| 1 |
On Thu, Feb 12, 2009 at 1:55 AM, Tom Hendrikx <tom@×××××××××.net> wrote: |
| 2 |
|
| 3 |
> Gordon Malm wrote: |
| 4 |
> > On Wednesday, February 11, 2009 10:53:46 Tom Hendrikx wrote: |
| 5 |
> >> Then I'll be the one to ask the annoying questions:) |
| 6 |
> >> |
| 7 |
> >> 1) Why are they there (could be related to some over-enthousiast |
| 8 |
> >> non-hardened devs)? |
| 9 |
> >> |
| 10 |
> >> 2) Why do the profiles in the released hardened stages point to |
| 11 |
> >> "../usr/portage/profiles/hardened/linux/x86/2008.0" by default? I |
| 12 |
> >> checked this in stage1-x86-hardened-2008.0.tar.bz2 and |
| 13 |
> >> stage3-i686-hardened-2008.0.tar.bz2 |
| 14 |
> >> |
| 15 |
> >> 3) As these profiles seem to reflect the new "preferred layout", I |
| 16 |
> >> understand that someone added them. But why aren't settings from |
| 17 |
> >> supported hardened profiles ported to this new layout, to remove the |
| 18 |
> >> ambiguity? |
| 19 |
> > |
| 20 |
> > To make a long story short one hand didn't know what the other was doing. |
| 21 |
> The |
| 22 |
> > new profiles are the way I'd like to go, but they need some adjustment |
| 23 |
> and |
| 24 |
> > the old profiles should be used for now. The situation is what it is |
| 25 |
> today |
| 26 |
> > because nobody (me) has gotten around to fixing+testing the new profiles |
| 27 |
> and |
| 28 |
> > dealing with the transition. Not what you wanted to hear probably, but |
| 29 |
> > there's much to do in hardened land and not many to do it. |
| 30 |
> > |
| 31 |
> > Gordon Malm (gengor) |
| 32 |
> > |
| 33 |
> |
| 34 |
> My questions arose from curiosity, so thanks for clearing up. It's too |
| 35 |
> bad that the situation is like it is, but I understand that there is |
| 36 |
> more than enough work to be done, and not enough man power. |
| 37 |
> |
| 38 |
> Just know that testing stuff can be easily 'outsourced', just abuse the |
| 39 |
> mailing list:) |
| 40 |
> |
| 41 |
> -- |
| 42 |
> Regards, |
| 43 |
> Tom |
| 44 |
> |
| 45 |
> |
| 46 |
Gengor, |
| 47 |
|
| 48 |
I had been running the profile in the stage3 with no issues for about a |
| 49 |
month on a couple of servers without any issues. |
| 50 |
|
| 51 |
Would it be possible to place a README in the dir with the new hardened |
| 52 |
stages briefly explaining the situation so our users don't make this mistake |
| 53 |
again? |
| 54 |
|
| 55 |
Cheers & thanks for all the fish! |
| 56 |
|
| 57 |
-- |
| 58 |
M. Summers |
| 59 |
|
| 60 |
"...there are no rules here -- we're trying to accomplish something." |
| 61 |
- Thomas A. Edison |
Archives