From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <jano@portablehole.net>
X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-14) on finch.gentoo.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.7 required=5.0 tests=DMARC_MISSING,
	MAILING_LIST_MULTI,NICE_REPLY_A,RDNS_DYNAMIC autolearn=unavailable
	autolearn_force=no version=4.0.0
Received: from portablehole.net (lsanca1-ar15-112-033.elnk.dsl.gtei.net [4.41.112.33])
	by chiba.3jane.net (Postfix) with ESMTP id EAD3B25537
	for <gentoo-dev@gentoo.org>; Mon,  7 Jan 2002 18:21:27 -0600 (CST)
Received: (qmail 18802 invoked from network); 8 Jan 2002 00:33:17 -0000
Received: from unknown (HELO portablehole.net) (127.0.0.1)
  by localhost with SMTP; 8 Jan 2002 00:33:17 -0000
Received: from 63.204.249.45
        (SquirrelMail authenticated user jano)
        by www.portablehole.net with HTTP;
        Mon, 7 Jan 2002 16:33:17 -0800 (PST)
Message-ID: <3588.63.204.249.45.1010449997.squirrel@www.portablehole.net>
Date: Mon, 7 Jan 2002 16:33:17 -0800 (PST)
Subject: Re: [gentoo-dev] Secure Gentoo - What do you think?
From: "Jano Lukac" <jano@portablehole.net>
To: <gentoo-dev@gentoo.org>
In-Reply-To: <20020107171359.45792cdb.styx@SuxOS.org>
References: <20020107171359.45792cdb.styx@SuxOS.org>
X-Priority: 3
Importance: Normal
X-MSMail-Priority: Normal
X-Mailer: SquirrelMail (version 1.2.2)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Sender: gentoo-dev-admin@gentoo.org
Errors-To: gentoo-dev-admin@gentoo.org
X-BeenThere: gentoo-dev@gentoo.org
X-Mailman-Version: 2.0.6
Precedence: bulk
Reply-To: gentoo-dev@gentoo.org
List-Help: <mailto:gentoo-dev-request@gentoo.org?subject=help>
List-Post: <mailto:gentoo-dev@gentoo.org>
List-Subscribe: <http://lists.gentoo.org/mailman/listinfo/gentoo-dev>,
	<mailto:gentoo-dev-request@gentoo.org?subject=subscribe>
List-Id: Developer discussion list <gentoo-dev.gentoo.org>
List-Unsubscribe: <http://lists.gentoo.org/mailman/listinfo/gentoo-dev>,
	<mailto:gentoo-dev-request@gentoo.org?subject=unsubscribe>
List-Archive: <http://lists.gentoo.org/pipermail/gentoo-dev/>
X-Archives-Salt: 7990c1cf-36e9-4f15-baa0-19a7faf78c08
X-Archives-Hash: 69f05a47312585eedee3f24c915aa3fc

Joachim Blaabjerg said:
> Hi people,

> Recently, I asked mr. Robbins if I could use Portage in SuxOS, and we
> concluded with that a collaborative effort would be for the best. I've
> decided that I would really like to make a Portage "system profile" for
> SuxOS, as mr. Robbins suggested, and work with the Gentoo distribution
> (mainly Portage) as a base for SuxOS, effectively creating a security
> centralized version of Gentoo.

When you write about creating a secure profile, what exactly do you have in
mind?  e.g. package mask all insecure setups, or different pam
configuration files, changing default init-scripts or preventing wrong
programs from running, maybe kernel level options, etc etc.  ??