1 |
zorry 10/11/25 20:25:01 |
2 |
|
3 |
Modified: index.xml |
4 |
Log: |
5 |
Updated index.xml and added hardened-debugging.xml |
6 |
|
7 |
Revision Changes Path |
8 |
1.95 xml/htdocs/proj/en/hardened/index.xml |
9 |
|
10 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/index.xml?rev=1.95&view=markup |
11 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/index.xml?rev=1.95&content-type=text/plain |
12 |
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/index.xml?r1=1.94&r2=1.95 |
13 |
|
14 |
Index: index.xml |
15 |
=================================================================== |
16 |
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/index.xml,v |
17 |
retrieving revision 1.94 |
18 |
retrieving revision 1.95 |
19 |
diff -u -r1.94 -r1.95 |
20 |
--- index.xml 26 Jul 2010 22:46:29 -0000 1.94 |
21 |
+++ index.xml 25 Nov 2010 20:25:01 -0000 1.95 |
22 |
@@ -3,112 +3,160 @@ |
23 |
<?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?> |
24 |
<!DOCTYPE project SYSTEM "/dtd/project.dtd"> |
25 |
<project> |
26 |
- <name>hardened</name> |
27 |
- <longname>Hardened Gentoo</longname> |
28 |
- |
29 |
- <description>Hardened Gentoo brings advanced security measures to |
30 |
- Gentoo Linux.</description> |
31 |
- |
32 |
- <longdescription><p>Hardened Gentoo is a project which oversees the |
33 |
- research, implementation, and maintainence of security oriented |
34 |
- projects for Gentoo Linux. We are a team of very competent |
35 |
- individuals dedicated to bringing advanced security to Gentoo |
36 |
- with a number of subprojects.</p></longdescription> |
37 |
- |
38 |
- <goals><p>Hardened Gentoo's purpose is to make Gentoo viable for |
39 |
- high security, high stability production server environments. |
40 |
- This project is not a standalone project disjoined from Gentoo |
41 |
- proper; it is intended to be a team of Gentoo developers which |
42 |
- are focused on delivering solutions to Gentoo that provide strong |
43 |
- security and stability. These solutions will be available in |
44 |
- Gentoo once they've been tested for security and stability by the |
45 |
- Hardened team.</p></goals> |
46 |
- |
47 |
- <dev description="SELinux">pebenito</dev> |
48 |
- <dev description="PaX/Grsecurity Hardened Toolchain">gengor</dev> |
49 |
- <dev description="PaX/Grsecurity Hardened Toolchain">zorry</dev> |
50 |
- <dev description="PaX/Grsecurity Hardened Toolchain">blueness</dev> |
51 |
- <dev description="Bastille">Battousai</dev> |
52 |
- <dev description="PPC arch team liaison">nixnut</dev> |
53 |
- |
54 |
- <subproject ref="/proj/en/hardened/selinux/index.xml" inheritresources="yes" /> |
55 |
- <subproject ref="/proj/en/hardened/rsbac/index.xml" inheritresources="yes" /> |
56 |
- <extraproject name="PaX/Grsecurity" lead="gengor"> |
57 |
- Grsecurity is a complete security solution |
58 |
- providing such features as a MAC or RBAC system, Chroot |
59 |
- restrictions, address space modification protection (via PaX), |
60 |
- auditing features, randomization features, linking restrictions |
61 |
- to prevent file race conditions, ipc protections and much more. |
62 |
- </extraproject> |
63 |
- |
64 |
- <extraproject name="Hardened Toolchain" lead="gengor">Transparent |
65 |
- implementation of |
66 |
- <uri link="http://pax.grsecurity.net/docs/aslr.txt"> |
67 |
- PaX</uri> address space layout randomizations and stack smashing |
68 |
- protections using ELF shared objects as executables.</extraproject> |
69 |
- |
70 |
- <extraproject name="Hardened-Sources" lead="gengor">A kernel which |
71 |
- provides patches for hardened subprojects, and stability/security |
