SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
To be honest while I found the idea of a hardened kernel appealing and grsec seemed the best option, but even then the developer attitudes repelled me. In retrospect I guess that was for the best. Now I am interested if either the hardened gentoo or alpine linux communities can continue to move forward.
There is no such good complex security of "ring 0" in linux.
Nobody think about it seriously. There is some "barriers" to prevent get in ring 0 like AppArmor or Selinux but they not prevent exploitation and barrier breaks.
Ring 0 is the basis to think about security in Linux IMHO.
Some elements of grsec ideas in recent kernels introduce Kees Cook because protection default kernel is not the best.
Seems like you are making a case for the commercialisation of the project ...
These things happen.
Often.
Yup.
Some things are ending.Linux too.I hope not but like I see comercial already knows how to fight with community taking everything giving little or nothing.
Yup.
Some things are ending.Linux too.I hope not but like I see comercial already knows how to fight with community taking everything giving little or nothing.
Commercial companies have always been like that; greed is a part of how they operate. Linux arose despite that, and people will always find a way to deploy Linux at their companies and personally. Corporate greed won't kill Linux.
I would rather say: thank you for your sixteenth years of well done job for Linux. I wish the best, hope enterprise will be successful, this is good when other see you can earn honestly some money with Linux. For those who really care about security, there is no question pay or not to pay. It is being done what is necessary. All the best. And please do not listen, all those complaining: they are simply jealous.
We're all really fortunate that there are so many people who pour years of their lives to developing great software that they provide at no cost at all. But this is a blessing, not a right. The developers are the IP owners of the software they create, and they are free to license it as they choose. It's not "greedy" to do so, but it is rather entitled to demand they provide it free of charge.
My 2 cents, though I expect it is not a very popular viewpoint.
The developers are the IP owners of the software they create, and they are free to license it as they choose.
Only if by "IP" you mean copyright then, yes, you are spot on. Their code, their choice of license.
If by "IP" you mean software patents, and if Grsecurity is located in the US where software, algorithms, and business methods are patented, then no, odds are someone else controls many or all of the patents. For that they are not free to license it as they choose.
Anyway, here is a blog post at hardenedlinux about why Gresecurity made the licensing change:
Only if by "IP" you mean copyright then, yes, you are spot on. Their code, their choice of license.
If by "IP" you mean software patents, and if Grsecurity is located in the US where software, algorithms, and business methods are patented, then no, odds are someone else controls many or all of the patents. For that they are not free to license it as they choose.
Anyway, here is a blog post at hardenedlinux about why Gresecurity made the licensing change:
While its okay for grsec to charge money for their code, its not okay for them to put their customers under threat of retaliation if the code is then shared with someone else.
This is a long, sad history, involving the clash of personalities and a considerable degree of bitterness (involving Torvalds, spender and others) leading to the current situation today.
While I can understand PaX/grsec making their patches private, after well over a decade of putting them out for free and being largely undervalued by Torvalds and others [as "security people"], KSPP was probably the final insult, though I have to say that spender's attitude and "we did it first!" approach has been a large contributing factor.
As some have commented, this might be the "kick" which will spawn other people/projects to start working on Linux kernel security. Some of the multi-billion dollar corporations who fund, use and profit from the Linux kernel might want to make a start on this or pour in some investment.
This was an article last year when OpenBSD began implementing W^X. If you read the comments you'll see that PaX team jump in immediately to ensure the reader knows they got there first. I have to agree with some of the comments, in that PaX/grsec was never going to make headway in it's current form as it's not really being widely used and not really being implemented correctly in distributions which offer it. Recent events won't really help in it's adoption.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.