel with an emphasis on enhancing security. It allows the system administrator to, among other things, define a least privilege policy for the system, in which every process and user have only the lowest privileges needed to function.

This book is intended as a comprehensive up-to-date user guide about setting up and administrating a grsecurity-enabled system.

Contents

IntroductionEdit

How to Contribute

InstallationEdit

Obtaining Required Components

Downloading grsecurity

Downloading gradm

Downloading the Linux Kernel

Verifying the Downloads

Configuring and Installing grsecurity

Patching Your Kernel with grsecurity

Configuring the Kernel

Compiling and Installing the Kernel

AdministrationEdit

The Administration Utility (gradm)

Additional Utilities

Controlling PaX Flags (paxctl)

Displaying Program Capabilities (pspax)

Managing the Executable Stack of Binaries (execstack)

Runtime Configuration Through sysctl

Troubleshooting

Policy ConfigurationEdit

Application-specific SettingsEdit

Show full list / Add Application

ATI Catalyst (fglrx)

cPanel jailshell

Firefox/Iceweasel

GUFW/UFW firewalls or Update Manager

ISC DHCP Server

PHP and other applications that set their own resource limits

Reporting BugsEdit

AppendixEdit

Credits and PermissionsEdit

See Credits and Permissions for details about copyright and references of this document.

External LinksEdit

Retrieved from "https://en.wikibooks.org/w/index.php?title=Grsecurity&oldid=2980259"