On 16/04/14 14:09, Daniel Micay wrote:
There has been a recent surge of interest in securing Arch by paying closer attention to CVEs and addressing many security issues in our packages. I also started some initial work/documenting on securing the services shipped in various packages:
https://wiki.archlinux.org/index.php/DeveloperWiki:Service_isolation
To go along with this, I'm interested in maintaining the grsecurity kernel and userspace tools in [community] to provide a hardened kernel and role-based access control system. This would be the first case of an alternative kernel in the repositories,
It would not be the first case... We specifically got rid of others years ago.
so I'm open to discussion about whether it's appropriate to do this. There are also some issues relevant to other packages in the repositories.
Which packages? We need the details. Allan