Tux is a webserver that lives in kernel and serves only static content (.gif's and.html's), while passing everything else to Apache or other higher-level webserver sitting on other port on the same machine.
Here are Tux kernel patches:
http://people.redhat.com/mingo/TUX-patches/
It's also included in many RedHat kernels and WOLK kernel.
SElinux is good but not as easy to use as Grsecurity. With Grsecurity, you can put Apache to chroot and feel protected against buffer overflows and chroot breakage.
Slashdot Mirror
Tux is a webserver that lives in kernel and serves only static content (.gif's and .html's), while passing everything else to Apache or other higher-level webserver sitting on other port on the same machine.
Here are Tux kernel patches:
http://people.redhat.com/mingo/TUX-patches/
It's also included in many RedHat kernels and WOLK kernel.
SElinux is good but not as easy to use as Grsecurity. With Grsecurity, you can put Apache to chroot and feel protected against buffer overflows and chroot breakage.
Is 2.6 really so good without Tux kernel-based webserver and GrSecurity?