linux 2.2 kernel
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 5772
Download (54MB)
Added: 2007-08-13 License: GPL (GNU General Public License) Price:
804 downloads
Other version of Linux Kernel
Linux Kernel is the core of the Linux operating systems. Linux Kernel 2.6.22.5 - Kernel.OrgLicense:GPL (GNU General Public License)
The latest stable version of the Linux kernel is 2.6.10. Linux Kernel 2.6.10 ...Linux is a clone of the operating system Unix, written from scratch by LinusLicense:GPL
Linux Kernel is the core of the Linux operating systems. Linux Kernel 2.4.35.1 - Kernel.OrgLicense:GPL (GNU General Public License)
Linux Kernel Monitor 0.3 Alpha
Linux Kernel Monitor is a tool for monitoring and managing linuxs kernel. more>>
Linux Kernel Monitor is a tool for monitoring and managing linuxs kernel. It has been developed for GNOME, using Glib and Gtk libraries in C language.
lkmonitor tries to offer detailed information of the characteristics of the system, as type of cpu, state of the memory or the file system registered in kernel.
lkmonitor is an open source project with information about the source code and software architecture to make easy the development of new characteristics.
Enhancements:
- IO information, kernel information, networking info, processes specific information, filesystems, modules, etc.
<<lesslkmonitor tries to offer detailed information of the characteristics of the system, as type of cpu, state of the memory or the file system registered in kernel.
lkmonitor is an open source project with information about the source code and software architecture to make easy the development of new characteristics.
Enhancements:
- IO information, kernel information, networking info, processes specific information, filesystems, modules, etc.
Download (0.084MB)
Added: 2007-07-30 License: GPL (GNU General Public License) Price:
816 downloads
Cool Linux 2.3
Cool Linux CD is a bootable CD with Linux operating system, containing a 2.4 kernel and many free software packages. more>>
Cool Linux CD is a bootable CD with Linux operating system that contains a 2.4 kernel and many free software packages.
Enhancements:
- Kernel 2.4.20-wolk and 2.4.22 with supermount, squashfs, shfs patches and ALSA 0.9.6 drivers;
- Ability to choose a version of linux kernel and parameters for FrameBuffer and XFree86 (resolution);
- Save and restore your system configuration on floppy;
- Restore configuration from another session on CoolLinuxCD (in multissesion mode);
- Writing the CD-RW disks with CDRW device (if not a boot drive);
- Ability to choose the interface language during the bootup process (currently only English and Russian languages are supported);
- Autodetects all hardware and autoconfigures XFree86;
- USB mouse and keyboard support;
- IceWM window manager with ROX-filer as desktop and file manager.
<<lessEnhancements:
- Kernel 2.4.20-wolk and 2.4.22 with supermount, squashfs, shfs patches and ALSA 0.9.6 drivers;
- Ability to choose a version of linux kernel and parameters for FrameBuffer and XFree86 (resolution);
- Save and restore your system configuration on floppy;
- Restore configuration from another session on CoolLinuxCD (in multissesion mode);
- Writing the CD-RW disks with CDRW device (if not a boot drive);
- Ability to choose the interface language during the bootup process (currently only English and Russian languages are supported);
- Autodetects all hardware and autoconfigures XFree86;
- USB mouse and keyboard support;
- IceWM window manager with ROX-filer as desktop and file manager.
Download (617MB)
Added: 2005-12-22 License: GPL (GNU General Public License) Price:
1406 downloads
LIDS 2.2.3 RC1 (for kernel 2.6.21)
LIDS (Linux Intrusion Detection System) is a kernel patch and admin tools which enhances the kernels security. more>>
LIDS (Linux Intrusion Detection System) is a kernel patch and admin tools which enhances the kernels security by implementing Mandatory Access Control (MAC).
When it is in effect, chosen file access, all system network administration operations, any capability use, raw device, memory, and I/O access can be made impossible even for root. You can define which programs can access specific files.
It uses and extends the system capabilities bounding set to control the whole system and adds some network and filesystem security features to the kernel to enhance the security.
You can finely tune the security protections online, hide sensitive processes, receive security alerts through the network, and more. LIDS currently support kernel 2.6, 2.4.
<<lessWhen it is in effect, chosen file access, all system network administration operations, any capability use, raw device, memory, and I/O access can be made impossible even for root. You can define which programs can access specific files.
It uses and extends the system capabilities bounding set to control the whole system and adds some network and filesystem security features to the kernel to enhance the security.
You can finely tune the security protections online, hide sensitive processes, receive security alerts through the network, and more. LIDS currently support kernel 2.6, 2.4.
Download (0.30MB)
Added: 2007-08-15 License: GPL (GNU General Public License) Price:
801 downloads
Install Kernel 0.9.3
Install Kernel is an advanced script which installs the kernel and sets up LILO or GRUB. more>>
Install Kernel interfaces with the Linux operating system by running a series of functions or groups of commands that automate the compiling or recompiling and installation process.
Install Kernel project consists of three groups of functions: building the kernel and moving files, checking dependencies, and editing the boot loader configuration file. Grouping all of the functions in these three groups makes maintaining and altering the script much easier.
