| 1 |
The first thing I would do it switch your profile to the hardened |
| 2 |
profile, and add hardened and pic to your USE flags (this second step |
| 3 |
might be redundant as I think the profile sets that automatically, but |
| 4 |
it can't hurt). Then do a emerge -uDnpv world and see what it wants to |
| 5 |
do. Depending on what it wants to do will determine how risky it will be. |
| 6 |
|
| 7 |
Also, you might want to think about moving to the hardened-sources |
| 8 |
kernel, but that would be a significant change from your vanilla |
| 9 |
sources, depending on what hardened technologies you want to set. |
| 10 |
|
| 11 |
Darknight wrote: |
| 12 |
> On Thursday 05 October 2006 15:43, Matt Poletiek wrote: |
| 13 |
> |
| 14 |
>> As far as I know a switch is impossible if you are running latest |
| 15 |
>> glibc. Downgrading is not a good idea at all and I dont think portage |
| 16 |
>> will let you do it. I heard something about SELinux switching to glibc |
| 17 |
>> 2.4 so there should be gcc-4.1-hardened not far off. |
| 18 |
>> |
| 19 |
> |
| 20 |
> I should have mentioned this important bit: I'm still with old glibc and gcc |
| 21 |
> so I can switch, I need to understand if it's a bad gamble or completely |
| 22 |
> safe. |
| 23 |
> |
| 24 |
> |
| 25 |
>> Or a reinstall is possible. |
| 26 |
>> http://gentoo-wiki.com/Reinstall_Gentoo_keeping_your_old_configuration |
| 27 |
>> |
| 28 |
> |
| 29 |
> I will look into this, it can be useful anyway. |
| 30 |
> |
| 31 |
> TY |
| 32 |
> |
| 33 |
> |
| 34 |
-- |
| 35 |
gentoo-hardened@g.o mailing list |
Archives