| 1 |
On Fri, Oct 29, 2010 at 12:02:20PM +0000, Jorge Manuel B. S. Vicetto wrote: |
| 2 |
> -----BEGIN PGP SIGNED MESSAGE----- |
| 3 |
> Hash: SHA1 |
| 4 |
> |
| 5 |
> Hi. |
| 6 |
> |
| 7 |
> On 29-10-2010 11:03, Markos Chandras wrote: |
| 8 |
> > Hi |
| 9 |
> > |
| 10 |
> > I don't know how many of you are using these profiles. I would like to |
| 11 |
> > propose a couple of changes |
| 12 |
> > |
| 13 |
> > 1) I want to drop the warning message located on profile.bashrc files |
| 14 |
> > e.g $PORTDIR/default/linux/amd64/10.0/server/profile.bashrc |
| 15 |
> > It is more than obvious what this profile is for so I don't think this |
| 16 |
> > message makes any sense. |
| 17 |
> |
| 18 |
> I've always taken the message about the server profiles not being |
| 19 |
> properly tested as a warning that anyone wanting to run a "secure" |
| 20 |
> server profile should use one of the hardened profiles. |
| 21 |
But isn't that obvious? How is server profiles related to hardened |
| 22 |
anyway? Anyway, this can stay. The rest about GCC and Glibc I think is |
| 23 |
useless |
| 24 |
> If so, I'd leave that warning alone until we get enough people working |
| 25 |
> on the server profiles so we can make any promises about it. |
| 26 |
How many? Work on what actually? It is just a profile with minimal use |
| 27 |
flags. There is nothing to work on :-/ I don't understand that. Tell me |
| 28 |
which areas of server profile need more attention so I can understand |
| 29 |
what are you talking about |
| 30 |
> |
| 31 |
> > 2) Furthermore I would like to drop the following use flags from default |
| 32 |
> > IUSE |
| 33 |
> > |
| 34 |
> > -apache2 |
| 35 |
> > -ldap |
| 36 |
> > |
| 37 |
> > A minimal server installation does requires neither apache2 nor ldap |
| 38 |
> |
| 39 |
> Although one can install a server without apache or ldap, I'd say the |
| 40 |
> server profile seems the natural choice to have them enabled. |
| 41 |
So you assume that the most common server configuration is for active |
| 42 |
directory or web hosting |
| 43 |
> If we had the statistics for it, we could check how many people have |
| 44 |
> apache installed with that profile vs not having it. As there's nothing |
| 45 |
> preventing one from having USE="-apache2 -ldap" when required and I |
| 46 |
> don't use the server profiles, I don't really have a strong opinion |
| 47 |
> about this. |
| 48 |
Same for USE="apache2 ldap" on make.conf. That is not a valid argument |
| 49 |
:) |
| 50 |
> |
| 51 |
> - -- |
| 52 |
> Regards, |
| 53 |
> |
| 54 |
> Jorge Vicetto (jmbsvicetto) - jmbsvicetto at gentoo dot org |
| 55 |
> Gentoo- forums / Userrel / Devrel / KDE / Elections / RelEng |
| 56 |
> -----BEGIN PGP SIGNATURE----- |
| 57 |
> Version: GnuPG v2.0.16 (GNU/Linux) |
| 58 |
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ |
| 59 |
> |
| 60 |
> iQIcBAEBAgAGBQJMyrfMAAoJEC8ZTXQF1qEP1AMQANVKK4f1T041WrHMJ7gXM4sI |
| 61 |
> hEhoH25GkoxjEEztxdaQ7TI+fxPRqbAHv6AWYNsTd7C6c0RwgTQa8TwNATvmWdCT |
| 62 |
> tyTge9SWO1lubiwdNUu5AoamZkzyvWibK5hwP6cd/4OWP02aFZ/BYICeL5G3IQ1I |
| 63 |
> YBXwjzf6f6Nyae8/SKCQalU0Zlse1Cx6A58siS2Uqz63DqPglQqhiN10PB4S496y |
| 64 |
> fvA84h8B0FUtexFn8Ho0nFVHh5Lea6qo4YZfhDemjMSio9daPMfcAK63za5M/vq+ |
| 65 |
> AEjLOmFuj5yg3hppE+5tqc4R+Qt3mDklRHT/p3tdhMTgw0aXHSA/23NSqdKs7NTK |
| 66 |
> 4w/HJ+k5S5BXUUrb3VjNByO5vOKm7A4ROLBAuDZFgu/dah3A3OwtoolEEooWMHDG |
| 67 |
> Bgo4aRX0cvNGTdVFnUQp7aDO/idi61ONV/G9cqPsl5nmD0K/1JhujLmR9oU26ctk |
| 68 |
> sEv/ZxAbUWBYiPx08y6u7lm2g2uUnC0VmJS6rLeHKpp501I8ulTuNRlc1U8EvmPn |
| 69 |
> aQHLG+6IvBpifFml3nDIG64LwsXqkEmwc67vcHvYRJqyzcxyHkORl2qTH19zsV1B |
| 70 |
> PAa9bN9jRYssdLvDLdsrBc1S3LSGftWihu5ITwkdf3DK6uo7UUViSeesiESsP0sa |
| 71 |
> +maI98w1ehWNX2I8RZ7l |
| 72 |
> =fHNt |
| 73 |
> -----END PGP SIGNATURE----- |
| 74 |
> |
| 75 |
|
| 76 |
-- |
| 77 |
Markos Chandras (hwoarang) |
| 78 |
Gentoo Linux Developer |
| 79 |
Web: http://hwoarang.silverarrow.org |
| 80 |
Key ID: 441AC410 |
| 81 |
Key FP: AAD0 8591 E3CD 445D 6411 3477 F7F7 1E8E 441A C410 |
Archives