Install Kernel can also be considered a program, because a program does checking and makes choices accordingly. A script is usually a file, which contains a certain number of commands with no logic in mind. Therefore, while ik is technically a script, it can also be called a program.
Dependency checks are to make sure the current system configuration and settings are properly setup before proceeding with the kernel build. There are seven dependency checks, they are: a root check, space check, link check, boot check, boot loader check, configuration check, and a module check.
First, the root check makes sure the user is a super user; which means they are capable of editing important system files only accessible to the root account. The space check makes sure there is at least 200 megabytes available.
The kernel source these days is around 150 megabytes just for the source code. When one compiles the kernel, it may increase the size to 50 megabytes or more. Therefore, ik
checks for at least 200MB available in order to successfully compile the kernel without running out of space. Next, it is not required, but it is standard to have a symbolic link of /usr/src/linux pointing to /usr/src/linux-x.y.z.
The fourth check makes sure the user has a /boot directory, this is where the Linux kernel files will be installed to. The fifth check determines the bootloader that will be used. There are two main boot loaders in Linux. LILO and GRUB are the two most popular for booting the operating system.
This check accurately finds whether the kernel was booted from either LILO or GRUB by checking which bootloader was used last. It then tells the rest of the script to edit the correct one accordingly. The sixth configuration check is to make sure users have created a proper kernel configuration file, which is used in the process of building the Linux kernel.
The final check is a module check, if modules are turned off, the script will determine this and alter the installation process to install with no module support. The main idea behind the depdency checks is to make sure the user cannot damage his or her system if they do not do something right.
The installation process also contains seven functions. The installation process is usually several commands. However, because of the differences that can occur in a users configuration file, each part of the building process must be checked and the building process may need to be altered.
The first function makes sure the dependencies are setup correctly for all files in the kernel source tree. The second function deletes stale object files and or old kernel files. Next, the third function is the kernel build function; this function runs a command to build the Linux kernel. Next, functions four and five make and install modules if the user had specified module support in his or her kernel configuration file.
The sixth function moves the Linux kernel and its System dependency map to the boot partition. The last function of the build process sets up module dependencies for the new kernel if modules were defined. The installation process also includes a small error check for each part of the kernel build process.
If any part of the kernel build process fails; the script will abort, not modifying any boot loader configuration files. This is important; because if it did not abort, it may alter the boot loader configuration files, thus rendering the system unbootable. It is important to support every Linux configuration possible because of the wide use of this script.
The boot loader configuration and setup process is probably the most important aspect of installing a new kernel. An improper boot loader configuration may leave one with system that does not boot; or simply does not boot the new kernel.
It is also important, as some systems may have two or more boot loaders installed. There are four functions defined for this process. The first function uses the boot loader, which was defined during the configuration checks. The second function defines where the LILO or GRUB configuration files are located.
Next, depending on which boot loader is found, either LILO or GRUB configuration files are edited automatically by sed. Sed is a stream editor, which edits a file with no user intervention. If user intervention were required, the user would have to be present between certain parts of the kernel installation. With ik, it makes efficient use of a users time because only one command needs to be entered to complete the entire installation and setup process.
Install Kernel is a useful tool for those who are new to Linux, rebuild their kernel often, or value their time. It reduces the commands for installing the kernel from about thirteen to one. Users new to Linux may find this attractive.
This is because the entire process is automated; and if something is not correct, in most cases ik will notify the user what is incorrect, and how to fix the error. On the other side, for experienced users who do not wish to spend valuable time installing a new kernel, this is also very handy. Install Kernel is efficient by requiring no user intervention and reducing time spent on kernel installs, and effective by giving new to Linux the option for an easy kernel upgrade.
Enhancements:
- Updated to work with the newer version of coreutils for head and tail.
- The MAKE_JOBS directive has been removed in favor of make -j2 to prevent make from spawning hundreds of jobs if /proc/cpuinfo did not exist.
<<lessInstall Kernel project consists of three groups of functions: building the kernel and moving files, checking dependencies, and editing the boot loader configuration file. Grouping all of the functions in these three groups makes maintaining and altering the script much easier.
Install Kernel can also be considered a program, because a program does checking and makes choices accordingly. A script is usually a file, which contains a certain number of commands with no logic in mind. Therefore, while ik is technically a script, it can also be called a program.
Dependency checks are to make sure the current system configuration and settings are properly setup before proceeding with the kernel build. There are seven dependency checks, they are: a root check, space check, link check, boot check, boot loader check, configuration check, and a module check.
First, the root check makes sure the user is a super user; which means they are capable of editing important system files only accessible to the root account. The space check makes sure there is at least 200 megabytes available.
The kernel source these days is around 150 megabytes just for the source code. When one compiles the kernel, it may increase the size to 50 megabytes or more. Therefore, ik
checks for at least 200MB available in order to successfully compile the kernel without running out of space. Next, it is not required, but it is standard to have a symbolic link of /usr/src/linux pointing to /usr/src/linux-x.y.z.
