Re: [gentoo-hardened] kernel no longer in hardened-development overlay?

public inbox for gentoo-hardened@lists.gentoo.org
 help / color / mirror / Atom feed

From: Ed W <lists@wildgooses.com>
To: gentoo-hardened@lists.gentoo.org
Subject: Re: [gentoo-hardened] kernel no longer in hardened-development 	overlay?
Date: Tue, 20 Apr 2010 00:24:12 +0100	[thread overview]
Message-ID: <4BCCE61C.1050302@wildgooses.com> (raw)
In-Reply-To: <h2z44a1f4d21004191605m8b1d24fbub87c9c06ec145331@mail.gmail.com>

On 20/04/2010 00:05, Mansour Moufid wrote:
> On Mon, Apr 19, 2010 at 12:53 PM, Joseph C. Lininger<jbahm@pcdesk.net>  wrote:
>    
>> Hey folks,
>> Has anyone else noticed that the entire hardened-sources package has
>> vanished from the hardened-development overlay? I know it's a
>> development overlay and all, but I figured I should mention it because
>> it's just gone. All versions. It struck me as a bit odd. Any reason for
>> this?
>>      
> I was never a fan of overlays, so I've been doing as Ed W suggests
> ever since I never received a response to my previous questions on the
> subject. Back when GCC still had SSP, I didn't think delays with
> hardened-sources were a big deal. But I think it's telling of the
> current state of the Gentoo Hardened project that hardened-sources are
> (certainly) more vulnerable than gentoo-sources, and even
> vanilla-sources.
>
> In any case, it's clear to me now that Gentoo Hardened is more a pet
> project of a handful of (not very communicative) developers than it is
> a serious (meta)distribution.
>
>    

Hmm, I think this is inflamatory and as it happens I would disagree...

Can we please avoid annoying the few developers we have working on 
hardened.  I think it's fair to say that it's a small group, but equally 
they have done a great job and really most of hardened in well catered 
for.  I even have a hardened uclibc running gcc 4.4, so I have to say a 
big thankyou to everyone who made this possible...!

I would also disagree that there are some big vulnerabilities just 
because your "stable" kernel is older.  Personally I prefer to stay a 
little more up to date, but I think there are a good may Redhat and 
Centos servers running much older kernels than that...

More to the point though the whole project is hardly in tatters because 
no one has pushed some newer version to "stable".  I suspect the stable 
version is lagging simply because the best ebuild has moved into this 
overlay and hence it cannot become the "stable" version - so stable is 
simply the last version in the main tree before the overlay became the 
development source.  Under the circumstances I think just set your 
package mask appropriately and move on?

I think gentoo hardened is a fantastic project - please lets not 
critique our few developers who continue to work on it.

Good luck

Ed W

next prev parent reply	other threads:[~2010-04-19 23:24 UTC|newest]

Thread overview: 23+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2010-04-19 16:53 [gentoo-hardened] kernel no longer in hardened-development overlay? Joseph C. Lininger
2010-04-19 17:16 ` Ed W
2010-04-19 18:31   ` Michael Orlitzky
2010-04-19 19:37     ` Mike Edenfield
2010-04-19 23:02       ` Ed W
2010-04-19 19:45     ` David Sommerseth
2010-04-19 22:27       ` [gentoo-hardened] " Kerin Millar
2010-04-19 23:15     ` [gentoo-hardened] " Ed W
2010-04-20  5:14       ` Kai Dietrich
2010-04-20 11:57         ` Darknight
2010-04-20 13:34           ` Ed W
2010-04-20 13:46             ` Pavel Labushev
2010-04-19 17:46 ` [gentoo-hardened] " Kerin Millar
2010-04-19 20:12   ` Guillaume Castagnino
2010-04-19 22:56     ` Ed W
2010-04-19 23:05 ` [gentoo-hardened] " Mansour Moufid
2010-04-19 23:24   ` Ed W [this message]
2010-04-19 23:43     ` Mansour Moufid
2010-04-20 12:36       ` [gentoo-hardened] " Kerin Millar
2010-04-20 15:36         ` David Sommerseth
2010-04-19 23:35   ` [gentoo-hardened] " klondike
2010-04-20  0:00     ` Anthony G Basile
2010-04-20  5:08       ` Tóth Attila

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=4BCCE61C.1050302@wildgooses.com \
    --to=lists@wildgooses.com \
    --cc=gentoo-hardened@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox