Release Notes: Fixes for proc restrictions and setuid/setgid logging, additional chroot restrictions and an additional TPE option, randomized pid support, randomized IP IDs, better IP stack randomness, secure keymap loading, updated LIDS and netfilter code, and a port to Linux 2.4.5.
Release Notes: The exec protection was enhanced. Protection against another kind of evasion through glibc was added. setuid/gid root restrictions were added.
Release Notes: A fix for a serious bug in the secure file descriptors, trusted path execution with a patch to protect against evasion through LD_PRELOAD without patching glibc, exec protection, and splitting up the stack patches.
Release Notes: The code has been updated for the 2.4.4 kernel. The non-executable stack patch has been updated. Socket restrictions, which allow an admin to deny client,server, or any sockets based on group, have been added. LIDS and netfilter modules have been removed from the patch.
Release Notes: Nearly every section of code updated, An old bug with chrooting and ptrace fixed, using fixed-length strings for logging, increased the logging of some features, and updated the documentation.
Release Notes: A few problems with the format of the patch fixed. Support to stop replies of icmp timestamp packets added. The stealth networking patches split into 5 different options. Also patch for the 2.4.3-ac13 kernel, which fixes some compiling problems added.
Release Notes: Porting the secure file descriptor feature of openwall and an update patch for the 2.4.3-ac12 kernel.