72 |
- oriented patches. Includes Grsecurity and SELinux.</extraproject> |
73 |
- |
74 |
- <extraproject name="Bastille" lead="Battousai">Bastille is an |
75 |
- interactive application which gives the user suggestions on |
76 |
- securing their machine. It will be customized to make suggestions |
77 |
- about other Hardened Gentoo subprojects.</extraproject> |
78 |
- |
79 |
- <plannedproject name="Security Documentation">Maintain |
80 |
- documentation about best practices, and general security measures |
81 |
- such as process limiting, setting quotas, securing systems with |
82 |
- kerberos, chrooting, tightening services, etc.</plannedproject> |
83 |
- |
84 |
- <resource link="http://www.gentoo.org/proj/en/hardened/primer.xml"> |
85 |
- Introduction to Hardened Gentoo</resource> |
86 |
- <resource link="http://www.gentoo.org/proj/en/hardened/hardenedfaq.xml"> |
87 |
- Hardened Frequently Asked Questions</resource> |
88 |
- <resource link="http://www.gentoo.org/proj/en/hardened/roadmap.xml"> |
89 |
- Hardened Roadmap</resource> |
90 |
- <resource link="http://www.gentoo.org/proj/en/hardened/hardenedxorg.xml"> |
91 |
- Using Xorg with Hardened</resource> |
92 |
- <resource link="http://www.gentoo.org/proj/en/hardened/hardened-toolchain.xml"> |
93 |
- Hardened Toolchain Technical Description</resource> |
94 |
- <resource link="http://www.gentoo.org/proj/en/hardened/pax-quickstart.xml"> |
95 |
- A quickstart covering PaX and Hardened Gentoo</resource> |
96 |
- <resource link="http://www.gentoo.org/proj/en/hardened/pax-utils.xml"> |
97 |
- PaX Utils</resource> |
98 |
- <resource link="http://www.gentoo.org/proj/en/hardened/grsecurity.xml"> |
99 |
- Grsecurity2 QuickStart Guide</resource> |
100 |
- <resource link="http://www.gentoo.org/proj/en/hardened/capabilities.xml"> |
101 |
- Capabilities Listing</resource> |
102 |
- <resource link="http://www.gentoo.org/proj/en/hardened/pic-guide.xml"> |
103 |
- PIC Intro (beginner)</resource> |
104 |
- <resource link="http://www.gentoo.org/proj/en/hardened/pic-internals.xml"> |
105 |
- PIC Internals (intermediate)</resource> |
106 |
- <resource link="http://www.gentoo.org/proj/en/hardened/pic-fix-guide.xml"> |
107 |
- PIC Fixing (advanced)</resource> |
108 |
- <resource link="http://www.gentoo.org/proj/en/hardened/gnu-stack.xml"> |
109 |
- GNU Stack Quickstart</resource> |
110 |
- |
111 |
- <extrachapter position="bottom"> |
112 |
- <title>I Want to Participate</title> |
113 |
- <section> |
114 |
- <body> |
115 |
- <p>To participate in the Hardened Gentoo project first join |
116 |
- the mailing list at |
117 |
- <c>gentoo-hardened@g.o</c>. Then ask if there are |
118 |
- plans to support something that you are interested in, |
119 |
- propose a new subproject that you are interested in or |
120 |
- choose one of the planned subprojects to work on. You may |
121 |
- talk to the developers and users in the IRC channel |
122 |
- <c>#gentoo-hardened</c> on |
123 |
- <c>irc.freenode.net</c> for more information or just to chat |
124 |
- about the project or any subprojects. If you don't have the |
125 |
- ability to actively help by contributing work we will |
126 |
- always need testers to maintain the security and stability |
127 |
- of the overall product. All development, testing, and |
128 |
- productive comments and feedback will be greatly |
129 |
- appreciated.</p> |
130 |
- </body> |
131 |
- </section> |
132 |
- </extrachapter> |
133 |
- <herd name="hardened" /> |
134 |
+<name>hardened</name> |
135 |
+<longname>Hardened Gentoo</longname> |
136 |
+<date>2010-10-29</date> |
137 |