The fourth check makes sure the user has a /boot directory, this is where the Linux kernel files will be installed to. The fifth check determines the bootloader that will be used. There are two main boot loaders in Linux. LILO and GRUB are the two most popular for booting the operating system.
This check accurately finds whether the kernel was booted from either LILO or GRUB by checking which bootloader was used last. It then tells the rest of the script to edit the correct one accordingly. The sixth configuration check is to make sure users have created a proper kernel configuration file, which is used in the process of building the Linux kernel.
The final check is a module check, if modules are turned off, the script will determine this and alter the installation process to install with no module support. The main idea behind the depdency checks is to make sure the user cannot damage his or her system if they do not do something right.
The installation process also contains seven functions. The installation process is usually several commands. However, because of the differences that can occur in a users configuration file, each part of the building process must be checked and the building process may need to be altered.
The first function makes sure the dependencies are setup correctly for all files in the kernel source tree. The second function deletes stale object files and or old kernel files. Next, the third function is the kernel build function; this function runs a command to build the Linux kernel. Next, functions four and five make and install modules if the user had specified module support in his or her kernel configuration file.
The sixth function moves the Linux kernel and its System dependency map to the boot partition. The last function of the build process sets up module dependencies for the new kernel if modules were defined. The installation process also includes a small error check for each part of the kernel build process.
If any part of the kernel build process fails; the script will abort, not modifying any boot loader configuration files. This is important; because if it did not abort, it may alter the boot loader configuration files, thus rendering the system unbootable. It is important to support every Linux configuration possible because of the wide use of this script.
The boot loader configuration and setup process is probably the most important aspect of installing a new kernel. An improper boot loader configuration may leave one with system that does not boot; or simply does not boot the new kernel.
It is also important, as some systems may have two or more boot loaders installed. There are four functions defined for this process. The first function uses the boot loader, which was defined during the configuration checks. The second function defines where the LILO or GRUB configuration files are located.
Next, depending on which boot loader is found, either LILO or GRUB configuration files are edited automatically by sed. Sed is a stream editor, which edits a file with no user intervention. If user intervention were required, the user would have to be present between certain parts of the kernel installation. With ik, it makes efficient use of a users time because only one command needs to be entered to complete the entire installation and setup process.
Install Kernel is a useful tool for those who are new to Linux, rebuild their kernel often, or value their time. It reduces the commands for installing the kernel from about thirteen to one. Users new to Linux may find this attractive.
This is because the entire process is automated; and if something is not correct, in most cases ik will notify the user what is incorrect, and how to fix the error. On the other side, for experienced users who do not wish to spend valuable time installing a new kernel, this is also very handy. Install Kernel is efficient by requiring no user intervention and reducing time spent on kernel installs, and effective by giving new to Linux the option for an easy kernel upgrade.
Enhancements:
- Updated to work with the newer version of coreutils for head and tail.
- The MAKE_JOBS directive has been removed in favor of make -j2 to prevent make from spawning hundreds of jobs if /proc/cpuinfo did not exist.
Download (0.004MB)
Added: 2006-05-24 License: GPL (GNU General Public License) Price:
1249 downloads
Linux ICE Alpha 3
Linux ICE is a Linux distribution based on Ubuntu 7.04 for your car. more>>
Linux ICE is a Linux distribution based on Ubuntu 7.04 for your car.
Main features:
- nGhost Media Center 0.94.5
- Linux kernel 2.6.20
- gps support via gspd
- Improved startup time
- XFCE 4.4
Enhancements:
- Linux ICE Development team is happy to release the third alpha in the development series of Linux ICE. Code named "Veyron ICE Breaker", this breed of release has a significantly reduced footprint and contains all the new technologies available in the newest version of Ubuntu 7.04.
<<lessMain features:
- nGhost Media Center 0.94.5
- Linux kernel 2.6.20
- gps support via gspd
- Improved startup time
- XFCE 4.4
Enhancements:
- Linux ICE Development team is happy to release the third alpha in the development series of Linux ICE. Code named "Veyron ICE Breaker", this breed of release has a significantly reduced footprint and contains all the new technologies available in the newest version of Ubuntu 7.04.
Download (347.4MB)
Added: 2007-06-04 License: GPL (GNU General Public License) Price:
881 downloads
Linux trustees 3.0
Linux trustees is an advanced file permission system for Linux more>>
The main goal of the Linux Trustees project is to create an advanced permission management system for Linux. The solution proposed is mainly inspired by the approach taken by Novell Netware and the Java security API.
Special objects (called trustees) can be bound to every file or directory. The trustee object can be used to ensure that access to a file, directory, or directory with subdirectories is granted (or denied) to a certain user or group (or all except user or group).
Trustees are like POSIX ACLs, but trustee objects can affect entire subdirectory trees, while ACLs a single file. Trustees works with the 2.6 Linux kernel.
<<lessSpecial objects (called trustees) can be bound to every file or directory. The trustee object can be used to ensure that access to a file, directory, or directory with subdirectories is granted (or denied) to a certain user or group (or all except user or group).
Trustees are like POSIX ACLs, but trustee objects can affect entire subdirectory trees, while ACLs a single file. Trustees works with the 2.6 Linux kernel.
