X-Original-To: alpine-devel@lists.alpinelinux.org
Delivered-To: alpine-devel@mail.alpinelinux.org
Received: from hrndva-omtalb.mail.rr.com (hrndva-omtalb.mail.rr.com [71.74.56.122])
	by mail.alpinelinux.org (Postfix) with ESMTP id A8EADDC32AE
	for <alpine-devel@lists.alpinelinux.org>; Thu, 26 Jul 2012 01:46:49 +0000 (UTC)
Authentication-Results: hrndva-omtalb.mail.rr.com smtp.user=deant@hawaii.rr.com; auth=pass (LOGIN)
X-Authority-Analysis: v=2.0 cv=IOWA+3TG c=1 sm=0 a=Z3QZTk7T_i4A:10 a=05ChyHeVI94A:10 a=IkcTkHD0fZMA:10 a=ayC55rCoAAAA:8 a=kmYkUENqAAAA:8 a=xrCCElpiFcJRrew5lKkA:9 a=QEXdDO2ut3YA:10 a=oZLPxhwyYyYA:10 a=hodd19auLMwkElwNXQv/yg==:117
X-Cloudmark-Score: 0
Received: from [10.128.132.156] ([10.128.132.156:33610] helo=hrndva-web05-z02)
	by hrndva-oedge02.mail.rr.com (envelope-from <deant@hawaii.rr.com>)
	(ecelerity 2.2.3.46 r()) with ESMTPA
	id 58/CD-02978-881A0105; Thu, 26 Jul 2012 01:46:48 +0000
Message-ID: <20120726014648.XNQR0.67798.root@hrndva-web05-z02>
Date: Wed, 25 Jul 2012 21:46:48 -0400
From: <deant@hawaii.rr.com>
To: alpine-devel@lists.alpinelinux.org
Subject: Re: [alpine-devel] [PATCH] testing/linux-virt-grsec
In-Reply-To: <20120724114956.2ef69845@ncopa-desktop.nor.wtbts.net>
X-Mailinglist: alpine-devel
Precedence: list
List-Id: Alpine Development <alpine-devel.lists.alpinelinux.org>
List-Unsubscribe: 
	<mailto:alpine-devel+unsubscribe@lists.alpinelinux.org?subject=unsubscribe>
List-Post: <mailto:alpine-devel@lists.alpinelinux.org>
List-Help: <mailto:alpine-devel+help@lists.alpinelinux.org?subject=help>
List-Subscribe: 
	<mailto:alpine-devel+subscribe@lists.alpinelinux.org?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
Sensitivity: Normal
X-Originating-IP: 


---- Natanael Copa <ncopa@alpinelinux.org> wrote: 
> On Tue, 24 Jul 2012 0:18:15 +0000
> <deant@hawaii.rr.com> wrote:
>  
> > Attached patch reduces some of the differences between
> > main/linux-grsec/kernelconfig.x86 and
> > testing/linux-virt-grsec/kernelconfig.x86, hopefully without breaking
> > anything for anyone else.
> 
> I am not sure we want them to be similar. The idea of linux-virt-grsec
> is to have a kernel that is as small as possible and is optimized for
> virtual environments.

Ok, that makes sense.  Consider the patch withdrawn; I'll work on
a replacement that fixes the Shorewall logging bug and a few other 
minor bits I found;


> This means that we can assume some things of the running environment.
> That the disk is virtual (so we pick deadline io scheduler) , that most
> likely realtime applications will not be running (so we set config hz
> to 100). We are also fairly sure that there will not be any wireless in
> the virtual environment. (or am i wrong here?)

The place where it would make sense is for a virtualized desktop or 
development environment, but hopefully the xen domu vs. TRANSPARENT_HUGEPAGES
problem will be fixed in a newer release and the main kernel can fill
that role.

-dean takemori


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---