+ |
138 |
+<description> |
139 |
+Hardened Gentoo brings advanced security measures to Gentoo Linux. |
140 |
+</description> |
141 |
+ |
142 |
+<longdescription> |
143 |
+<p> |
144 |
+Hardened Gentoo is a project which oversees the research, implementation, and |
145 |
+maintenance of security oriented projects for Gentoo Linux. We are a team of |
146 |
+very competent individuals dedicated to bring advanced security to Gentoo |
147 |
+with a number of subprojects. |
148 |
+</p> |
149 |
+ |
150 |
+</longdescription> |
151 |
+ |
152 |
+<goals> |
153 |
+<p> |
154 |
+Hardened Gentoo's purpose is to make Gentoo viable for highly secure, high |
155 |
+stability production server environments. This project is not a standalone |
156 |
+project separated from the rest of Gentoo. Instead, it is intended to be a team |
157 |
+of Gentoo developers who are focused on delivering solutions to Gentoo that |
158 |
+provide strong security and stability. These solutions will be available in |
159 |
+Gentoo once they've been tested for security and stability by the Hardened team. |
160 |
+</p> |
161 |
+ |
162 |
+</goals> |
163 |
+ |
164 |
+<dev role="Member" description="Bastille Lead">battousai</dev> |
165 |
+<dev role="Member" description="PaX/Grsecurity, Hardened sources">gengor</dev> |
166 |
+<dev role="Project Lead" description="Hardened Toolchain, Doc">Zorry</dev> |
167 |
+<dev role="Member" description="PaX/Grsecurity, Hardened sources">blueness</dev> |
168 |
+<dev role="Member" description="Hardened sources, Doc">quantumsummers</dev> |
169 |
+<dev role="Member" description="Hardened sources">Chainsaw</dev> |
170 |
+<dev role="Member" description="PPC arch team liaison">nixnut</dev> |
171 |
+<dev role="Member" description="SELinux">pebenito</dev> |
172 |
+ |
173 |
+<!-- In the future we could use inheritmembers="yes" but we need pages for all |
174 |
+or most of the subprojects --> |
175 |
+<subproject ref="/proj/en/hardened/selinux/index.xml" inheritresources="yes"/> |
176 |
+<!-- RSBAC is no longer with us :( |
177 |
+<subproject ref="/proj/en/hardened/rsbac/index.xml" inheritresources="yes" /> |
178 |
+--> |
179 |
+<extraproject name="PaX/Grsecurity" lead="blueness"> |
180 |
+Grsecurity is a complete security solution providing such features as a MAC or |
181 |
+RBAC system, chroot restrictions, address space modification protection (via |
182 |
+PaX), auditing features, randomization features, linking restrictions to prevent |
183 |
+file race conditions, ipc protections and much more. |
184 |
+</extraproject> |
185 |
+ |
186 |
+<extraproject name="Hardened Toolchain" lead="Zorry"> |
187 |
+Transparent implementation of |
188 |
+<uri link="http://pax.grsecurity.net/docs/aslr.txt">PaX</uri> address space |
189 |
+layout randomizations and stack smashing protections using ELF shared objects as |
190 |
+executables. |
191 |
+</extraproject> |
192 |
+ |
193 |
+<extraproject name="Hardened Kernel Sources" lead="blueness"> |
194 |
+A kernel which provides patches for hardened subprojects, and stability/security |
195 |
+oriented patches. Includes Grsecurity and SELinux. |
196 |
+</extraproject> |
197 |
+ |
198 |
+<extraproject name="Bastille" lead="battousai"> |
199 |
+Bastille is an interactive application which gives the user suggestions on |
200 |
+securing their machine. It will be customized to make suggestions about other |
201 |
+Hardened Gentoo subprojects. |
202 |
+</extraproject> |
203 |
+ |
204 |
+<!-- Still rewieving it. |
205 |
+<plannedproject name="Security Documentation">Maintain |
206 |
+documentation about best practices, and general security measures |