Download (0.074MB)
Added: 2005-07-23 License: GPL (GNU General Public License) Price:
1554 downloads
Jedo Linux 1.0
Jedo Linux is a simple, clean Linux distribution that aims to provide a reliable distro for power users. more>>
Jedo Linux (pronounced jed-o), is a simple, clean Linux distribution that aims to provide a reliable distro for power users. Its best described as a cross between Linux From Scratch (LFS), Redhat and Gentoo.
Jedo Linux is a original distro (not built on any existing one), although it tends to lean towards LFS and feels a bit like Redhat when using it.
Source based distro allows rapid development, and makes it easy for users to tweak the distro to their liking. (most packages can also be installed from binaries)
Vanilla Kernel Jedo Linux runs a vanilla kernel, and this is updated regularly to the latest stable kernel.
Decent Support Life 3yr support life by default (may be adjusted depending on usage and versions avalible).
Release Cycle Aim to release a new version about once every 2 years, and release feature updates roughly every 6months for released versions. (of course security updates are released ASAP)
Desktop Distro Designed for use on desktops and laptops.
OSS All software included in the default install is Open Source (or Freedom Software) - including firmware. Some closed source software is in the repo, but it is clearly marked in the "nonfree" category. If you dont belive in using propietary software or kernel modules, none will be installed without you requesting it. Software that uses patented technology (eg: libdvdcss) is also in the "nonfree" category.
For expert users Its a distro for Linux power users - installer and config tools are all CLI and assumes you know all about partitioning, package management, etc.
New, but not bleeding Jedo Linux uses the latest stable technology - latest & greatest but not bleeding edge - because people like having their systems work as expected. Jedo Linux gives you good tools that work so you can get on with what you want to do without having to mess about fixing the OS.
Basicly, its a distro aimed at your LFS compiling, technically skilled Linux user who wants a distro that is simple to use and install - its not for your average Mum & Dad who just want to send email - that sort of user should look at something like Ubuntu. Neither is it a server distro as its not feature frozen - use something like Redhat EL/CentOS or Debian if you are after a feature distro with a long support life.
<<lessJedo Linux is a original distro (not built on any existing one), although it tends to lean towards LFS and feels a bit like Redhat when using it.
Source based distro allows rapid development, and makes it easy for users to tweak the distro to their liking. (most packages can also be installed from binaries)
Vanilla Kernel Jedo Linux runs a vanilla kernel, and this is updated regularly to the latest stable kernel.
Decent Support Life 3yr support life by default (may be adjusted depending on usage and versions avalible).
Release Cycle Aim to release a new version about once every 2 years, and release feature updates roughly every 6months for released versions. (of course security updates are released ASAP)
Desktop Distro Designed for use on desktops and laptops.
OSS All software included in the default install is Open Source (or Freedom Software) - including firmware. Some closed source software is in the repo, but it is clearly marked in the "nonfree" category. If you dont belive in using propietary software or kernel modules, none will be installed without you requesting it. Software that uses patented technology (eg: libdvdcss) is also in the "nonfree" category.
For expert users Its a distro for Linux power users - installer and config tools are all CLI and assumes you know all about partitioning, package management, etc.
New, but not bleeding Jedo Linux uses the latest stable technology - latest & greatest but not bleeding edge - because people like having their systems work as expected. Jedo Linux gives you good tools that work so you can get on with what you want to do without having to mess about fixing the OS.
Basicly, its a distro aimed at your LFS compiling, technically skilled Linux user who wants a distro that is simple to use and install - its not for your average Mum & Dad who just want to send email - that sort of user should look at something like Ubuntu. Neither is it a server distro as its not feature frozen - use something like Redhat EL/CentOS or Debian if you are after a feature distro with a long support life.
Download (MB)
Added: 2007-03-13 License: GPL (GNU General Public License) Price:
565 downloads
openMosix kernel-2.4.26
openMosix is a Linux kernel extension for single-system image clustering. more>>
openMosix is a Linux kernel extension for single-system image clustering. This kernel extension turns a network of ordinary computers into a supercomputer for Linux applications.
Once you have installed openMosix, the nodes in the cluster start talking to one another and the cluster adapts itself to the workload.
Processes originating from any one node, if that node is too busy compared to others, can migrate to any other node. openMosix continuously attempts to optimize the resource allocation.
We achieve this with a kernel patch for Linux, creating a reliable, fast and cost-efficient SSI clustering platform that is linearly scalable and adaptive. With openMosix Auto Discovery, a new node can be added while the cluster is running and the cluster will automatically begin to use the new resources.
There is no need to program applications specifically for openMosix. Since all openMosix extensions are inside the kernel, every Linux application automatically and transparently benefits from the distributed computing concept of openMosix.
The cluster behaves much as does a Symmetric Multi-Processor, but this solution scales to well over a thousand nodes which can themselves be SMPs.
The openMosix Community is very active, contributing add-on applications and sharing helpful information with all users. The openMosix Add-Ons and Community page lists these shared applications. And, it is all GPLd.
<<lessOnce you have installed openMosix, the nodes in the cluster start talking to one another and the cluster adapts itself to the workload.
