| 1 |
On Sat, Oct 30, 2010 at 10:05:17AM +0400, Peter Volkov wrote: |
| 2 |
> В Птн, 29/10/2010 в 09:11 -0700, Alec Warner пишет: |
| 3 |
> > On Fri, Oct 29, 2010 at 5:21 AM, Markos Chandras <hwoarang@g.o> wrote: |
| 4 |
> > Can I install a machine with the server profile and USE=-ldap, but |
| 5 |
> > still get ldap + pam working? |
| 6 |
> > Can I install a machine with the server profile and USE=-apache, but |
| 7 |
> > still get apache + php working? apache + rails? |
| 8 |
> > How many packages support each USE flag? |
| 9 |
> > How many of those packages have IUSE defaults for +ldap or +apache already? |
| 10 |
> |
| 11 |
> Having lxc/openvz/vserver technologies at hand it's not rare to split |
| 12 |
> LAMP server into a number of virtual servers (containers): mysql / |
| 13 |
> backend with php / frontend / smtp - everything sits in its own |
| 14 |
> container. And USE=apache will be used only in _one_ container. Also not |
| 15 |
> all servers are web servers. So IMO server profile should be just |
| 16 |
> minimal profile that hints users that this profile will stay minimal and |
| 17 |
> usable for all kinds of servers. That said I think server profile is |
| 18 |
> useless and for servers I maintain my own profiles. |
| 19 |
> |
| 20 |
> -- |
| 21 |
> Peter. |
| 22 |
> |
| 23 |
> |
| 24 |
Exactly! How about the warning message. Should the statement about |
| 25 |
gcc+glibc be removed and keep the one about hardened but make it a bit |
| 26 |
different?Like "This profile is making use of a minimal set of use flag. |
| 27 |
You may find it useful in a server environment. However, If you are seeking |
| 28 |
for extra security, please check the Hardened project |
| 29 |
(http://hardened.gentoo.org)." |
| 30 |
|
| 31 |
-- |
| 32 |
Markos Chandras (hwoarang) |
| 33 |
Gentoo Linux Developer |
| 34 |
Web: http://hwoarang.silverarrow.org |
| 35 |
Key ID: 441AC410 |
| 36 |
Key FP: AAD0 8591 E3CD 445D 6411 3477 F7F7 1E8E 441A C410 |
Archives