From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-commits+bounces-313788-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1PmAgQ-0007w7-JE
	for garchives@archives.gentoo.org; Sun, 06 Feb 2011 19:54:06 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 02DE5E09DA;
	Sun,  6 Feb 2011 19:53:57 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by pigeon.gentoo.org (Postfix) with ESMTP id B2194E09DA
	for <gentoo-commits@lists.gentoo.org>; Sun,  6 Feb 2011 19:53:57 +0000 (UTC)
Received: from pelican.gentoo.org (unknown [66.219.59.40])
	(using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits))
	(No client certificate requested)
	by smtp.gentoo.org (Postfix) with ESMTPS id CCDF81B4026
	for <gentoo-commits@lists.gentoo.org>; Sun,  6 Feb 2011 19:53:56 +0000 (UTC)
Received: from localhost.localdomain (localhost [127.0.0.1])
	by pelican.gentoo.org (Postfix) with ESMTP id 3190F8006A
	for <gentoo-commits@lists.gentoo.org>; Sun,  6 Feb 2011 19:53:56 +0000 (UTC)
From: "Sven Vermeulen" <sven.vermeulen@siphos.be>
To: gentoo-commits@lists.gentoo.org
Content-type: text/plain; charset=UTF-8
Reply-To: gentoo-dev@lists.gentoo.org, "Sven Vermeulen" <sven.vermeulen@siphos.be>
Message-ID: <e166a946c4e0e78deda5eb4ef5ff7efdfad31b45.SwifT@gentoo>
Subject: [gentoo-commits] proj/hardened-docs:master commit in: xml/selinux/
X-VCS-Repository: proj/hardened-docs
X-VCS-Files: xml/selinux/hb-using-install.xml
X-VCS-Directories: xml/selinux/
X-VCS-Committer: SwifT
X-VCS-Committer-Name: Sven Vermeulen
X-VCS-Revision: e166a946c4e0e78deda5eb4ef5ff7efdfad31b45
Date: Sun,  6 Feb 2011 19:53:56 +0000 (UTC)
Precedence: bulk
List-Post: <mailto:gentoo-commits@lists.gentoo.org>
List-Help: <mailto:gentoo-commits+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-commits+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-commits+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-commits.gentoo.org>
X-BeenThere: gentoo-commits@lists.gentoo.org
Content-Transfer-Encoding: quoted-printable
X-Archives-Salt: 
X-Archives-Hash: 4cd7a6df8d18db000d1b2b5bf2891635

commit:     e166a946c4e0e78deda5eb4ef5ff7efdfad31b45
Author:     Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
AuthorDate: Sun Feb  6 19:50:50 2011 +0000
Commit:     Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
CommitDate: Sun Feb  6 19:50:50 2011 +0000
URL:        http://git.overlays.gentoo.org/gitweb/?p=3Dproj/hardened-docs=
.git;a=3Dcommit;h=3De166a946

Most of hardened-dev is moved to official Portage, so update docs to refl=
ect this

---
 xml/selinux/hb-using-install.xml |   43 ++++++++++++++++++++++++++++----=
-----
 1 files changed, 32 insertions(+), 11 deletions(-)

diff --git a/xml/selinux/hb-using-install.xml b/xml/selinux/hb-using-inst=
all.xml
index d341941..9d72e36 100644
--- a/xml/selinux/hb-using-install.xml
+++ b/xml/selinux/hb-using-install.xml
@@ -8,7 +8,7 @@
=20
 <sections>
 <version>0</version>
-<date>2011-01-16</date>
+<date>2011-02-06</date>
=20
 <section>
 <title>Installing Gentoo Hardened</title>
@@ -60,18 +60,14 @@ system is 512 byte. Since the default is 256, you wil=
l need to run the
 <title>Installing the Hardened Development Overlay</title>
 <body>
=20
-<warn>
-The current SELinux ebuilds and packages in the official Portage tree ar=
e not
-sufficient to get SELinux working. The Gentoo Hardened team is working h=
ard to
-get the SELinux related packages in good shape and is using the
-<c>hardened-development</c> overlay as the current development repositor=
y. As=20
-documentation is equally important as packages, this book is already wri=
tten=20
-taking this overlay in mind. Once the packages are migrated to the stabl=
e=20
-Portage tree, the documentation will be updated accordingly.
-</warn>
+<p>
+Although optional, we recommend to enable the <c>hardened-development</c=
>
+overlay. The state of SELinux within Gentoo Hardened is still undergoing
+major development.
+</p>
=20
 <p>
-Now install <c>app-portage/layman</c> and add the <c>hardened-developmen=
t</c>
+Install <c>app-portage/layman</c> and add the <c>hardened-development</c=
>
 overlay. This overlay uses a git repository, so either install <c>git</c=
> as
 well, or set <c>USE=3D"git"</c> in <path>/etc/make.conf</path>.
 Make sure to include layman's <path>make.conf</path> in your
@@ -345,6 +341,31 @@ utilities, label our file system and configure the p=
olicy.
 </body>
 </subsection>
 <subsection>
+<title>Enabling ~Arch Packages</title>
+<body>
+
+<p>
+The current stable SELinux related packages are not fit for use anymore =
(or are
+even broken) so we seriously recommend to enable ~arch packages for SELi=
nux. Add
+the following settings to the right file (for instance=20
+<path>/etc/portage/package.accept_keywords/selinux</path>):
+</p>
+
+<pre caption=3D"SELinux ~arch packages">
+sys-libs/libselinux
+sys-apps/policycoreutils
+sys-libs/libsemanage
+sys-libs/libsepol
+app-admin/setools
+dev-python/sepolgen
+sys-apps/checkpolicy
+sec-policy/*
+=3Dsys-process/vixie-cron-4.1-r11
+</pre>
+
+</body>
+</subsection>
+<subsection>
 <title>Install Policies and Utilities</title>
 <body>
=20