1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
Hi :) |
5 |
|
6 |
On Friday 07 March 2003 22:03, Joshua Brindle wrote: |
7 |
> Here we are |
8 |
> [...] |
9 |
|
10 |
Ah, great! |
11 |
|
12 |
My current todo: |
13 |
|
14 |
* Get working support for crypt_blowfish (with a blowfish USE flag to |
15 |
control whether blowfish or MD5 should be used by crypt(3)) |
16 |
* Get working support for tcb (controlled by tcb USE flag) |
17 |
* Write a short RFC on a framework for default grsecurity ACLs (I'll |
18 |
probably steal some of Method's work here) |
19 |
* Patch up various packages with patches from Owl (chrooting, privilege |
20 |
separation, etc. I'll compile a list of packages some day) |
21 |
* Probably a lot more, but I can't remember any more items right now. |
22 |
|
23 |
What are your thoughts on how we can control gentoo-hardened packages? |
24 |
I proposed an approval keyword a while ago, but the response wasn't very |
25 |
positive. Besides, I guess it would demand a new portage feature (being |
26 |
able to only approve packages with both arch and hardened keyword). Any |
27 |
ideas? |
28 |
|
29 |
P.S: Please excuse my english, I'm damn tired right now :P |
30 |
|
31 |
- -- |
32 |
Joachim Blaabjerg |
33 |
Gentoo Linux Security Developer |
34 |
GPG key @ http://cvs.gentoo.org/~styx |
35 |
-----BEGIN PGP SIGNATURE----- |
36 |
Version: GnuPG v1.2.1 (GNU/Linux) |
37 |
|
38 |
iD8DBQE+aQzLFJKdDpq6hFsRAoO0AJsFqaIcZZUgYmQaPTouHf07v93MEQCfXd+m |
39 |
g3Si0XRv97RDsLYn+PD/7OU= |
40 |
=G9yD |
41 |
-----END PGP SIGNATURE----- |
42 |
|
43 |
|
44 |
-- |
45 |
gentoo-hardened@g.o mailing list |