diff options
author | Anthony G. Basile <blueness@gentoo.org> | 2012-07-09 19:55:51 -0400 |
---|---|---|
committer | Anthony G. Basile <blueness@gentoo.org> | 2012-07-09 19:55:51 -0400 |
commit | 386d50181178e9320f033575d3eabc2017a7b7ae (patch) | |
tree | 782831dae9efebcd02869117623444407bfe16cf /3.2.22/4460-grsec-kconfig-proc-user.patch | |
parent | Grsec/PaX: 2.9-{2.6.32.59,3.2.22,3.4.4}-201207080925 (diff) | |
download | hardened-patchset-386d50181178e9320f033575d3eabc2017a7b7ae.tar.gz hardened-patchset-386d50181178e9320f033575d3eabc2017a7b7ae.tar.bz2 hardened-patchset-386d50181178e9320f033575d3eabc2017a7b7ae.zip |
Sync gentoo patches with new Kconfig structure
Diffstat (limited to '3.2.22/4460-grsec-kconfig-proc-user.patch')
-rw-r--r-- | 3.2.22/4460-grsec-kconfig-proc-user.patch | 26 |
1 files changed, 0 insertions, 26 deletions
diff --git a/3.2.22/4460-grsec-kconfig-proc-user.patch b/3.2.22/4460-grsec-kconfig-proc-user.patch deleted file mode 100644 index b2b3188..0000000 --- a/3.2.22/4460-grsec-kconfig-proc-user.patch +++ /dev/null @@ -1,26 +0,0 @@ -From: Anthony G. Basile <blueness@gentoo.org> - -Address the mutually exclusive options GRKERNSEC_PROC_USER and GRKERNSEC_PROC_USERGROUP -in a different way to avoid bug #366019. This patch should eventually go upstream. - -diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig ---- a/grsecurity/Kconfig 2011-06-29 10:02:56.000000000 -0400 -+++ b/grsecurity/Kconfig 2011-06-29 10:08:07.000000000 -0400 -@@ -680,7 +680,7 @@ - - config GRKERNSEC_PROC_USER - bool "Restrict /proc to user only" -- depends on GRKERNSEC_PROC -+ depends on GRKERNSEC_PROC && !GRKERNSEC_PROC_USERGROUP - help - If you say Y here, non-root users will only be able to view their own - processes, and restricts them from viewing network-related information, -@@ -688,7 +688,7 @@ - - config GRKERNSEC_PROC_USERGROUP - bool "Allow special group" -- depends on GRKERNSEC_PROC && !GRKERNSEC_PROC_USER -+ depends on GRKERNSEC_PROC - help - If you say Y here, you will be able to select a group that will be - able to view all processes and network-related information. If you've |