Ho se ho lokiselitsoe likopano tsa morero , e ipapisitse le mofuta oa 32-bit oa Slackware-Current mme e rometsoe ka mefuta e fapaneng ea 32- le 64-bit ea Linux 4.19 kernel. Boholo 800 MB.
ka sehloohong , ha e bapisoa le Slackware ea mantlha:
- Ho kenya likarolo tse 4 "/", "/ boot", "/ var" le "/home". Likarolo tsa "/" le "/ boot" li kentsoe ka mokhoa oa ho bala feela, 'me "/home" le "/var" li kentsoe ka mokhoa oa noexec;
- Kernel patch CONFIG_SETCAP. Module ea setcap e ka tima bokhoni ba sistimi e boletsoeng kapa ea e nolofalletsa basebelisi bohle. Module o hlophisitsoe ke superuser ha sistimi e ntse e sebetsa ka har'a sebopeho sa sysctl kapa /proc/sys/setcap lifaele mme e ka ba leqhoa ho tloha ho etsa liphetoho ho fihlela ho qala bocha.
Ka mokhoa o tloaelehileng, CAP_CHOWN(0), CAP_DAC_OVERRIDE(1), CAP_DAC_READ_SEARCH(2), CAP_FOWNER(3) le 21(CAP_SYS_ADMIN) li tingoa tsamaisong. Sistimi e khutlisetsoa maemong a eona a tloaelehileng ho sebelisoa taelo ea tinyware-beforereadmin (ho phahamisa le bokhoni). Ho ipapisitsoe le mojule, u ka ntlafatsa maemo a sireletsehileng. - Patch ea mantlha PROC_RESTRICT_ACCESS. Khetho ena e fokotsa phihlello ea li-directory tsa / proc/pid ho sistimi ea faele ea / proc ho tloha ho 555 ho isa ho 750, ha sehlopha sa litsamaiso tsohle se abetsoe ho mela. Ka hona, basebelisi ba bona feela lits'ebetso tsa bona ka taelo ea "ps". Root e ntse e bona lits'ebetso tsohle tsa sistimi.
- CONFIG_FS_ADVANCED_CHOWN kernel patch ho lumella basebelisi ba kamehla ho fetola botho ba lifaele le li-subdirectories ka har'a li-directory tsa bona.
- Liphetoho tse ling ho li-setting tsa kamehla (mohlala, UMASK e behiloe ho 077).
Source: opennet.ru