Processes originating from any one node, if that node is too busy compared to others, can migrate to any other node. openMosix continuously attempts to optimize the resource allocation.
We achieve this with a kernel patch for Linux, creating a reliable, fast and cost-efficient SSI clustering platform that is linearly scalable and adaptive. With openMosix Auto Discovery, a new node can be added while the cluster is running and the cluster will automatically begin to use the new resources.
There is no need to program applications specifically for openMosix. Since all openMosix extensions are inside the kernel, every Linux application automatically and transparently benefits from the distributed computing concept of openMosix.
The cluster behaves much as does a Symmetric Multi-Processor, but this solution scales to well over a thousand nodes which can themselves be SMPs.
The openMosix Community is very active, contributing add-on applications and sharing helpful information with all users. The openMosix Add-Ons and Community page lists these shared applications. And, it is all GPLd.
Download (10MB)
Added: 2005-04-11 License: GPL (GNU General Public License) Price:
1663 downloads
Linux Kernel Spinlock Metering 1.4.11
Linux Kernel Spinlock Metering is a kernel patch that allows you to build an i386, ia64, Alpha, Sparc64, or mips64 kernel... more>>
The Linux SMP kernel uses spinlocks to protect data structures from concurrent, potentially conflicting accesses. Linux Kernel Spinlock Metering is a kernel patch that allows you to build an i386, ia64, Alpha, Sparc64, or mips64 kernel that can perform simple "metering" (record-keeping) of spinlock usage. Also available is source for an associated new command, lockstat, that is used to instruct the kernel to turn this lock metering on or off, and to retrieve the metering data from the kernel and display it in a human-readable format.
Data displayed includes the number of lock attempts, per-spinlock per-caller, the number of those attempts that were immediately successful vs. those that required the attempting locker to wait for the current lock-holder to release; the mean and max hold-time, and the mean, max, and cumulative wait-time. Whenever possible, the locking caller and the spinlocks are identified by their symbolic names, not by their virtual addresses.
Various patch sets are available. Version 1.1.4 patches the 2.2.14 kernel and reflects a relatively old flavor of Lockmeter. Version 1.4.11 patches the 2.4.16, 2.4.17, 2.5.3, and 2.5.5 kernels, and the previous release v1.4.9 patches various other releases of the 2.4.x kernel. This version 1.4 supports i386, alpha, ia64, mips64, and sparc64. The most recent version 1.5 is available as a patch against the 2.4.18 and various 2.5.x kernels, and it additionally supports mips (32-bit mips). Each is approximately 22 KB in gziped size. (Patches against a few older kernel versions are also available in the old subdirectory.) After applying the appropriate patch, make oldconfig presents a new Kernel lock metering option in the Kernel hacking subsection -- although only if CONFIG_SMP (Symmetric multi-processing support) has been enabled. The spinlock metering code is compiled into the kernel only when this new option is turned on.
Compiling the spinlock metering code into the kernel does not materially affect the kernel size because the additional code is roughly compensated for by the shrinking effect of the normally in-line locking routines now becoming procedure calls. A metering-capable kernel (i.e., with the patch applied, but data collection turned off) is negligibly slower than a non-metering-capable kernel, though a metering-capable kernel does slow when the metering data collection is turned on using the lockstat command (typically 8% for a systime==25% workload). Care has been taken to minimize performance degradation, and further improvements are in progress.
The lockstat command must also be downloaded, compiled, and installed. lockstat is a privileged command that requires root access. It reads and writes to the node /proc/lockmeter to control the kernels metering as follows:
lockstat on enables the kernels metering data collection,
lockstat options displays the collected data, and
lockstat off disables the metering data collection.
Run lockstat with no arguments to see a verbose description of the command arguments and options.
When metering is enabled, count and time data is collected in malloced arrays that are private to each CPU, thereby avoiding costly cacheblock coherency operations that would otherwise be required if all CPUs updated the same count and time fields. The lockstat command accumulates and sorts the per-cpu data at display time.
Lockmetering attempts to provide both "cause" and "effect" information about spinlock usage. The "hold time" metering exposes which spinlocks are being held and for how long, identified by where they are held inside the kernel. The "wait-time" metering exposes the effects of these hold-times when multiple CPUs concurrently contend for the same lock.
<<lessData displayed includes the number of lock attempts, per-spinlock per-caller, the number of those attempts that were immediately successful vs. those that required the attempting locker to wait for the current lock-holder to release; the mean and max hold-time, and the mean, max, and cumulative wait-time. Whenever possible, the locking caller and the spinlocks are identified by their symbolic names, not by their virtual addresses.
Various patch sets are available. Version 1.1.4 patches the 2.2.14 kernel and reflects a relatively old flavor of Lockmeter. Version 1.4.11 patches the 2.4.16, 2.4.17, 2.5.3, and 2.5.5 kernels, and the previous release v1.4.9 patches various other releases of the 2.4.x kernel. This version 1.4 supports i386, alpha, ia64, mips64, and sparc64. The most recent version 1.5 is available as a patch against the 2.4.18 and various 2.5.x kernels, and it additionally supports mips (32-bit mips). Each is approximately 22 KB in gziped size. (Patches against a few older kernel versions are also available in the old subdirectory.) After applying the appropriate patch, make oldconfig presents a new Kernel lock metering option in the Kernel hacking subsection -- although only if CONFIG_SMP (Symmetric multi-processing support) has been enabled. The spinlock metering code is compiled into the kernel only when this new option is turned on.
