Details
-
Improvement
-
Resolution: Fixed
-
Minor
-
Lustre 2.1.0
-
None
-
RHEL6, git lustre-release, compiling from source
-
4984
Description
Building Lustre from git/lustre-release on RHEL6, the .config file provided (lustre/kernel_patches/kernel_configs/kernel-2.6.32-2.6-rhel6-x86_64.config) does not contain a CONFIG_SECURITY_DMESG_RESTRICT directive.
During make config a interactive prompt is provided:
$ make oldconfig || make menuconfig scripts/kconfig/conf -o arch/x86/Kconfig * * Restart config... * * * Security options * Enable access key retention support (KEYS) [Y/n/?] y Enable the /proc/keys file by which keys may be viewed (KEYS_DEBUG_PROC_KEYS) [Y/n/?] y Restrict unprivileged access to the kernel syslog (SECURITY_DMESG_RESTRICT) [N/y/?] (NEW)
This may be confusing to a user unfamiliar with SECURITY_DMESG_RESTRICT
I suggest that this value be asserted as the default 
and no prompt presented during make config