1 |
On Sat, 2004-09-18 at 13:19, Tóth Attila wrote: |
2 |
> It was quite dissapointing to read you dissapointed mail. |
3 |
> |
4 |
> Although I reported my success on the list previously, I want express my |
5 |
> respect to you and all other developers of the hardened gentoo project.I'm running a hardened gentoo server powered by hardened gcc and |
6 |
> grsecurity. I'm absolutely sure, that it would be an extremely hard task |
7 |
> to break in to that box. |
8 |
> Unfortunately I don't have the personal knowledge to help you in |
9 |
> development of the toolchain, because I'm only a medical doctor. A general |
10 |
> medical server is quite insecure in design - even machines cost a million |
11 |
> dollar(!). I couldn't stop setting up a stronhold of mine, which can |
12 |
> whitstand the attacks from outside coming through the university's fast, |
13 |
> underprotected network connection. Without following the gentoo way, I'm |
14 |
> sure, that I would have had very hard times. Using made things easy to |
15 |
> prepare. |
16 |
> I feel myself threatened now. All that I achieved during a few month seems |
17 |
> to tremble. The pie/pic/ssp stuff is an essential thing in the hardened |
18 |
> project. I don't want to run mplayer on my server. What sould I do now? |
19 |
|
20 |
> Should I move to Fedora Core (exec-shield, SELinux)? |
21 |
no |
22 |
|
23 |
> Whatever the future will be, I wish you a nice development! |
24 |
|
25 |
Don't panic yet.. |
26 |
So far I have been getting good feedback from some users and atleast one |
27 |
potential developer in some mails off list. I plan to put a detailed |
28 |
mail together in as few days and mail the interested parties and |
29 |
hopefully assemble a larger more professional team so we can fully |
30 |
continue to offer these types of technologies and continue to push fwd |
31 |
together. |
32 |
|
33 |
> Regards, |
34 |
> Dwokfur |
35 |
-- |
36 |
Ned Ludd <solar@g.o> |
37 |
Gentoo (hardened,security,infrastructure,embedded,toolchain) Developer |