madaidan

## Grsecurity overview.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              5 stars
            
          
                madaidan
                / Grsecurity overview.md
            
            
              Last active
              November 4, 2022 00:59
            
              
                Overview of Grsecurity/PaX security features and their implementations in mainline and linux-hardened
              
          
    All logging, compatibility and access control (RBAC) features are excluded.
Implemented in mainline:


GRKERNSEC_IO - CONFIG_SECURITY_LOCKDOWN_LSM
GRKERNSEC_KMEM - CONFIG_SECURITY_LOCKDOWN_LSM
GRKERNSEC_BPF_HARDEN - kernel.bpf_jit_harden
GRKERNSEC_KSTACKOVERFLOW - CONFIG_VMAP_STACK
GRKERNSEC_HIDESYM - kernel.kptr_restrict
GRKERNSEC_RANDSTRUCT - CONFIG_GCC_PLUGIN_RANDSTRUCT