diff options
author | Wynn Wolf Arbor | 2020-02-16 11:24:22 +0100 |
---|---|---|
committer | Wynn Wolf Arbor | 2020-02-29 18:51:12 +0100 |
commit | f7574bcbaf949962e1b7cd8bd063b666dc24f084 (patch) | |
tree | a89c92839dd2d738c1bddbff828a9c70ea0cc9bf /fragments/base | |
parent | 4a134ce8860ca115cb5b1076e948b2db803f6c96 (diff) | |
download | kernfrag-f7574bcbaf949962e1b7cd8bd063b666dc24f084.tar.gz |
Improve security by disabling vsyscall table for legacy apps
Diffstat (limited to 'fragments/base')
-rw-r--r-- | fragments/base/security | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/fragments/base/security b/fragments/base/security index 5d8b95c..ba75a03 100644 --- a/fragments/base/security +++ b/fragments/base/security @@ -12,3 +12,6 @@ CONFIG_HARDENED_USERCOPY=y CONFIG_FORTIFY_SOURCE=y CONFIG_IO_STRICT_DEVMEM=y + +# Unsure about musl support/static binaries? +CONFIG_LEGACY_VSYSCALL_NONE=y |