system/paxctl: Added (PaX control program)

Signed-off-by: dsomero <xgizzmo@slackbuilds.org>
author: pyllyukko <pyllyukko AT maimed dot org> 2013-02-13 18:40:57 -0500
committer: dsomero <xgizzmo@slackbuilds.org> 2013-02-13 19:34:03 -0500
commit: 1af2ba7bf506ab3a261d1bb1b016e6b65a1f944f (patch)
tree: 7b5729bb78ef16e9eb46f1d998dc7835ef0e1e18 /system/paxctl/README
parent: 8ba76cf2a102e3aa36f9fb5450e9f2bd25b9f523 (diff)
download: slackbuilds-1af2ba7bf506ab3a261d1bb1b016e6b65a1f944f.tar.gz
1 files changed, 12 insertions, 0 deletions
diff --git a/system/paxctl/README b/system/paxctl/README
new file mode 100644
index 0000000000..3589bd6023
--- /dev/null
+++ b/system/paxctl/README
@@ -0,0 +1,12 @@
+This is paxctl for controlling PaX flags on a per binary basis. PaX
+is an intrusion prevention system that provides the best protection
+mechanisms against memory corruption bugs. Some applications are not
+compatible with certain features (due to design or bad engineering)
+and therefore they have to be exempted from certain enforcements. It
+is also possible to use PaX in soft mode where none of the protection
+mechanisms are active by default - here paxctl can be used to turn
+them on for selected programs (e.g., network daemons, programs that
+process network data such as mail clients, web browsers, etc).
+
+PaX is provided by a separate kernel patch, that you need to install 
+manually. You can get it from: https://grsecurity.net/
author	pyllyukko <pyllyukko AT maimed dot org>	2013-02-13 18:40:57 -0500
committer	dsomero <xgizzmo@slackbuilds.org>	2013-02-13 19:34:03 -0500
commit	1af2ba7bf506ab3a261d1bb1b016e6b65a1f944f (patch)
tree	7b5729bb78ef16e9eb46f1d998dc7835ef0e1e18 /system/paxctl/README
parent	8ba76cf2a102e3aa36f9fb5450e9f2bd25b9f523 (diff)
download	slackbuilds-1af2ba7bf506ab3a261d1bb1b016e6b65a1f944f.tar.gz