1 |
On Fri, Oct 29, 2010 at 12:02:20PM +0000, Jorge Manuel B. S. Vicetto wrote: |
2 |
> -----BEGIN PGP SIGNED MESSAGE----- |
3 |
> Hash: SHA1 |
4 |
> |
5 |
> Hi. |
6 |
> |
7 |
> On 29-10-2010 11:03, Markos Chandras wrote: |
8 |
> > Hi |
9 |
> > |
10 |
> > I don't know how many of you are using these profiles. I would like to |
11 |
> > propose a couple of changes |
12 |
> > |
13 |
> > 1) I want to drop the warning message located on profile.bashrc files |
14 |
> > e.g $PORTDIR/default/linux/amd64/10.0/server/profile.bashrc |
15 |
> > It is more than obvious what this profile is for so I don't think this |
16 |
> > message makes any sense. |
17 |
> |
18 |
> I've always taken the message about the server profiles not being |
19 |
> properly tested as a warning that anyone wanting to run a "secure" |
20 |
> server profile should use one of the hardened profiles. |
21 |
But isn't that obvious? How is server profiles related to hardened |
22 |
anyway? Anyway, this can stay. The rest about GCC and Glibc I think is |
23 |
useless |
24 |
> If so, I'd leave that warning alone until we get enough people working |
25 |
> on the server profiles so we can make any promises about it. |
26 |
How many? Work on what actually? It is just a profile with minimal use |
27 |
flags. There is nothing to work on :-/ I don't understand that. Tell me |
28 |
which areas of server profile need more attention so I can understand |
29 |
what are you talking about |
30 |
> |
31 |
> > 2) Furthermore I would like to drop the following use flags from default |
32 |
> > IUSE |
33 |
> > |
34 |
> > -apache2 |
35 |
> > -ldap |
36 |
> > |
37 |
> > A minimal server installation does requires neither apache2 nor ldap |
38 |
> |
39 |
> Although one can install a server without apache or ldap, I'd say the |
40 |
> server profile seems the natural choice to have them enabled. |
41 |
So you assume that the most common server configuration is for active |
42 |
directory or web hosting |
43 |
> If we had the statistics for it, we could check how many people have |
44 |
> apache installed with that profile vs not having it. As there's nothing |
45 |
> preventing one from having USE="-apache2 -ldap" when required and I |
46 |
> don't use the server profiles, I don't really have a strong opinion |
47 |
> about this. |
48 |
Same for USE="apache2 ldap" on make.conf. That is not a valid argument |
49 |
:) |
50 |
> |
51 |
> - -- |
52 |
> Regards, |
53 |
> |
54 |
> Jorge Vicetto (jmbsvicetto) - jmbsvicetto at gentoo dot org |
55 |
> Gentoo- forums / Userrel / Devrel / KDE / Elections / RelEng |
56 |
> -----BEGIN PGP SIGNATURE----- |
57 |
> Version: GnuPG v2.0.16 (GNU/Linux) |
58 |
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ |
59 |
> |
60 |
> iQIcBAEBAgAGBQJMyrfMAAoJEC8ZTXQF1qEP1AMQANVKK4f1T041WrHMJ7gXM4sI |
61 |
> hEhoH25GkoxjEEztxdaQ7TI+fxPRqbAHv6AWYNsTd7C6c0RwgTQa8TwNATvmWdCT |
62 |
> tyTge9SWO1lubiwdNUu5AoamZkzyvWibK5hwP6cd/4OWP02aFZ/BYICeL5G3IQ1I |
63 |
> YBXwjzf6f6Nyae8/SKCQalU0Zlse1Cx6A58siS2Uqz63DqPglQqhiN10PB4S496y |
64 |
> fvA84h8B0FUtexFn8Ho0nFVHh5Lea6qo4YZfhDemjMSio9daPMfcAK63za5M/vq+ |
65 |
> AEjLOmFuj5yg3hppE+5tqc4R+Qt3mDklRHT/p3tdhMTgw0aXHSA/23NSqdKs7NTK |
66 |
> 4w/HJ+k5S5BXUUrb3VjNByO5vOKm7A4ROLBAuDZFgu/dah3A3OwtoolEEooWMHDG |
67 |
> Bgo4aRX0cvNGTdVFnUQp7aDO/idi61ONV/G9cqPsl5nmD0K/1JhujLmR9oU26ctk |
68 |
> sEv/ZxAbUWBYiPx08y6u7lm2g2uUnC0VmJS6rLeHKpp501I8ulTuNRlc1U8EvmPn |
69 |
> aQHLG+6IvBpifFml3nDIG64LwsXqkEmwc67vcHvYRJqyzcxyHkORl2qTH19zsV1B |
70 |
> PAa9bN9jRYssdLvDLdsrBc1S3LSGftWihu5ITwkdf3DK6uo7UUViSeesiESsP0sa |
71 |
> +maI98w1ehWNX2I8RZ7l |
72 |
> =fHNt |
73 |
> -----END PGP SIGNATURE----- |
74 |
> |
75 |
|
76 |
-- |
77 |
Markos Chandras (hwoarang) |
78 |
Gentoo Linux Developer |
79 |
Web: http://hwoarang.silverarrow.org |
80 |
Key ID: 441AC410 |
81 |
Key FP: AAD0 8591 E3CD 445D 6411 3477 F7F7 1E8E 441A C410 |