Compiling the spinlock metering code into the kernel does not materially affect the kernel size because the additional code is roughly compensated for by the shrinking effect of the normally in-line locking routines now becoming procedure calls. A metering-capable kernel (i.e., with the patch applied, but data collection turned off) is negligibly slower than a non-metering-capable kernel, though a metering-capable kernel does slow when the metering data collection is turned on using the lockstat command (typically 8% for a systime==25% workload). Care has been taken to minimize performance degradation, and further improvements are in progress.
The lockstat command must also be downloaded, compiled, and installed. lockstat is a privileged command that requires root access. It reads and writes to the node /proc/lockmeter to control the kernels metering as follows:
lockstat on enables the kernels metering data collection,
lockstat options displays the collected data, and
lockstat off disables the metering data collection.
Run lockstat with no arguments to see a verbose description of the command arguments and options.
When metering is enabled, count and time data is collected in malloced arrays that are private to each CPU, thereby avoiding costly cacheblock coherency operations that would otherwise be required if all CPUs updated the same count and time fields. The lockstat command accumulates and sorts the per-cpu data at display time.
Lockmetering attempts to provide both "cause" and "effect" information about spinlock usage. The "hold time" metering exposes which spinlocks are being held and for how long, identified by where they are held inside the kernel. The "wait-time" metering exposes the effects of these hold-times when multiple CPUs concurrently contend for the same lock.
Download (MB)
Added: 2007-07-03 License: GPL (GNU General Public License) Price:
845 downloads
Parsix Linux 0.90r1
Parsix GNU/Linux is a live CD based on Knoppix and Debian. more>>
Parsix GNU/Linux is a live CD based on Knoppix and Debian Sid . It uses GNOME as its default desktop environment. Parsix GNU/Linux supports Persian keyboard and user can switch to Persian with Alt+Shift keys.
Parsix GNU/Linux can be installed on your harddisk and you can use it as your PCs operating system. We also included xFarDic English-Persian dictionary and Persian free fonts from FPF project.
Enhancements:
- An updated version of Parsix GNU/Linux 0.90, code name Barry, has been released. Barry r1 introduces the projects first ever 64-bit edition, both 32-bit and 64-bit editions have been built from scratch using debootstrap, several fixes have been made, and merged all published updates from Parsix and Debian testing repositories as of Aug 15, 2007. Highlights: GNOME 2.18.3, Linux kernel 2.6.20.1 with CK and Suspend2 patches, read/write mode is the default for NTFS partitions, improved hardware detection system and hard disk installer, VLC replaces Totem.
<<lessParsix GNU/Linux can be installed on your harddisk and you can use it as your PCs operating system. We also included xFarDic English-Persian dictionary and Persian free fonts from FPF project.
Enhancements:
- An updated version of Parsix GNU/Linux 0.90, code name Barry, has been released. Barry r1 introduces the projects first ever 64-bit edition, both 32-bit and 64-bit editions have been built from scratch using debootstrap, several fixes have been made, and merged all published updates from Parsix and Debian testing repositories as of Aug 15, 2007. Highlights: GNOME 2.18.3, Linux kernel 2.6.20.1 with CK and Suspend2 patches, read/write mode is the default for NTFS partitions, improved hardware detection system and hard disk installer, VLC replaces Totem.
Download (693MB)
Added: 2007-08-17 License: GPL (GNU General Public License) Price:
800 downloads
Trinacria Linux 2.0
Trinacria Linux is a new Italian distribution based on KNOPPIX. more>>
Trinacria Linux is a new Italian distribution based on KNOPPIX.
Trinacria Linuxs primary target markets are the Italian office users and Linux beginners.
<<lessTrinacria Linuxs primary target markets are the Italian office users and Linux beginners.
Download (683.9MB)
Added: 2006-10-10 License: GPL (GNU General Public License) Price:
1114 downloads
Linux 2.4.32-hf32.6 (2.4-hf)
Linux is a clone of the Unix kernel, written from scratch by Linus Torvalds. more>>
Linux is a clone of the Unix kernel, written from scratch by Linus Torvalds with assistance from a loosely-knit team of hackers across the Net. It aims towards POSIX and Single UNIX Specification compliance.
Linux 2.4-hf kernel tree has all the features you would expect in a modern fully-fledged Unix kernel, including true multitasking, virtual memory, shared libraries, demand loading, shared copy-on-write executables, proper memory management, and TCP/IP networking.
Enhancements:
- This release reverts the vfs_unlink fix, which has been reported to cause severe kernel panics at boot.
- Users of hf32.5 are urged to upgrade to this version.
- Download permissions will be removed for 32.5 on the site.
