1 |
Hello walt, |
2 |
|
3 |
I've running hardened (hardened profile + kernel (including pax and grsec)) for |
4 |
at least 5 years on all my boxes except one (my gaming only box). |
5 |
It's been quite a while that I had an issue caused by the hardened profile that |
6 |
wasn't due to my fiddeling around with stuff like SELinux and the like. Even |
7 |
these problems were all relatively easy to solve. |
8 |
Truth be told: I guess that you won't even notice the hardened profile unless |
9 |
you also run a hardened kernel (while still having increased security). |
10 |
|
11 |
On Sun, Sep 06, 2015 at 01:15:17PM -0700, walt wrote: |
12 |
> https://wiki.gentoo.org/wiki/Hardened_Gentoo |
13 |
> |
14 |
> That wiki page is very seductive. It makes me want to drop everything |
15 |
> and select a hardened profile and re-emerge everything from scratch. |
16 |
> |
17 |
> But I have a feeling I'd soon be in big trouble if I did. Is this |
18 |
> something that only gentoo devs should be messing with, or is this |
19 |
> a project that a typical gentoo end-user might hope to accomplish |
20 |
> without frequent suicidal thoughts? |