Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-hardened

From: "Tóth Attila" <atoth@××××××××××.hu>
To: gentoo-hardened@l.g.o
Subject: Re: [gentoo-hardened] Cleaning up the hardened profiles
Date: Mon, 28 Jan 2013 20:18:02
Message-Id: 301559da20d7e709db60a142c5774a18.squirrel@atoth.sote.hu
In Reply to: [gentoo-hardened] Cleaning up the hardened profiles by "Anthony G. Basile"
1 I'm using [20] hardened/linux/amd64/no-multilib.
2 If it will be discontinued, please let us know about the proper
3 replacement profile.
4
5 Regards:
6 Dw.
7 --
8 dr Tóth Attila, Radiológus, 06-20-825-8057
9 Attila Toth MD, Radiologist, +36-20-825-8057
10
11 2013.Január 27.(V) 15:32 időpontban Anthony G. Basile ezt írta:
12 > Hi everyone,
13 >
14 > The number of profiles in gentoo is growing *again* with the addition of
15 > release 13.0 profiles. Because of the way stacking works, adding these
16 > to hardened means a repetition of code in a way that is not good. I'll
17 > decide how to proceed in a week or so, let everyone know and then
18 > implement something. Right now I'm leaning towards "test" profiles for
19 > amd64 and x86 and after some good period of testing (6 months?) just
20 > switch all of hardened from 10.0 to 13.0.
21 >
22 > While I'm at the business of rethinking the profiles, I've been
23 > wondering, does anyone use the /desktop, /developer, /server sub
24 > profiles? I've officially only listed the following
25 >
26 > [18] hardened/linux/amd64 *
27 > [19] hardened/linux/amd64/selinux
28 > [20] hardened/linux/amd64/no-multilib
29 > [21] hardened/linux/amd64/no-multilib/selinux
30 >
31 > for amd64, and similarly for other arches. But there also exist
32 > profiles like:
33 >
34 > hardened/linux/amd64/desktop
35 > hardened/linux/amd64/developer
36 > hardened/linux/amd64/server
37 >
38 > for ia64, ppc, ppc64 and x86. I didn't even bother to add these for
39 > mips or arm. These are not listed in profiles.desc, so you can't
40 > eselect them, but a user could manually create those links.
41 >
42 > If no one is using them, I'll mark them deprecated, and dump them in a
43 > month or two.
44 >
45 > Comments?
46 >
47 >
48 > --
49 > Anthony G. Basile, Ph. D.
50 > Chair of Information Technology
51 > D'Youville College
52 > Buffalo, NY 14201
53 > (716) 829-8197
54 >

Replies

Subject Author
Re: [gentoo-hardened] Cleaning up the hardened profiles "Anthony G. Basile" <basile@××××××××××××××.edu>
Report Message
Find on MARC Find on Google Groups