Here is the GRSecurity wiki for those interested:
http://en.wikibooks.org/wiki/Grsecurity
I have actually used the GRSecurity-patched kernel with Slackware 13.0 to learn about Mandatory Access Control.
It works fine. There is a learning curve. Some things to keep in mind:
1. Mandatory Access Control (MAC) is checked AFTER Discretionary Access Control (DAC), so if your file system permissions (User-Group-Other) do not allow access, that's the end of that. No access. If your file system permissions allow access, then the MAC system checks if access is allowed and proceeds accordingly. You should set the DAC permissions correctly first instead of relying on MAC to fix faulty permissions.
2. GRSecurity has a learning feature. You basically activate it by:
# gradm -F -L /etc/grsec/learning.logs
Then use your system as you normally would. When you have finished learning mode, create the policy by:
# gradm -F -L /etc/grsec/learning.logs -O /etc/grsec/policy
You will probably have to do a little hand-editing, but it is not too bad and looking at the file itself gives you clues.
3. The enforcement mechanism is turned on after booting by:
# gradm -E
4. The enforcement mechanism is turned off when you want to shutdown by:
# gradm -D