1 |
Well, I'm not sure, but I do not run a hardened php, if that's what you |
2 |
mean. I have a gentoo hardened selinux server. On wich I am installing |
3 |
php5 to run phpldapadmin. So I can add sasl authentication support to it |
4 |
and use it as a secure admin client. So it stil would be a normal php, |
5 |
running in a specific SELinux context. |
6 |
But you could consider using the ebuild anyway, because I know gentoo |
7 |
for beinig very flexible. You could for example run the download part of |
8 |
the ebuild, configure it manualy and then continue the ebuild. Or you |
9 |
could adapt the existing ebuild to your specific needs. |
10 |
|
11 |
Albert Lash wrote: |
12 |
|
13 |
>Can you share your technique? I'm contemplating switching to emerging php |
14 |
>from compiling my own binary. I'm going through the file contexts for my |
15 |
>own layout and setup and its laborious. Having my own way is not |
16 |
>necessarily worth it if there is a hardened version that is |
17 |
>semi-pre-configured. |
18 |
> |
19 |
>Thanks, |
20 |
> |
21 |
>Albert |
22 |
> |
23 |
>On Tue, 27 Sep 2005, Mivz wrote: |
24 |
> |
25 |
> |
26 |
> |
27 |
>>I found it. They organized it. Great, much better this way! |
28 |
>> |
29 |
>>Nate Seif wrote: |
30 |
>> |
31 |
>> |
32 |
>> |
33 |
>>>I believe that there is a php5 ebuild in the Hardened Portage tree |
34 |
>>>under dev-lang/php. (Recently the PHP ebuilds have been moved around a |
35 |
>>>bit.) Update your portage tree and try emerging dev-lang/php. The |
36 |
>>>latest version in Portage (5.0.5) might be masked so unmask it by |
37 |
>>>adding a line like "dev-lang/php ~x86" to /etc/portage/package.keywords. |
38 |
>>> |
39 |
>>>Check out |
40 |
>>>http://svn.gnqs.org/projects/gentoo-php-overlay/file/docs/php-upgrading.html?format=raw |
41 |
>>>for info on installing PHP5. |
42 |
>>> |
43 |
>>>Nate |
44 |
>>> |
45 |
>>>Mivz wrote: |
46 |
>>> |
47 |
>>> |
48 |
>>> |
49 |
>>>>I am working on a LDAPv3 project for my graduation. It runs on a |
50 |
>>>>hardened-selinux server. I want to implement sasl authentication on |
51 |
>>>>phpldapadmin for this, to have a grafical, secure, admin tool. |
52 |
>>>>The problem is, there is no php5 ebuild in the hardend portage tree. |
53 |
>>>>This is kind of a problem, cause sasl authentication is only |
54 |
>>>>supported in php5. |
55 |
>>>>Is there a specific reason php5 is not in the hardend portage tree? |
56 |
>>>>And could I use the ebuild of the normal portage tree and write a |
57 |
>>>>php5 policy myself to do this? |
58 |
>>>> |
59 |
>>>>Mivz, Spugium |
60 |
>>>> |
61 |
>>>> |
62 |
>>>> |
63 |
>>-- |
64 |
>>gentoo-hardened@g.o mailing list |
65 |
>> |
66 |
>> |
67 |
>> |
68 |
|
69 |
-- |
70 |
gentoo-hardened@g.o mailing list |