From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 31555 invoked by uid 1002); 5 Sep 2003 04:17:47 -0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 20232 invoked from network); 5 Sep 2003 04:17:47 -0000 From: Mike Frysinger Reply-To: vapier@gentoo.org To: gentoo-dev@gentoo.org Date: Fri, 5 Sep 2003 00:17:45 -0400 User-Agent: KMail/1.5.3 References: <200309050110.44445.jk@microgalaxy.net> In-Reply-To: <200309050110.44445.jk@microgalaxy.net> MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Boundary-02=_r5AW/4iV2m+j9Dz"; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200309050017.47227.vapier@gentoo.org> Subject: Re: [gentoo-dev] Ports Security X-Archives-Salt: f41b3845-9ce7-4509-bfbb-d1f18ca55308 X-Archives-Hash: 36258169efb053178fa290589d93e85f --Boundary-02=_r5AW/4iV2m+j9Dz Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Description: signed data Content-Disposition: inline On Thursday 04 September 2003 21:10, Jan Krueger wrote: > Hi, > > is there a guide like > http://www.openbsd.org/porting.html#Security > in progress? available? uhh we have gentoo-hardened ... not sure what you're asking about ... > Or even better tools bundled in a "esecurity_check": putting this in an ebuild to be run everytime a pkg is unpacked is kind of= =20 dumb (no offense meant) ... we have no 'automated' ways for portage to scan= =20 source code looking for potential security issues, nor should there be ...= =20 the responsibility lies on the upstream author and the gentoo maintainer, a= nd=20 it should stop there ... perhaps creating tools for developers to use when testing out a new pkg wou= ld=20 be feasible ... then again i think if you want a 'secure' box you should=20 follow the excellent work the gentoo-hardened team has put together ... =2Dmike --Boundary-02=_r5AW/4iV2m+j9Dz Content-Type: application/pgp-signature Content-Description: signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iQIVAwUAP1gOaUFjO5/oN/WBAQIkuA//WANpnro8ocVNLY6o+G5vUav5qUdke52Z QelM34JK+Yn4LQYDHjOttCSdTCYGHPA22NBAmy6c592E6bihdzUps8dfJbBxxLYX Fy7x+M8y+SEJ5tFXxpzevlsP4zrvghENQd7dUmjf/AkqfNjY+MZEWrouqYn3QDBd tbpHzzPEPDnB7UMr+e736P+pUaa2K+FwMIHyQbG9//UutruVVzCvK67BUfzaBIMN hYH96h4oCAAHfO9MdRJlMa7R2F2tN9+ry35U691QCdGxJVDSA8d8vtpY/P5+hA3I 1e5cw58sc1BwjSn0Kmb8DJx2atP0x9mNPs7D3WHXG5OBxJ7CYIjDe33Iu6C5putm gsFtyFQQutyp7fLwS33DbKBozCtgzNgegw5+c/7eFSBJw7jP7eGJuRwBeZOGBlzH TU2Jbc+WYk1WVwpls5l6wNb6Ng9krrnhxVthA6SPfVAzEM2MUC3LpHmWYXot14F1 DTMoXkOY5idBHzFgF00knVi0ut9MT9Vzi3H7m/DF02y/o/VWJ+L/lqkIp3XVvQgs Qb8xcTwaSZDwK6P4qJ9Sh5kJ7JJTnAr1/iN7iJTLREE1yoO+DwvgclR2DoxUnhEh WFyw4AneEuuM9vveVTH6h3YAqvMViohHmvqKrRqUHFdLRD6B24uofyJuEi1oZ4gl I4ulDOddNUU= =WqAo -----END PGP SIGNATURE----- --Boundary-02=_r5AW/4iV2m+j9Dz--