grsecurity R.I.P.

Vasily A. Sartakov sartakov at ...104...
Tue Dec 22 11:59:21 CET 2015

>> I am not sure what you mean here. Genode can already execute Linux
>> within a virtual machine (Seoul or VirtualBox) or as a paravirtualized
>> version on top of the Fiasco.OC kernel. If this is not sufficient, what
>> is your approach?
> The problem in this approach is that the (virtualized) Linux instance is still running the same very insecure (if you ask me;) Linux kernel. Within the scope of the Linux kernel, there is nothing to limit the kind of hazards grsecurity is/was made to prevent.
> To reiterate, what I would like to see is Linux (and/or BSD) kernel running directly on top of genode.

What do you mean by «Linux kernel running directly on top of genode»?

Vasily A. Sartakov
sartakov at ...104...

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 842 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <>

More information about the users mailing list