<<lessLinux 2.4-hf kernel tree has all the features you would expect in a modern fully-fledged Unix kernel, including true multitasking, virtual memory, shared libraries, demand loading, shared copy-on-write executables, proper memory management, and TCP/IP networking.
Enhancements:
- This release reverts the vfs_unlink fix, which has been reported to cause severe kernel panics at boot.
- Users of hf32.5 are urged to upgrade to this version.
- Download permissions will be removed for 32.5 on the site.
Download (0.30MB)
Added: 2006-05-27 License: GPL (GNU General Public License) Price:
1246 downloads
Openwall Linux kernel patch 2.4.35-ow2
Openwall Linux kernel patch is a collection of security-related features for the Linux kernel. more>>
Openwall Linux kernel patch is a collection of security-related features for the Linux kernel, all configurable via the new Security options configuration section. In addition to the new features, some versions of the patch contain various security fixes.
The number of such fixes changes from version to version, as some are becoming obsolete (such as because of the same problem getting fixed with a new kernel release), while other security issues are discovered.
Non-executable user stack area.
Most buffer overflow exploits are based on overwriting a functions return address on the stack to point to some arbitrary code, which is also put onto the stack. If the stack area is non-executable, buffer overflow vulnerabilities become harder to exploit.
Another way to exploit a buffer overflow is to point the return address to a function in libc, usually system(). This patch also changes the default address that shared libraries are mmap()ed at to make it always contain a zero byte. This makes it impossible to specify any more data (parameters to the function, or more copies of the return address when filling with a pattern), -- in many exploits that have to do with ASCIIZ strings.
However, note that this patch is by no means a complete solution, it just adds an extra layer of security. Many buffer overflow vulnerabilities will remain exploitable a more complicated way, and some will even remain unaffected by the patch. The reason for using such a patch is to protect against some of the buffer overflow vulnerabilities that are yet unknown.
Also, note that some buffer overflows can be used for denial of service attacks (usually in non-respawning daemons and network clients). A patch like this cannot do anything against that.
It is important that you fix vulnerabilities as soon as they become known, even if youre using the patch. The same applies to other features of the patch (discussed below) and their corresponding vulnerabilities.
Restricted links in /tmp.
Ive also added a link-in-+t restriction, originally for Linux 2.0 only, by Andrew Tridgell. Ive updated it to prevent from using a hard link in an attack instead, by not allowing regular users to create hard links to files they dont own, unless they could read and write the file (due to group permissions). This is usually the desired behavior anyway, since otherwise users couldnt remove such links theyve just created in a +t directory (unfortunately, this is still possible for group-writable files) and because of disk quotas.
Unfortunately, this may break existing applications.
Restricted FIFOs in /tmp.
In addition to restricting links, you might also want to restrict writes into untrusted FIFOs (named pipes), to make data spoofing attacks harder. Enabling this option disallows writing into FIFOs not owned by the user in +t directories, unless the owner is the same as that of the directory or the FIFO is opened without the O_CREAT flag.
Restricted /proc.
This was originally a patch by route that only changed the permissions on some directories in /proc, so you had to be root to access them. Then there were similar patches by others. I found them all quite unusable for my purposes, on a system where I wanted several admins to be able to see all the processes, etc, without having to su root (or use sudo) each time. So I had to create my own patch that I include here.
This option restricts the permissions on /proc so that non-root users can see their own processes only, and nothing about active network connections, unless theyre in a special group. This groups id is specified via the gid= mount option, and is 0 by default. (Note: if youre using identd, you will need to edit the inetd.conf line to run identd as this special group.) Also, this disables dmesg(8) for the users. You might want to use this on an ISP shell server where privacy is an issue. Note that these extra restrictions can be trivially bypassed with physical access (without having to reboot).
When using this part of the patch, most programs (ps, top, who) work as desired -- they only show the processes of this user (unless root or in the special group, or running with the relevant capabilities on 2.2+), and dont complain they cant access others. However, theres a known problem with w(1) in recent versions of procps, so you should apply the included patch to procps if this applies to you.
Enhancements:
- This revision adds a fix for the "parent process death signal" vulnerability in the Linux kernel.
- It also adds two security hardening features, both enabled by default: restricted access to VM86 mode (specific to 32-bit x86) and restricted zero page mappings (generic).
<<lessThe number of such fixes changes from version to version, as some are becoming obsolete (such as because of the same problem getting fixed with a new kernel release), while other security issues are discovered.
Non-executable user stack area.
Most buffer overflow exploits are based on overwriting a functions return address on the stack to point to some arbitrary code, which is also put onto the stack. If the stack area is non-executable, buffer overflow vulnerabilities become harder to exploit.
Another way to exploit a buffer overflow is to point the return address to a function in libc, usually system(). This patch also changes the default address that shared libraries are mmap()ed at to make it always contain a zero byte. This makes it impossible to specify any more data (parameters to the function, or more copies of the return address when filling with a pattern), -- in many exploits that have to do with ASCIIZ strings.
However, note that this patch is by no means a complete solution, it just adds an extra layer of security. Many buffer overflow vulnerabilities will remain exploitable a more complicated way, and some will even remain unaffected by the patch. The reason for using such a patch is to protect against some of the buffer overflow vulnerabilities that are yet unknown.
