Re: Value of selinux+grsecurity (was: Re: Anybody deploy grsecurity on Fedora?)

["Tom Horsley" <tom horsley att net>]

> Is the Linux kernel community thinking of pulling in some of the
> capabilities that grsecrutiy (especially PaX) offers into the
> kernel...making things like randomization of stack, data, and code space
> a default behavior of the kernel?

As someone who works on a debugger, I can say with absolute
certainty that most of that randomization sure seems to be
happening already. I often feel that the primary objective
driving the development of linux is to make debugger developers
crazy by not being able to figure out where the heck the
program is even located, much less debug it :-).