From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1NaGsK-0007qM-68 for garchives@archives.gentoo.org; Wed, 27 Jan 2010 23:00:41 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id A3DA6E08A1; Wed, 27 Jan 2010 22:59:57 +0000 (UTC) Received: from mail1.nippynetworks.com (mail1.nippynetworks.com [212.227.250.41]) by pigeon.gentoo.org (Postfix) with ESMTP id 6DCB0E08A1 for ; Wed, 27 Jan 2010 22:59:57 +0000 (UTC) Received: from localhost (mail1.nippynetworks.com [127.0.2.1]) by mail1.nippynetworks.com (Postfix) with ESMTP id DC156675616 for ; Wed, 27 Jan 2010 22:59:56 +0000 (GMT) X-Virus-Scanned: amavisd-new at nippynetworks.com Received: from mail1.nippynetworks.com ([127.0.2.1]) by localhost (mail1.nippynetworks.com [127.0.2.1]) (amavisd-new, port 10024) with LMTP id hMEyt2-zxtZe for ; Wed, 27 Jan 2010 22:59:56 +0000 (GMT) Received: from eds-mbp.wildgooses.local (office.nippynetworks.com [94.194.201.187]) (Authenticated sender: edward@wildgooses.com) by mail1.nippynetworks.com (Postfix) with ESMTPSA id 9C8D667560D for ; Wed, 27 Jan 2010 22:59:56 +0000 (GMT) Message-ID: <4B60C56B.7010301@wildgooses.com> Date: Wed, 27 Jan 2010 22:59:55 +0000 From: Ed W User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.1.7) Gecko/20100111 Lightning/1.0b1 Thunderbird/3.0.1 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 To: gentoo-hardened@lists.gentoo.org Subject: Re: [gentoo-hardened] Virtualbox-OSE PIE/PIC support References: <4B5FE429.9080903@uci.cu> In-Reply-To: <4B5FE429.9080903@uci.cu> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 2ea74c1b-2d3d-434d-a714-30a542b8f9b1 X-Archives-Hash: 7612da81dc2b8eaf660823ee1fdaddca On 27/01/2010 06:58, Dariem P=E9rez Herrera wrote: > Hello, > I'm new in this list. Let me introduce myself: my name is Dariem, and > I'm part of a team that is trying to create a distro based on project > Gentoo Hardened. We want to collaborate with you in everything we can.= > My first email will be about Virtualbox-OSE. I would like to know if > there is any patch I can use to fix the problem with the inline asm > using ebx register, but if it doesn't exist, I can try to create it > myself and share it with you, I just don't want to duplicate efforts. > Can you tell me what is the status of this issue? > > =20 Do also look into linux-vservers. I use these in conjunction with=20 hardened gcc-4.4 and it's a good fit for my needs. Isolation is lower=20 than virtualbox, but for many server installations the lower=20 virtualisation overhead may be useful. In my case I have both the host=20 and most of the guests running hardened (on AMD64 host) Creating your own profiles turns out to also be an excellent solution to = server mainenance - definitely recommend it Good luck Ed W