Gentoo Archives: gentoo-user

From: Peter Humphrey <peter@××××××××××××.uk>
To: gentoo-user@l.g.o
Subject: [gentoo-user] How to harden a system
Date: Sat, 23 Dec 2017 14:09:45
Message-Id: 2022504.K2LgkkC3Iq@peak
1 Hello list,
3 Now that grsecurity is off-limits, I'm left wondering how to go about
4 hardening a no-multilib box that will be exposed to the Big Bad World.
6 To start with, it's not obvious which profile to use:
8 $ eselect profile list | grep no-multi | grep hardened
9 [23] default/linux/amd64/17.0/no-multilib/hardened
10 [24] default/linux/amd64/17.0/no-multilib/hardened/selinux
11 [29] hardened/linux/amd64/no-multilib
12 [30] hardened/linux/amd64/no-multilib/selinux
14 The wiki is also now out of date; it still talks about grsecurity, and there
15 are too many overlapping guides.
17 Until that's sorted out, would the panel like to offer some guidance?
19 --
20 Regards,
21 Peter.


Subject Author
Re: [gentoo-user] How to harden a system Michael Orlitzky <mjo@g.o>
Re: [gentoo-user] How to harden a system Adam Carter <adamcarter3@×××××.com>
Re: [gentoo-user] How to harden a system "Taiidan@×××.com" <Taiidan@×××.com>