Hi everyone,
Either today or tomorrow, there will be two new experimental hardened
profiles, one on amd64 and the other x86. These will be:
hardened/linux/uclibc/amd64
and
hardened/linux/uclibc/x86
Please be careful with them! Do not try to switch to these profiles
from a glibc system. portage will complain about blocking and not let
you proceed, but for the truly stubborn who will hack away until it does
work, trust me, it will not work. It will utterly break everything.
Aside: while this is an extreme case, switching profiles is never to be
taken lightly. Eg. hardened <-> non-hardened or selinux <-> non-selinux.
For the curious, you can play with these using the stage3's at
http://http://67.151.215.237/
Notice there are 4 combinations
amd64 hardened
amd64 vanilla
i686 hardened
i686 vanilla
The amd64 are completely done. I'm working on i686 now so you may want
to wait on those. Any stage marked on or later than oct 25 should be good.
Note: the vanilla is just hardened with USE="-hardened" set in
make.conf. They are being built as a comparison to the hardened.
--
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail : blueness@gentoo.org
GnuPG FP : 8040 5A4D 8709 21B1 1A88 33CE 979C AF40 D045 5535
GnuPG ID : D0455535
Either today or tomorrow, there will be two new experimental hardened
profiles, one on amd64 and the other x86. These will be:
hardened/linux/uclibc/amd64
and
hardened/linux/uclibc/x86
Please be careful with them! Do not try to switch to these profiles
from a glibc system. portage will complain about blocking and not let
you proceed, but for the truly stubborn who will hack away until it does
work, trust me, it will not work. It will utterly break everything.
Aside: while this is an extreme case, switching profiles is never to be
taken lightly. Eg. hardened <-> non-hardened or selinux <-> non-selinux.
For the curious, you can play with these using the stage3's at
http://http://67.151.215.237/
Notice there are 4 combinations
amd64 hardened
amd64 vanilla
i686 hardened
i686 vanilla
The amd64 are completely done. I'm working on i686 now so you may want
to wait on those. Any stage marked on or later than oct 25 should be good.
Note: the vanilla is just hardened with USE="-hardened" set in
make.conf. They are being built as a comparison to the hardened.
--
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail : blueness@gentoo.org
GnuPG FP : 8040 5A4D 8709 21B1 1A88 33CE 979C AF40 D045 5535
GnuPG ID : D0455535