Page MenuHomePhabricator

bountyProject
ActivePublic

Members (1)

Watchers

  • This project does not have any watchers.
  • View All

Recent Activity

Oct 24 2018

Patrick closed T468: package paxrat for offical debian.org repository as Resolved.

https://packages.debian.org/stretch/paxrat

Oct 24 2018, 10:08 AM · Whonix, bountysource, bounty, grsecurity, sponsor-B

Apr 29 2017

HulaHoop closed T301: make grsecurity kernel, grsecurity-installer work inside Whonix as Invalid.

upstream ceased open development: https://www.grsecurity.net/passing_the_baton_faq.php

Apr 29 2017, 6:20 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

May 4 2016

Patrick updated the task description for T301: make grsecurity kernel, grsecurity-installer work inside Whonix.
May 4 2016, 9:37 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

Apr 2 2016

Patrick updated the task description for T207: Build Debian Packages from Source Code.
Apr 2 2016, 7:46 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Apr 2 2016, 6:27 PM · bountysource, bounty, sponsor-B, Whonix, security

Feb 5 2016

Patrick updated the task description for T468: package paxrat for offical debian.org repository.
Feb 5 2016, 1:05 PM · Whonix, bountysource, bounty, grsecurity, sponsor-B
Patrick updated the task description for T468: package paxrat for offical debian.org repository.
Feb 5 2016, 1:05 PM · Whonix, bountysource, bounty, grsecurity, sponsor-B
Patrick updated the task description for T468: package paxrat for offical debian.org repository.
Feb 5 2016, 1:04 PM · Whonix, bountysource, bounty, grsecurity, sponsor-B
Patrick created T468: package paxrat for offical debian.org repository.
Feb 5 2016, 1:04 PM · Whonix, bountysource, bounty, grsecurity, sponsor-B

Aug 21 2015

HulaHoop added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

Actually the best option is the availability of a Debian grsecurity kernel source package that can be deterministically built. That way the maintenance and update burden is handled upstream and it can be securely installed thru apt with the full protections of grsecurity.

Aug 21 2015, 5:38 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

Aug 20 2015

Patrick removed a project from T301: make grsecurity kernel, grsecurity-installer work inside Whonix: Whonix 12.
Aug 20 2015, 12:04 AM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

Aug 18 2015

HulaHoop added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

Long term I think its better to have a script to compile and update a grsec kernel than a package in upstream repos because some protections can only be effective if they are unique to the user. A precompiled kernel loses these benefits because the protection values are public and known to everyone including the attacker. Arch has a packaged kernel and they explain the limits:

Aug 18 2015, 9:50 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

Jun 6 2015

Patrick added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

http://www.corsac.net/index.php?post=1575

Jun 6 2015, 5:00 AM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

May 21 2015

Patrick added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

It's also just a compiled kernel. I am that far. Has almost the same TODO as this ticket. Non-minor stuff such as "desktop environment (kdm) currently does not start, needs fixing".

May 21 2015, 4:18 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

May 20 2015

HulaHoop added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

What about the corsac repository listed in:
https://wiki.debian.org/grsecurity

May 20 2015, 6:25 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix
Patrick added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

Mempo kernel:

May 20 2015, 3:38 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix
HulaHoop added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

What are cons of using the Mempo kernel that's already patched with grsecurity?

May 20 2015, 2:53 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

May 15 2015

Patrick claimed T57: implement rads (ram adjusted desktop starter) systemd unit.
May 15 2015, 4:37 PM · Whonix 11, Debian version 8 codename Jessie, Whonix, systemd, rads, security, usability, bug

May 13 2015

HulaHoop added a comment to T301: make grsecurity kernel, grsecurity-installer work inside Whonix.

A compact list of sane grsec defaults as deployed on gentoo:

May 13 2015, 3:47 AM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix

May 12 2015

Patrick updated subscribers of T301: make grsecurity kernel, grsecurity-installer work inside Whonix.
May 12 2015, 5:26 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix
Patrick updated the task description for T301: make grsecurity kernel, grsecurity-installer work inside Whonix.
May 12 2015, 5:18 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix
Patrick updated the task description for T301: make grsecurity kernel, grsecurity-installer work inside Whonix.
May 12 2015, 5:17 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix
Patrick created T301: make grsecurity kernel, grsecurity-installer work inside Whonix.
May 12 2015, 5:16 PM · bountysource, bounty, grsecurity-installer, sponsor-B, Whonix
Patrick added a project to T57: implement rads (ram adjusted desktop starter) systemd unit: bountysource.
May 12 2015, 4:46 PM · Whonix 11, Debian version 8 codename Jessie, Whonix, systemd, rads, security, usability, bug
Patrick updated the task description for T57: implement rads (ram adjusted desktop starter) systemd unit.
May 12 2015, 4:39 PM · Whonix 11, Debian version 8 codename Jessie, Whonix, systemd, rads, security, usability, bug
Patrick updated the task description for T57: implement rads (ram adjusted desktop starter) systemd unit.
May 12 2015, 4:37 PM · Whonix 11, Debian version 8 codename Jessie, Whonix, systemd, rads, security, usability, bug
Patrick renamed T57: implement rads (ram adjusted desktop starter) systemd unit from implement rads (ram adjusted desktop starter) as systemd unit to implement rads (ram adjusted desktop starter) systemd unit.
May 12 2015, 1:39 PM · Whonix 11, Debian version 8 codename Jessie, Whonix, systemd, rads, security, usability, bug

Mar 3 2015

Patrick removed a project from T207: Build Debian Packages from Source Code: Whonix 10.
Mar 3 2015, 12:04 AM · bountysource, bounty, sponsor-B, Whonix, security

Mar 2 2015

Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 6:41 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 6:40 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 6:39 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 6:26 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 6:07 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick renamed T207: Build Debian Packages from Source Code from build debian packages from source code to Build Debian Packages from Source Code.
Mar 2 2015, 6:06 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 5:58 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 5:56 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 5:54 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 5:51 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 5:50 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick updated the task description for T207: Build Debian Packages from Source Code.
Mar 2 2015, 5:48 PM · bountysource, bounty, sponsor-B, Whonix, security
Patrick created T207: Build Debian Packages from Source Code.
Mar 2 2015, 5:34 PM · bountysource, bounty, sponsor-B, Whonix, security