diff options
| author |   Matthew Thode (prometheanfire) <prometheanfire@gentoo.org> | 2011-11-23 16:09:30 -0500 |
|---|---|---|
| committer | Matthew Thode (prometheanfire) <prometheanfire@gentoo.org> | 2011-11-23 16:09:30 -0500 |
| commit | a95fcafba0cf0871356b89d6704ea440b54a3f8d (patch) | |
| tree | 97690f681dc1b58f69383f16ea4e5fc2308db805 | |
| parent | My friend (travis) is a grammar nazi) (diff) | |
| download | hardened-dev-a95fcafba0cf0871356b89d6704ea440b54a3f8d.tar.gz hardened-dev-a95fcafba0cf0871356b89d6704ea440b54a3f8d.tar.bz2 hardened-dev-a95fcafba0cf0871356b89d6704ea440b54a3f8d.zip | |
notes I found while following the guide added
| -rw-r--r-- | XT_PAX-howto.txt | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/XT_PAX-howto.txt b/XT_PAX-howto.txt index 3a956be6..5d1a2a93 100644 --- a/XT_PAX-howto.txt +++ b/XT_PAX-howto.txt @@ -12,7 +12,7 @@ is much appreciated and will help to make this approach to PaX robust. -------------------------------------------------------------------------------- -*Step 0. Get yourself a gentoo system. Switch to an appropriate hardened profile +*Step 0. Get yourself a gentoo system. Then switch to an appropriate hardened profile using eselect profile set hardened/linux/x86 @@ -70,6 +70,10 @@ If you see a PT_PAX header, or possibly one called LOOS+5041580 at the end of th emerge --keep-going -eq world +#packages that were not remerged + nano - manual remerge fixes it + grub - manual remerge fails it (still paxmarked) + 6. And finally, let's do any post-world rebuild cleanup: etc-update @@ -138,6 +142,8 @@ you want to use. I also recommend xattr support on tmpfs: 3. Compile the kernel and boot. +# I had to reinstall grub to /dev/sda before I could boot + -------------------------------------------------------------------------------- *Step 3. The new system should be now be a pure XT_PAX system. Let's test that |