| 1 |
Well, I'm not sure, but I do not run a hardened php, if that's what you |
| 2 |
mean. I have a gentoo hardened selinux server. On wich I am installing |
| 3 |
php5 to run phpldapadmin. So I can add sasl authentication support to it |
| 4 |
and use it as a secure admin client. So it stil would be a normal php, |
| 5 |
running in a specific SELinux context. |
| 6 |
But you could consider using the ebuild anyway, because I know gentoo |
| 7 |
for beinig very flexible. You could for example run the download part of |
| 8 |
the ebuild, configure it manualy and then continue the ebuild. Or you |
| 9 |
could adapt the existing ebuild to your specific needs. |
| 10 |
|
| 11 |
Albert Lash wrote: |
| 12 |
|
| 13 |
>Can you share your technique? I'm contemplating switching to emerging php |
| 14 |
>from compiling my own binary. I'm going through the file contexts for my |
| 15 |
>own layout and setup and its laborious. Having my own way is not |
| 16 |
>necessarily worth it if there is a hardened version that is |
| 17 |
>semi-pre-configured. |
| 18 |
> |
| 19 |
>Thanks, |
| 20 |
> |
| 21 |
>Albert |
| 22 |
> |
| 23 |
>On Tue, 27 Sep 2005, Mivz wrote: |
| 24 |
> |
| 25 |
> |
| 26 |
> |
| 27 |
>>I found it. They organized it. Great, much better this way! |
| 28 |
>> |
| 29 |
>>Nate Seif wrote: |
| 30 |
>> |
| 31 |
>> |
| 32 |
>> |
| 33 |
>>>I believe that there is a php5 ebuild in the Hardened Portage tree |
| 34 |
>>>under dev-lang/php. (Recently the PHP ebuilds have been moved around a |
| 35 |
>>>bit.) Update your portage tree and try emerging dev-lang/php. The |
| 36 |
>>>latest version in Portage (5.0.5) might be masked so unmask it by |
| 37 |
>>>adding a line like "dev-lang/php ~x86" to /etc/portage/package.keywords. |
| 38 |
>>> |
| 39 |
>>>Check out |
| 40 |
>>>http://svn.gnqs.org/projects/gentoo-php-overlay/file/docs/php-upgrading.html?format=raw |
| 41 |
>>>for info on installing PHP5. |
| 42 |
>>> |
| 43 |
>>>Nate |
| 44 |
>>> |
| 45 |
>>>Mivz wrote: |
| 46 |
>>> |
| 47 |
>>> |
| 48 |
>>> |
| 49 |
>>>>I am working on a LDAPv3 project for my graduation. It runs on a |
| 50 |
>>>>hardened-selinux server. I want to implement sasl authentication on |
| 51 |
>>>>phpldapadmin for this, to have a grafical, secure, admin tool. |
| 52 |
>>>>The problem is, there is no php5 ebuild in the hardend portage tree. |
| 53 |
>>>>This is kind of a problem, cause sasl authentication is only |
| 54 |
>>>>supported in php5. |
| 55 |
>>>>Is there a specific reason php5 is not in the hardend portage tree? |
| 56 |
>>>>And could I use the ebuild of the normal portage tree and write a |
| 57 |
>>>>php5 policy myself to do this? |
| 58 |
>>>> |
| 59 |
>>>>Mivz, Spugium |
| 60 |
>>>> |
| 61 |
>>>> |
| 62 |
>>>> |
| 63 |
>>-- |
| 64 |
>>gentoo-hardened@g.o mailing list |
| 65 |
>> |
| 66 |
>> |
| 67 |
>> |
| 68 |
|
| 69 |
-- |
| 70 |
gentoo-hardened@g.o mailing list |
Archives