Is It Time for a Linux Kernel Fork to Include GrSecurity Patches?

Discussion in 'all things UNIX' started by AutoCascade, Aug 30, 2015.

  1. AutoCascade

    AutoCascade Registered Member

    Joined:
    Feb 16, 2014
    Posts:
    626
    Location:
    United States
    I'd be curious what the possibilities are for this?
     
  2. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,983
    Location:
    Brasil
    Oh please, not another fork! Forks are the last thing Linux needs.

    Linux is very versatile as it is and should have no fork just for the sake of GRSecurity. The vast majority of people use "vanilla" Linux (meaning the default Kernel) without any problems, and yet there are many distributions that add the linux-grsec and pax packages available. This is one of the beauty of Linux, there are numerous possibilities for every taste and purpose.
    Not to mention there are many distros that have default linux-grsec instead of linux, so forking Linux for a package that is easily accessible makes no sense at all.
     
  3. AutoCascade

    AutoCascade Registered Member

    Joined:
    Feb 16, 2014
    Posts:
    626
    Location:
    United States
    Who has grsec as default in their kernel?

    Outside of Alpine from what I understand you have to roll your own kernel as an option as opposed by default.
     
  4. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    722
    Pentoo, which is based on Gentoo. I've never tried it, though.
     
  5. Gullible Jones

    Gullible Jones Registered Member

    Joined:
    May 16, 2013
    Posts:
    1,461
    GrSecurity in upstream would be awesome, and would probably lead to more software being securely designed, such that GrSec wouldn't force it to crash for the safety of the system. :)

    Unfortunately this will not happen, because... well, mostly because certain kernel devs are incredibly childish and petty.
     
  6. Nebulus

    Nebulus Registered Member

    Joined:
    Jan 20, 2007
    Posts:
    1,582
    Location:
    European Union
    I'd say that a kernel fork (at least for such a reason) is impossible. And I don't think that it is a bad thing either...
     
  7. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    722
    Have you seen this?
     
  8. Gullible Jones

    Gullible Jones Registered Member

    Joined:
    May 16, 2013
    Posts:
    1,461
    @summerheat - no I hadn't, and thanks! Frankly, I'd be very happy to eat crow regarding this.
     
  9. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    3,770
    Location:
    Outer space
  10. AutoCascade

    AutoCascade Registered Member

    Joined:
    Feb 16, 2014
    Posts:
    626
    Location:
    United States
    That's encouraging.
    That's a great discussion but until the one person with absolute veto power gets involved that's all it'll be is a discussion.

    Brad and Linus aren't even close to the same page. Grsec's opinion is that security measures need to be taken as a whole piece and Linus thinks some of this and some of that. You I'm sure are already aware of that.
     
    Last edited: Sep 1, 2015
  11. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,698
    Why? What's wrong with the kernel the way it is?
    Mrk
     
Loading...