From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1La3vJ-0003Z8-OY for garchives@archives.gentoo.org; Thu, 19 Feb 2009 08:06:21 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 9EC84E01AA; Thu, 19 Feb 2009 08:06:19 +0000 (UTC) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.153]) by pigeon.gentoo.org (Postfix) with ESMTP id 65C66E01AA for ; Thu, 19 Feb 2009 08:06:19 +0000 (UTC) Received: by fg-out-1718.google.com with SMTP id e12so944355fga.14 for ; Thu, 19 Feb 2009 00:06:18 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=2b8Zq8evVQv5te6A/oXEFLI0CI6nOhoTiEc7Ay31sCc=; b=SOCnyfv2WvlHU3+60AU3yI7B6ojqceAYtbiCGd25/mW5eyiD282E867LLoc/r7XLfE a5m9g0ezcbvKXlDZ2puL9GD22hc/EB6JOdWyjqDxUBzwka3MGMHXzT8+inL3Wp/B6tFu K5j+FYzTBOrRF7tTY5/ScW3mYqw9gcmQnzH0c= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=HF2q+Yj0LLUcQkBVJQo7hjvqno3dwmQl3DCJJ0bMXlQ/eJRJnfyR9+08QKL0ciGWIj vrkKjVcv8nL20DTqrmz0HJCC1NhpMJJPYygve8pR4kP7Wj0cxZu1tbwEcVMYSEMVFlyu WUHg+HBxMI1dT1OIEO/TS+j+o+IZh2xijFF7w= Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 Received: by 10.86.53.11 with SMTP id b11mr140360fga.23.1235030778890; Thu, 19 Feb 2009 00:06:18 -0800 (PST) In-Reply-To: <200902171143.50637.meyerm@fs.tum.de> References: <522bae60902160104u5c37edc8n823126763778ae84@mail.gmail.com> <4999A7FA.4010601@gmail.com> <4999F176.1060302@edgehp.net> <200902171143.50637.meyerm@fs.tum.de> Date: Thu, 19 Feb 2009 09:06:18 +0100 Message-ID: <522bae60902190006p438a5fd6n93e47bcefc87f41b@mail.gmail.com> Subject: Re: [gentoo-hardened] Re: Which laptop compatible with hardened-workstation ? From: Romain BERGE To: gentoo-hardened@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: 6d970413-ba6d-4c58-9dc1-baf093350f5b X-Archives-Hash: 0398aa1213fc8a5cee94716e3240526c Thanks for info. I am wondering of video driver. Does hardened work with binary driver ? As all know, supplier as Intel, nVidia and AMD/ATI provides mostly binary driver. Should choose a laptop build with an AMD/ATI GPU using the open-source radeonhd driver ? Thanks 2009/2/17, Marcel Meyer : > Hi list, hello Dale, > > Am Dienstag, 17. Februar 2009 schrieb Dale Pontius: >> Just a side comment on this... I have scripts that figure out where the >> heck I am when networking comes up, and based on that decide what, if >> any, service(s) to bring up. When the current network is on "other", NO >> services are started at all - even X is started with "-tcp nolisten" so >> there are no open ports. Scratch that - dnsmasq is listening on >> loopback, but that's it. >> >> Maybe it's not all that's necessary, but it's a good first line of >> defense. > > these little helpers are surely the ones which distinguish a nicely secured > system from a good secured one (given all other loopholes are treaten like > that). So are there perhaps plans in collecting some of them (or even just > settings etc.) is a hardened-settings / hardened-tools / etc. package? > Wouldn't that be a nice addition to the overall hardened-offer from gentoo? > > > Marcel >