| 1 |
Anthony G. Basile wrote: |
| 2 |
> Hi everyone, |
| 3 |
> |
| 4 |
> The number of profiles in gentoo is growing *again* with the addition |
| 5 |
> of release 13.0 profiles. Because of the way stacking works, adding |
| 6 |
> these to hardened means a repetition of code in a way that is not |
| 7 |
> good. I'll decide how to proceed in a week or so, let everyone know |
| 8 |
> and then implement something. Right now I'm leaning towards "test" |
| 9 |
> profiles for amd64 and x86 and after some good period of testing (6 |
| 10 |
> months?) just switch all of hardened from 10.0 to 13.0. |
| 11 |
> |
| 12 |
> While I'm at the business of rethinking the profiles, I've been |
| 13 |
> wondering, does anyone use the /desktop, /developer, /server sub |
| 14 |
> profiles? I've officially only listed the following |
| 15 |
> |
| 16 |
> [18] hardened/linux/amd64 * [19] hardened/linux/amd64/selinux [20] |
| 17 |
> hardened/linux/amd64/no-multilib [21] |
| 18 |
> hardened/linux/amd64/no-multilib/selinux |
| 19 |
> |
| 20 |
> for amd64, and similarly for other arches. But there also exist |
| 21 |
> profiles like: |
| 22 |
> |
| 23 |
> hardened/linux/amd64/desktop hardened/linux/amd64/developer |
| 24 |
> hardened/linux/amd64/server |
| 25 |
> |
| 26 |
> for ia64, ppc, ppc64 and x86. I didn't even bother to add these for |
| 27 |
> mips or arm. These are not listed in profiles.desc, so you can't |
| 28 |
> eselect them, but a user could manually create those links. |
| 29 |
> |
| 30 |
> If no one is using them, I'll mark them deprecated, and dump them in |
| 31 |
> a month or two. |
| 32 |
> |
| 33 |
> Comments? |
| 34 |
> |
| 35 |
> |
| 36 |
|
| 37 |
Hi, |
| 38 |
|
| 39 |
I only ever use the base profiles. |
| 40 |
|
| 41 |
Tully Gray. |
Archives