From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1QbgMh-0001H2-PR for garchives@archives.gentoo.org; Tue, 28 Jun 2011 22:02:40 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 513291C239 for ; Tue, 28 Jun 2011 22:02:39 +0000 (UTC) Received: from mail-vw0-f53.google.com (mail-vw0-f53.google.com [209.85.212.53]) by pigeon.gentoo.org (Postfix) with ESMTP id C647D1C11D for ; Tue, 28 Jun 2011 21:42:22 +0000 (UTC) Received: by vws13 with SMTP id 13so596938vws.40 for ; Tue, 28 Jun 2011 14:42:22 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=mtYUgGGXtJkSuFFUGkDgShwkoRBnBN3DwMS1TWLlaus=; b=H9IuiiVEoLtcLqk3QBm/KxMPMV1h2zYvd5L/9WG2Bwyjk8nm1GgK1j82nY1YysKOtL BaqvD7he7nz8pAbsASrrfCNO2dr5uD40Yzu7MHAp1E+LnKp10E2pvGQEpzf4k+8a+vEc YRjBSbijnCom0pJFSB+XvkVH0mkODsXCla3Do= Received: by 10.52.100.98 with SMTP id ex2mr56221vdb.194.1309297342098; Tue, 28 Jun 2011 14:42:22 -0700 (PDT) Received: from [127.0.0.1] (politkovskaja.torservers.net [77.247.181.165]) by mx.google.com with ESMTPS id dq5sm291883vbb.16.2011.06.28.14.42.19 (version=SSLv3 cipher=OTHER); Tue, 28 Jun 2011 14:42:21 -0700 (PDT) Message-ID: <4E0A4AB7.6000508@gmail.com> Date: Tue, 28 Jun 2011 17:42:15 -0400 From: 7v5w7go9ub0o <7v5w7go9ub0o@gmail.com> User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.18) Gecko/20110623 Lightning/1.0b2 Thunderbird/3.1.11 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 To: gentoo-hardened@lists.gentoo.org Subject: [gentoo-hardened] Re: Tips for upgrading to the current stable gentoo hardened? References: <201106151055.12918.karlis.repsons@gmail.com> <1308137759.29639.14.camel@Zentoo-1.waves.org> In-Reply-To: <1308137759.29639.14.camel@Zentoo-1.waves.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable X-Archives-Salt: X-Archives-Hash: bddc958f82e70c3499a5105430a445b0 On 06/15/11 07:35, Jean-Fran=E7ois Maeyhieux wrote: > Hi ! > > another "hardcore" solution could be to create a chroot fresh > installation whithin you import your system's preferences: > > - Create directory - Untar last hardened stage 3 - Copy your /etc in > the chroot - Copy your world file in the chroot - Copy any kind of > data or local aplication to your chroot - chroot and update your > system - when things is done, test it - wipe your old gentoo and > move your chrooted one on / > > > that's "hardcore" but permit me several times to ressucite a old > gentoo system. > > IF you can't do it, the normal way is: > > - Recompile your toolchain by compiling twice this ports: > virtual/portage virtual/os-headers sys-libs/glibc > sys-devel/binutils-config sys-devel/binutils sys-devel/gcc-config > (don't forget to switch your gcc on the way and to clean your ccache > if you use it) - Recompile your system (emerge -Davut system) - > Finally recompile your world. > Somewhere you need to fool with profiles and make.conf. I *think* the profiles will add, e.g., "hardened" to your gcc flag There used to be a wiki somewhere that described the building of hardened-gentoo step by step after branching off from the gentoo handbook - to upgrade a standard box. It may have been called gentooexperimental, but appears now dead. IF anyone can point me to current documentation about building a hardened box (which should include the make.conf and other hardened settings), please post it here. TIA