From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LFX8m-00013T-84 for garchives@archives.gentoo.org; Wed, 24 Dec 2008 17:03:24 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id E9035E039D; Wed, 24 Dec 2008 17:03:22 +0000 (UTC) Received: from mail-bw0-f12.google.com (mail-bw0-f12.google.com [209.85.218.12]) by pigeon.gentoo.org (Postfix) with ESMTP id 728E8E039D for ; Wed, 24 Dec 2008 17:03:22 +0000 (UTC) Received: by bwz5 with SMTP id 5so1743596bwz.10 for ; Wed, 24 Dec 2008 09:03:21 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=iWDzdXEEm4DoV14tgDQlPYt++4pMrYd67U4BTHoP42E=; b=xqpyaKmFyhI4h8KTFCmnx6hMVEsRm5EHrChCmUYm7a3N0asRpnyy7vgVmMZog2rkSo UbEZ1B+jbTmLAOpENSh/KcQZSfcsNdAmi6jpFPJviPsl+gYL19/WeoBTVCvk+GGwiMv/ tchw/zC43g9fsdtgo4LJ0tKkJ0CH0QaNwR2aE= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=gYLKDkTDILFooJo25iayYj564lbh4lTorMAkELf+uImm+f8oB/3KrE2o+oOiqrblLb FyWGIpWCe7Lnxe/+jkjQPYf2X7NeCunmiuWwwo8Uq7laB3Yw1Z4PZ8MlaM+Ip/JXRuCB +FsDJKq/iYM4Sy1IzYhMUlGy1rE60glX7ZuqI= Received: by 10.181.11.13 with SMTP id o13mr2265460bki.100.1230138201438; Wed, 24 Dec 2008 09:03:21 -0800 (PST) Received: by 10.180.204.12 with HTTP; Wed, 24 Dec 2008 09:03:21 -0800 (PST) Message-ID: <49bf44f10812240903r5de4963blb6c9c4e295adf7f7@mail.gmail.com> Date: Wed, 24 Dec 2008 09:03:21 -0800 From: Grant To: gentoo-hardened@lists.gentoo.org Subject: Re: [gentoo-hardened] Profile switch: hardened to non-hardened? In-Reply-To: <49515B9F.4030006@moremagic.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <49bf44f10812231323t7b5371eaj6a082f56f17b01e0@mail.gmail.com> <49515B9F.4030006@moremagic.com> X-Archives-Salt: 6ec6dde8-0b1d-4649-a82a-55c7eb0eed19 X-Archives-Hash: 85583de9171df43d5a550a9f166c548a > I've been able to do so; basically I switched over to the standard profile, > disabled selinux in the kernel, and re-emerged system for new use flags. > There were some other details but overall the process was pretty painless, > anyone ambitious enough to configure a hardened system can probably handle > the switch without much problem. Not that I'm encouraging you to drop > hardened (especially on a laptop that could be exposed to random wifi > networks ;-) Is there any difference between 1 and 8 here? Should I switch to 8? # eselect profile list Available profile symlink targets: [1] hardened/x86/2.6 * [2] selinux/2007.0/x86 [3] selinux/2007.0/x86/hardened [4] default/linux/x86/2008.0 [5] default/linux/x86/2008.0/desktop [6] default/linux/x86/2008.0/developer [7] default/linux/x86/2008.0/server [8] hardened/linux/x86 - Grant >> >> Can I switch my laptop's profile from a hardened one to a non-hardened >> one? I thought this was impossible without a complete reinstall but >> folks on the gentoo-user list seem to think it's not a problem. >> >> - Grant