It was quite dissapointing to read you dissapointed mail.
Although I reported my success on the list previously, I want express my
respect to you and all other developers of the hardened gentoo project.I'm running a hardened gentoo server powered by hardened gcc and
grsecurity. I'm absolutely sure, that it would be an extremely hard task
to break in to that box.
Unfortunately I don't have the personal knowledge to help you in
development of the toolchain, because I'm only a medical doctor. A general
medical server is quite insecure in design - even machines cost a million
dollar(!). I couldn't stop setting up a stronhold of mine, which can
whitstand the attacks from outside coming through the university's fast,
underprotected network connection. Without following the gentoo way, I'm
sure, that I would have had very hard times. Using made things easy to
prepare.
I feel myself threatened now. All that I achieved during a few month seems
to tremble. The pie/pic/ssp stuff is an essential thing in the hardened
project. I don't want to run mplayer on my server. What sould I do now?
Should I move to Fedora Core (exec-shield, SELinux)?
Whatever the future will be, I wish you a nice development!
Regards,
Dwokfur
--
dr Tóth Attila, Radiológus Rezidens, 06-30-5962-962
Attila Toth MD, Radiology Resident, +36-30-5962-962
--
gentoo-hardened@gentoo.org mailing list
Although I reported my success on the list previously, I want express my
respect to you and all other developers of the hardened gentoo project.I'm running a hardened gentoo server powered by hardened gcc and
grsecurity. I'm absolutely sure, that it would be an extremely hard task
to break in to that box.
Unfortunately I don't have the personal knowledge to help you in
development of the toolchain, because I'm only a medical doctor. A general
medical server is quite insecure in design - even machines cost a million
dollar(!). I couldn't stop setting up a stronhold of mine, which can
whitstand the attacks from outside coming through the university's fast,
underprotected network connection. Without following the gentoo way, I'm
sure, that I would have had very hard times. Using made things easy to
prepare.
I feel myself threatened now. All that I achieved during a few month seems
to tremble. The pie/pic/ssp stuff is an essential thing in the hardened
project. I don't want to run mplayer on my server. What sould I do now?
Should I move to Fedora Core (exec-shield, SELinux)?
Whatever the future will be, I wish you a nice development!
Regards,
Dwokfur
--
dr Tóth Attila, Radiológus Rezidens, 06-30-5962-962
Attila Toth MD, Radiology Resident, +36-30-5962-962
--
gentoo-hardened@gentoo.org mailing list