| 1 |
Daniel da Veiga wrote: |
| 2 |
> On 1/22/07, Eric Bohn <bsee_1991@×××××.com> wrote: |
| 3 |
>> In the US, I'm almost certain you wouldn't be able to get away with |
| 4 |
>> running Gentoo, and more specifically, Portage, the way you |
| 5 |
>> apparently do in a secure govt environment. There's probably a |
| 6 |
>> federal directive or regulation somewhere that prevents machines |
| 7 |
>> being run in govt organizations from using non-standard or officially |
| 8 |
>> unapproved technology and/or procedures, and for good reason... |
| 9 |
>> |
| 10 |
> |
| 11 |
> I know of many universities, not only from Brazil, but around the |
| 12 |
> world, that use Gentoo. There are many security features in portage, |
| 13 |
> and I believe Gentoo servers and mirrors have some security also, else |
| 14 |
> it would be too easy to compromise thousands of installations around |
| 15 |
> the world, and no cracker would miss this opportunity. |
| 16 |
> |
| 17 |
> Non-standard and officially unapproved technology sounds more like |
| 18 |
> "put someone in control of all tech used in the public sector of IT", |
| 19 |
> more like antitrust than standardizing. |
| 20 |
> |
| 21 |
>> I've had Portage hose my Gentoo install twice before to the point |
| 22 |
>> that I could no longer run Portage, and I run stable, not testing. |
| 23 |
>> Using Portage you're putting yourself at the mercy of any Joe Schmoe |
| 24 |
>> with a proxy connection to a Gentoo server that wants to compromise |
| 25 |
>> your machine. Even most commercial organizations, for job critical |
| 26 |
>> computing, have administrators that establish mirror servers for |
| 27 |
>> software testing prior to internal distribution. |
| 28 |
>> |
| 29 |
> |
| 30 |
> As I mentioned before, I don't think we are at the mercy of any |
| 31 |
> cracker around by using Gentoo. Of course some level of security would |
| 32 |
> be needed, any OS requires that, but lets not hijack this thread, as |
| 33 |
> the OP was talking about DESKTOP installations. |
| 34 |
> |
| 35 |
>> It didn't sound like the OP was intending for anyone to do sys admin |
| 36 |
>> tasks with Gentoo either, I imagine that could prove to be risky |
| 37 |
>> using any Linux distro. |
| 38 |
>> |
| 39 |
> |
| 40 |
> Yeah, that's one more reason for a Gentoo install. And just for the |
| 41 |
> record, ANY OS needs sys admin tasks once in a while, if not for |
| 42 |
> initial install, because of breakage, and believe me, I had my quota |
| 43 |
> of breakage before using Gentoo. |
| 44 |
> |
| 45 |
|
| 46 |
As someone who started out using Mandrake, I have to say that using |
| 47 |
Gentoo has been a LOT easier. Yea, I had to learn how to use Gentoo and |
| 48 |
it is different from Mandrake by far but it is a whole lot easier to |
| 49 |
manage. I have been using Gentoo for about 2 or 3 years for my desktop |
| 50 |
and I would not consider switching to any other distro. I spend a lot |
| 51 |
less time messing with my Gentoo install that I did Mandrake. The |
| 52 |
upgrade process with Mandrake was . . . . a disaster. From what I |
| 53 |
understand Redhat and Mandrake are pretty close. I certainly wouldn't |
| 54 |
switch to Redhat then. |
| 55 |
|
| 56 |
As for security, I have had several times that my internet connection |
| 57 |
was messed up and the md5 sums didn't match. Portage didn't hesitate to |
| 58 |
delete those puppies and let me know that something was changed. It |
| 59 |
would seem to me that it would be difficult for someone to change the |
| 60 |
source code on one server then change the other files on the rsync |
| 61 |
server so they both match up. |
| 62 |
|
| 63 |
Well, that my $0.02 worth. Some of what is being said just doesn't make |
| 64 |
sense to me at all. Gentoo is a lot better than some distros. It |
| 65 |
certainly beats windoze. |
| 66 |
|
| 67 |
Dale |
| 68 |
|
| 69 |
:-) :-) :-) |
| 70 |
|
| 71 |
-- |
| 72 |
www.myspace.com/dalek1967 |
| 73 |
|
| 74 |
-- |
| 75 |
gentoo-user@g.o mailing list |
Archives