| 1 |
Hello, |
| 2 |
|
| 3 |
First sorry for taking this long to answer this, somehow this mail |
| 4 |
slipped through my radar and couldn't find it when somebody moved it to |
| 5 |
the gentoo-hardened list, add to that an... interesting live and we are set. |
| 6 |
|
| 7 |
And now let's get answers: |
| 8 |
|
| 9 |
First the Gentoo Hardened team DOES support the use of Gentoo Hardened |
| 10 |
on desktop and this has been so for a long time, there are many reasons |
| 11 |
for this amongst others the fact that currently desktops tend to be more |
| 12 |
vulnerable to attacks than servers. As a matter of fact I do tend to |
| 13 |
state that my laptop is running Gentoo Hardened whenever I have to give |
| 14 |
a talk on it and I can tell you I'm not the only user here, amongst |
| 15 |
other examples I recall an interesting remotely managed kiosk project by |
| 16 |
another user. |
| 17 |
|
| 18 |
Regarding the profiles the main reason why they don't exist is the non |
| 19 |
existence of a desktop feature that makes it easier for us to have it |
| 20 |
(as it happens for example with the selinux or multilib features). This |
| 21 |
said we tend to be very open to people wanting to join the community so |
| 22 |
if you want to create them feel free to come to the meeting we are |
| 23 |
holding on 2012-06-27 20:00 at #GentooHardened and say so when we touch |
| 24 |
the profiles topic, be warned though that profiles tend to be very |
| 25 |
complex and fragile so are a thing not to be taken easily. |
| 26 |
|
| 27 |
Regarding skype, in theory you can use it but you need to paxmark it |
| 28 |
with legacy USE flags and well it is quite awkward, another option is |
| 29 |
using the new xattr based marks but I think this is still in |
| 30 |
development. You will also need to disable TPE. |
| 31 |
|
| 32 |
Regarding things like totem check also dmesg, at times you need to |
| 33 |
disable TPE to get orc code to work properly. Anyway I have no problems |
| 34 |
like that with kaffeine. |
| 35 |
|
| 36 |
Finally regarding Gwibber and Hotot make sure you don't have the jit USE |
| 37 |
flag set, jit code and hardened match just as well as a bobcat and a |
| 38 |
pitbull in a small closed box with a lit firecracker to startle them. |
| 39 |
Worst case try choqok it works well for me. |
| 40 |
|
| 41 |
That covers all on this thread, I hope this e-mail is useful and as |
| 42 |
always feel free to come back with any questions you have. |
| 43 |
klondike |
Archives