207 |
+such as process limiting, setting quotas, securing systems with |
208 |
+kerberos, chrooting, tightening services, etc.</plannedproject> |
209 |
+--> |
210 |
+ |
211 |
+<resource link="/proj/en/hardened/primer.xml"> |
212 |
+Introduction to Hardened Gentoo |
213 |
+</resource> |
214 |
+<resource link="/proj/en/hardened/hardenedfaq.xml"> |
215 |
+Hardened Frequently Asked Questions |
216 |
+</resource> |
217 |
+<resource link="/proj/en/hardened/roadmap.xml"> |
218 |
+Hardened Roadmap |
219 |
+</resource> |
220 |
+<resource link="/proj/en/hardened/hardened-debugging.xml">Hardened Debugging |
221 |
+</resource> |
222 |
+<resource link="/proj/en/hardened/hardenedxorg.xml"> |
223 |
+Using Xorg with Hardened |
224 |
+</resource> |
225 |
+<resource link="/proj/en/hardened/hardened-toolchain.xml"> |
226 |
+Hardened Toolchain Technical Description |
227 |
+</resource> |
228 |
+<resource link="/proj/en/hardened/pax-quickstart.xml"> |
229 |
+A quickstart covering PaX and Hardened Gentoo |
230 |
+</resource> |
231 |
+<resource link="/proj/en/hardened/pax-utils.xml"> |
232 |
+PaX Utils |
233 |
+</resource> |
234 |
+<resource link="/proj/en/hardened/grsecurity.xml"> |
235 |
+Grsecurity2 QuickStart Guide |
236 |
+</resource> |
237 |
+<resource link="/proj/en/hardened/capabilities.xml"> |
238 |
+Capabilities Listing |
239 |
+</resource> |
240 |
+<resource link="/proj/en/hardened/pic-guide.xml"> |
241 |
+PIC Intro (beginner) |
242 |
+</resource> |
243 |
+<resource link="/proj/en/hardened/pic-internals.xml"> |
244 |
+PIC Internals (intermediate) |
245 |
+</resource> |
246 |
+<resource link="/proj/en/hardened/pic-fix-guide.xml"> |
247 |
+PIC Fixing (advanced) |
248 |
+</resource> |
249 |
+<resource link="/proj/en/hardened/gnu-stack.xml"> |
250 |
+GNU Stack Quickstart |
251 |
+</resource> |
252 |
+ |
253 |
+<herd name="hardened" /> |
254 |
+ |
255 |
+<extrachapter position="bottom"> |
256 |
+<title>I Want to Participate</title> |
257 |
+<section> |
258 |
+<body> |
259 |
+ |
260 |
+<p> |
261 |
+To participate in the Hardened Gentoo project first join the mailing list at |
262 |
+<mail link="gentoo-hardened@l.g.o"> |
263 |
+gentoo-hardened@l.g.o</mail>. Next, ask if there are plans to |
264 |
+support something that you are interested in, propose a new subproject that you |
265 |
+are interested in, choose one of the planned subprojects to work on or simply |
266 |
+ask if you can help with something. You can also talk to the developers and |
267 |
+users in the IRC channel <c>#gentoo-hardened</c> on <c>irc.freenode.net</c> for |
268 |
+more information or just to chat about the project or any subprojects. |
269 |
+</p> |
270 |
+ |
271 |
+<p> |
272 |
+If you think you don't have the knowledge or abilities to help, then try reading |
273 |
+the current documents (there are always sections that can be improved or typos |
274 |
+which we miss) and when you feel brave enough then try writing those documents |
275 |
+you missed. Usually this only requires some internet research on your side and |
276 |
+after some documents you'll most probably be able to help with other things you |
277 |
+thought you weren't able to help with before. |
278 |
+</p> |
279 |
+ |
280 |
+<p> |
281 |
+Also, if you don't have time to actively help by contributing work we will |
282 |
+always need testers to maintain the security and stability of the overall |
283 |
+product. All development, testing, and productive comments and feedback will be |
284 |
+greatly appreciated. |
285 |
+</p> |
286 |
+ |
287 |
+</body> |
288 |
+</section> |
289 |
+</extrachapter> |
290 |
</project> |