]> git.ipfire.org Git - ipfire-3.x.git/commit
projects / ipfire-3.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8e74d20) | patch
kernel: Change /proc group to gid 10 (=wheel).
authorMichael Tremer <michael.tremer@ipfire.org>
Sat, 11 Jun 2011 17:12:31 +0000 (19:12 +0200)
committerMichael Tremer <michael.tremer@ipfire.org>
Sat, 11 Jun 2011 17:12:31 +0000 (19:12 +0200)
commitb0cc67f047e6aad1dfe2cc909b425380496fd9f1
tree9c9d0b6b0d8ad42a2ed488d13900208f2bca7e89tree | snapshot
parent8e74d2007414e2808734cdf7a134a3132ce2bc32commit | diff
kernel: Change /proc group to gid 10 (=wheel).

grsecurity provides a feature to restrict access to /proc. In our
particular setting, nobody than root is allow to access all of the
/proc fs, but as we need some processes to get access to it as well
(snmpd, radvd, ...) we need a group to allow that.

I have choosen "wheel" as it is recommended by spengler.
pkgs/kernel/config diff | blob | blame | history
pkgs/kernel/kernel.nm diff | blob | blame | history
IPFire 3.x development tree