| 1 |
I have been looking for a project to learn (figure out) how to build |
| 2 |
a secure portal on a gentoo-hardened server. I posting here so folks |
| 3 |
can look at the general approach I'm going to take, and make some |
| 4 |
better, corrective suggestions on this endeavor (learning excursion)? |
| 5 |
|
| 6 |
So here is the plane. |
| 7 |
|
| 8 |
Use the lilblue [1] or hardened-gentoo with glibc on top of btrfs |
| 9 |
and use virtual box to set up several application. This software is |
| 10 |
not multiuser. So I'm hoping to be able to allow one user to lock |
| 11 |
and use a single instance to post a enough entries to frame a problem |
| 12 |
of support question. I then want any number of folks to be able to |
| 13 |
"view" the posing and then use the discussion group to make suggestions |
| 14 |
as to the problem. Since there are many different (stable) version of |
| 15 |
gnucash, I'm going to try to first install several different versions |
| 16 |
of gnu cash so folks can post their problem on a version similar to what |
| 17 |
they have. |
| 18 |
|
| 19 |
The purpose of this excursion is to learn how to build a secure portal, |
| 20 |
to learn how to set up VMs on btrfs and to become consistently competent |
| 21 |
with gentoo-hardened. |
| 22 |
|
| 23 |
I'm going to attempt to set up 12 instances of various version |
| 24 |
of gnucash. [2] |
| 25 |
|
| 26 |
Maybe I should use antoher code in lieu of gnucash? Suggestions in |
| 27 |
hardened, security, web server etc etc are most welcome. Ultimately, |
| 28 |
my goal is to be able to take various codes and build a secure |
| 29 |
portal, with hundreds or thousands of sandboxed/jailed/VMed cell |
| 30 |
that are secure with differ codes and eventually even different |
| 31 |
OSes inside the cells on a gentoo-hardened platform. |
| 32 |
|
| 33 |
All comments are welcome. |
| 34 |
|
| 35 |
James |
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
[1] https://wiki.gentoo.org/wiki/Project:Hardened_uClibc/Lilblue |
| 40 |
|
| 41 |
[2] www.gnucash.org |
Archives