| 1 |
Hello walt, |
| 2 |
|
| 3 |
I've running hardened (hardened profile + kernel (including pax and grsec)) for |
| 4 |
at least 5 years on all my boxes except one (my gaming only box). |
| 5 |
It's been quite a while that I had an issue caused by the hardened profile that |
| 6 |
wasn't due to my fiddeling around with stuff like SELinux and the like. Even |
| 7 |
these problems were all relatively easy to solve. |
| 8 |
Truth be told: I guess that you won't even notice the hardened profile unless |
| 9 |
you also run a hardened kernel (while still having increased security). |
| 10 |
|
| 11 |
On Sun, Sep 06, 2015 at 01:15:17PM -0700, walt wrote: |
| 12 |
> https://wiki.gentoo.org/wiki/Hardened_Gentoo |
| 13 |
> |
| 14 |
> That wiki page is very seductive. It makes me want to drop everything |
| 15 |
> and select a hardened profile and re-emerge everything from scratch. |
| 16 |
> |
| 17 |
> But I have a feeling I'd soon be in big trouble if I did. Is this |
| 18 |
> something that only gentoo devs should be messing with, or is this |
| 19 |
> a project that a typical gentoo end-user might hope to accomplish |
| 20 |
> without frequent suicidal thoughts? |
Archives