/[gentoo]/xml/htdocs/doc/en/gentoo-kernel.xml
Gentoo

Diff of /xml/htdocs/doc/en/gentoo-kernel.xml

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

Revision 1.28 Revision 1.29
1<?xml version="1.0" encoding="UTF-8"?> 1<?xml version="1.0" encoding="UTF-8"?>
2<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/en/gentoo-kernel.xml,v 1.28 2005/04/26 05:13:34 alin Exp $ --> 2<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/en/gentoo-kernel.xml,v 1.29 2005/05/12 20:40:22 neysx Exp $ -->
3 3
4<!DOCTYPE guide SYSTEM "/dtd/guide.dtd"> 4<!DOCTYPE guide SYSTEM "/dtd/guide.dtd">
5<guide link="/doc/en/gentoo-kernel.xml"> 5<guide link="/doc/en/gentoo-kernel.xml">
6<title>Gentoo Linux Kernel Guide</title> 6<title>Gentoo Linux Kernel Guide</title>
7<author title="Author"> 7<author title="Author">
31provides through Portage. 31provides through Portage.
32</abstract> 32</abstract>
33 33
34<license/> 34<license/>
35 35
36<version>1.5</version> 36<version>1.6</version>
37<date>2005-04-26</date> 37<date>2005-05-12</date>
38 38
39<chapter> 39<chapter>
40<title>Introduction</title> 40<title>Introduction</title>
41<section> 41<section>
42<body> 42<body>
152 152
153</body> 153</body>
154</section> 154</section>
155 155
156<section> 156<section>
157<title>For servers: hardened-sources and hardened-dev-sources</title> 157<title>For servers: hardened-sources, hardened-dev-sources and
158rsbac-sources</title>
158<body> 159<body>
159 160
160<p> 161<p>
161<c>hardened-sources</c> is based on Linux 2.4 and is targetted at our users 162<c>hardened-sources</c> is based on Linux 2.4 and is targetted at our users
162running Gentoo on server systems. It provides patches for the various 163running Gentoo on server systems. It provides patches for the various
169<c>hardened-dev-sources</c> serves the same purpose as <c>hardened-sources</c> 170<c>hardened-dev-sources</c> serves the same purpose as <c>hardened-sources</c>
170but is based on the newer Linux 2.6 kernel base. 171but is based on the newer Linux 2.6 kernel base.
171</p> 172</p>
172 173
173<p> 174<p>
174The following USE-flags can be set to select optional patches: 175<c>rsbac-sources</c> contains patches to use Rule Set Based Access Controls
176(RSBAC) and comes in 2.4 and 2.6 flavours. It is maintained by the
177<uri link="/proj/en/hardened/rsbac/">RSBAC project</uri>, a subproject of
178Gentoo Hardened.
175</p> 179</p>
176 180
177<table> 181<impo>
178<tr><th>Flags</th><th>Description</th></tr> 182These kernels provide powerful patches for enhanced security. Please read the
179<tr><ti>selinux</ti><ti>Substitute grSecurity with SELinux support</ti></tr> 183<uri link="/proj/en/hardened/">documentation</uri> before you use them.
180</table> 184</impo>
181 185
182</body> 186</body>
183</section> 187</section>
184<section> 188<section>
185<title>Architecture dependent kernels</title> 189<title>Architecture dependent kernels</title>
245<section> 249<section>
246<title>mm-sources</title> 250<title>mm-sources</title>
247<body> 251<body>
248 252
249<p> 253<p>
250The <c>mm-sources</c> are based on the <c>development-sources</c> and contain 254The <c>mm-sources</c> are based on the <c>vanilla-sources</c> and contain
251Andrew Morton's patch set. They include the experimental and bleeding-edge 255Andrew Morton's patch set. They include the experimental and bleeding-edge
252features that are going to be included in the official kernel (or that are 256features that are going to be included in the official kernel (or that are
253going to be rejected because they set your box on fire). They are known to be 257going to be rejected because they set your box on fire). They are known to be
254always moving at a fast pace and can change radically from one week to the 258always moving at a fast pace and can change radically from one week to the
255other; kernel hackers use them as a testing ground for new stuff. 259other; kernel hackers use them as a testing ground for new stuff.
256</p> 260</p>
257 261
258<p> 262<p>
259If you really want to live on the edge and you think 263If you really want to live on the edge and you think
260<c>development-sources</c> are for wussies, then try out 264<c>vanilla-sources</c> are for wussies, then try out
261<c>mm-sources</c>. Be warned that this kernel is highly experimental and 265<c>mm-sources</c>. Be warned that this kernel is highly experimental and
262doesn't always work as expected. 266doesn't always work as expected.
263</p> 267</p>
264 268
265</body> 269</body>
270 274
271<p> 275<p>
272The <c>openmosix-sources</c> are patched to support the openMosix system 276The <c>openmosix-sources</c> are patched to support the openMosix system
273(like MOSIX but Open Source). For more information see 277(like MOSIX but Open Source). For more information see
274<uri>http://www.openmosix.org</uri>. 278<uri>http://www.openmosix.org</uri>.
275</p>
276
277</body>
278</section>
279<section>
280<title>selinux-sources</title>
281<body>
282
283<p>
284<c>selinux-sources</c> from <uri>http://www.nsa.gov/selinux</uri> are
285patches for the security conscious to support the LSM (Linux Security
286Modules) and the Flask Security Architecture.
287</p> 279</p>
288 280
289</body> 281</body>
290</section> 282</section>
291<section> 283<section>
406<title>selinux-sources</title> 398<title>selinux-sources</title>
407<body> 399<body>
408 400
409<p> 401<p>
410<c>selinux-sources</c>, a 2.4 kernel including lots of security enhancements, 402<c>selinux-sources</c>, a 2.4 kernel including lots of security enhancements,
411has been obseleted by security development in the 2.6 tree. 403has been obseleted by security development in the 2.6 tree. SELinux
404functionality can be found in the <c>hardened-sources</c> and
405<c>hardened-dev-sources</c> packages.
412</p> 406</p>
413 407
414</body> 408</body>
415</section> 409</section>
416</chapter> 410</chapter>
Legend:
Removed from v.1.28  
changed lines
  Added in v.1.29
  ViewVC Help
Powered by ViewVC 1.1.13