GrSecurity
Now that the new kernel is running, it's time to recompile it! This time you'll be adding the GrSecurity patch and compiling in options to greatly enhance the security of the computer system. This section examines the steps involved in this undertaking.
Applying the Grsec Patch
Because you've already downloaded the patch in a previous step, now it's time to patch the kernel source. The problem is that you have an already-compiled version of the kernel in /usr/src/linux. That version has a known-good configuration file, but there are other files that will interfere with the patching process. Therefore, you'll need to clean up that area before patching the kernel with Grsec.
Usually the configuration file is copied to the /boot directory. ...
Get Linux Firewalls, Third Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
