| 1 |
On Sat, 2004-09-18 at 13:19, Tóth Attila wrote: |
| 2 |
> It was quite dissapointing to read you dissapointed mail. |
| 3 |
> |
| 4 |
> Although I reported my success on the list previously, I want express my |
| 5 |
> respect to you and all other developers of the hardened gentoo project.I'm running a hardened gentoo server powered by hardened gcc and |
| 6 |
> grsecurity. I'm absolutely sure, that it would be an extremely hard task |
| 7 |
> to break in to that box. |
| 8 |
> Unfortunately I don't have the personal knowledge to help you in |
| 9 |
> development of the toolchain, because I'm only a medical doctor. A general |
| 10 |
> medical server is quite insecure in design - even machines cost a million |
| 11 |
> dollar(!). I couldn't stop setting up a stronhold of mine, which can |
| 12 |
> whitstand the attacks from outside coming through the university's fast, |
| 13 |
> underprotected network connection. Without following the gentoo way, I'm |
| 14 |
> sure, that I would have had very hard times. Using made things easy to |
| 15 |
> prepare. |
| 16 |
> I feel myself threatened now. All that I achieved during a few month seems |
| 17 |
> to tremble. The pie/pic/ssp stuff is an essential thing in the hardened |
| 18 |
> project. I don't want to run mplayer on my server. What sould I do now? |
| 19 |
|
| 20 |
> Should I move to Fedora Core (exec-shield, SELinux)? |
| 21 |
no |
| 22 |
|
| 23 |
> Whatever the future will be, I wish you a nice development! |
| 24 |
|
| 25 |
Don't panic yet.. |
| 26 |
So far I have been getting good feedback from some users and atleast one |
| 27 |
potential developer in some mails off list. I plan to put a detailed |
| 28 |
mail together in as few days and mail the interested parties and |
| 29 |
hopefully assemble a larger more professional team so we can fully |
| 30 |
continue to offer these types of technologies and continue to push fwd |
| 31 |
together. |
| 32 |
|
| 33 |
> Regards, |
| 34 |
> Dwokfur |
| 35 |
-- |
| 36 |
Ned Ludd <solar@g.o> |
| 37 |
Gentoo (hardened,security,infrastructure,embedded,toolchain) Developer |
Archives