Also, note that some buffer overflows can be used for denial of service attacks (usually in non-respawning daemons and network clients). A patch like this cannot do anything against that.
It is important that you fix vulnerabilities as soon as they become known, even if youre using the patch. The same applies to other features of the patch (discussed below) and their corresponding vulnerabilities.
Restricted links in /tmp.
Ive also added a link-in-+t restriction, originally for Linux 2.0 only, by Andrew Tridgell. Ive updated it to prevent from using a hard link in an attack instead, by not allowing regular users to create hard links to files they dont own, unless they could read and write the file (due to group permissions). This is usually the desired behavior anyway, since otherwise users couldnt remove such links theyve just created in a +t directory (unfortunately, this is still possible for group-writable files) and because of disk quotas.
Unfortunately, this may break existing applications.
Restricted FIFOs in /tmp.
In addition to restricting links, you might also want to restrict writes into untrusted FIFOs (named pipes), to make data spoofing attacks harder. Enabling this option disallows writing into FIFOs not owned by the user in +t directories, unless the owner is the same as that of the directory or the FIFO is opened without the O_CREAT flag.
Restricted /proc.
This was originally a patch by route that only changed the permissions on some directories in /proc, so you had to be root to access them. Then there were similar patches by others. I found them all quite unusable for my purposes, on a system where I wanted several admins to be able to see all the processes, etc, without having to su root (or use sudo) each time. So I had to create my own patch that I include here.
This option restricts the permissions on /proc so that non-root users can see their own processes only, and nothing about active network connections, unless theyre in a special group. This groups id is specified via the gid= mount option, and is 0 by default. (Note: if youre using identd, you will need to edit the inetd.conf line to run identd as this special group.) Also, this disables dmesg(8) for the users. You might want to use this on an ISP shell server where privacy is an issue. Note that these extra restrictions can be trivially bypassed with physical access (without having to reboot).
When using this part of the patch, most programs (ps, top, who) work as desired -- they only show the processes of this user (unless root or in the special group, or running with the relevant capabilities on 2.2+), and dont complain they cant access others. However, theres a known problem with w(1) in recent versions of procps, so you should apply the included patch to procps if this applies to you.
Enhancements:
- This revision adds a fix for the "parent process death signal" vulnerability in the Linux kernel.
- It also adds two security hardening features, both enabled by default: restricted access to VM86 mode (specific to 32-bit x86) and restricted zero page mappings (generic).
Download (0.034MB)
Added: 2007-08-15 License: GPL (GNU General Public License) Price:
800 downloads
Onebase Linux 2005x2
Onebase is a full fledged OS targeted at diverse users ranging from newbies to professionals. more>>
Onebase is a full fledged OS targeted at diverse users ranging from newbies to professionals. And with its exclusive set of network tools Onebase is ready for enterprises.
This is a community based effort where users and developers form an association to create and maintain a free operating system based on the linux kernel.
At the time of its creation (June 2003), there were many linux distros already available, many of which had their own feature that isnt found in another. So inorder to get the best out of the rest, we started this project and now it has a significant amount of its own specialities.
It consists of Onebase Linux - a full featured linux operating system and OnebaseGo - a portable OS.
OLM is its specialty and it comes with a lot of interesting stuff.
The installer of Onebase Linux is Net-based which means it provides you with a high-level of flexibility in selection of packages and mode of installation {source/binary}.
Also with this you can instantly download the latest packages available in OL-apps. Besides these, the installer CD is lightweight in size and has a longer life compared to its conventional counterparts.
Main features:
- Onebase Linux Management
- OL-apps software gallery
- Installation and deploying
- Support for both binary and source packages
- Bleeding edge applications
- Network OLM
- Concurrency support
- Install once and update w/o CDs
- Automatic security updates
- Menu and Configure tools
- Many more features...
- Easy .olm creation for applications
<<lessThis is a community based effort where users and developers form an association to create and maintain a free operating system based on the linux kernel.
At the time of its creation (June 2003), there were many linux distros already available, many of which had their own feature that isnt found in another. So inorder to get the best out of the rest, we started this project and now it has a significant amount of its own specialities.
It consists of Onebase Linux - a full featured linux operating system and OnebaseGo - a portable OS.
OLM is its specialty and it comes with a lot of interesting stuff.
The installer of Onebase Linux is Net-based which means it provides you with a high-level of flexibility in selection of packages and mode of installation {source/binary}.
Also with this you can instantly download the latest packages available in OL-apps. Besides these, the installer CD is lightweight in size and has a longer life compared to its conventional counterparts.
Main features:
- Onebase Linux Management
- OL-apps software gallery
- Installation and deploying
- Support for both binary and source packages
- Bleeding edge applications
- Network OLM
- Concurrency support
- Install once and update w/o CDs
- Automatic security updates
- Menu and Configure tools
- Many more features...
- Easy .olm creation for applications
Download (108MB)
Added: 2005-08-18 License: GPL (GNU General Public License) Price:
1530 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above linux 2.2 kernel search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
