FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.

» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Gentoo > Gentoo User

LinkBack Thread Tools
Old 02-01-2008, 08:17 PM
Dan Farrell
Default Switching to hardened

On Wed, 30 Jan 2008 11:49:48 +0100
Alex Schuster <wonko@wonkology.org> wrote:

> Dan Farrell writes:
> > Alex Schuster <wonko@wonkology.org> wrote:
> > > I want to harden the gentoo running on my little server, but I'm a
> > > little worried about possible problems. Like, services not coming
> > > up when rebooting after an emerge -e world. Do you see any
> > > possibility for that?
> >
> > Absolutely. These problems can be overcome with a little attention,
> > but outdated config files that were not updated with dispatch-conf
> > or etc-update might not work with newer versions of software.
> Sure. But the system is up to date, emerge -uN world gives nothing.
> It's only the re-compiling of everything with a hardened gcc that
> worries me a little. If something might go wrong there, I would wait
> with re-compiling until I know I have physical access to the machine
> for a while, while most of the time I am away some 100 km from it.
> I must admit that I should know more about the hardened stuff, but I
> thought I'd start with the preparations. Configuring things like Pax
> would come later, when emerge -e world has finished on this slow
> machine (and when I have read all the howtos).
> Wonko

You might consider building packages but not installing them -- I think
could use --buildpkgonly (aka -B) to achieve this end. If the world
emerge with a -B flag finishes successfully, I think that means all
packages were built and you are ready to emerge world with --usepkgonly
(-K) without having to worry about build-time issues that could cause
conflicting packages on the system.

But what does everyone else think?
gentoo-user@lists.gentoo.org mailing list

Thread Tools

All times are GMT. The time now is 10:05 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org