From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-server+bounces-3571-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1QmJjT-0006KV-RC
	for garchives@archives.gentoo.org; Thu, 28 Jul 2011 06:06:08 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id BA64821C0C2;
	Thu, 28 Jul 2011 06:05:50 +0000 (UTC)
Received: from svr-us4.tirtonadi.com (unknown [69.65.43.212])
	by pigeon.gentoo.org (Postfix) with ESMTP id 450B421C326
	for <gentoo-server@lists.gentoo.org>; Thu, 28 Jul 2011 06:05:19 +0000 (UTC)
Received: from mail-fx0-f53.google.com ([209.85.161.53])
	by svr-us4.tirtonadi.com with esmtpsa (TLSv1:RC4-SHA:128)
	(Exim 4.69)
	(envelope-from <pandu@poluan.info>)
	id 1QmJih-002oO0-16
	for gentoo-server@lists.gentoo.org; Thu, 28 Jul 2011 13:05:19 +0700
Received: by fxd23 with SMTP id 23so1154550fxd.40
        for <gentoo-server@lists.gentoo.org>; Wed, 27 Jul 2011 23:05:14 -0700 (PDT)
Precedence: bulk
List-Post: <mailto:gentoo-server@lists.gentoo.org>
List-Help: <mailto:gentoo-server+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-server+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-server+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-server.gentoo.org>
X-BeenThere: gentoo-server@lists.gentoo.org
Reply-to: gentoo-server@lists.gentoo.org
MIME-Version: 1.0
Received: by 10.223.41.156 with SMTP id o28mr834899fae.11.1311833114920; Wed,
 27 Jul 2011 23:05:14 -0700 (PDT)
Received: by 10.223.87.5 with HTTP; Wed, 27 Jul 2011 23:05:14 -0700 (PDT)
In-Reply-To: <l5XKpVc3Yx6z.WFLmRyFX@mail.poluan.info>
References: <l5XKpVc3Yx6z.WFLmRyFX@mail.poluan.info>
Date: Thu, 28 Jul 2011 13:05:14 +0700
Message-ID: <CAA2qdGXEgbKpLE5W=KEA85dfQBz1CsoBqt4Y4GpEmSG04GY7pQ@mail.gmail.com>
Subject: Re: [gentoo-server] New Gentoo-Wiki Article (draft): Paravirtualizing
 Gentoo VMs on XenServer
From: Pandu Poluan <pandu@poluan.info>
To: gentoo-server@lists.gentoo.org
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - svr-us4.tirtonadi.com
X-AntiAbuse: Original Domain - lists.gentoo.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - poluan.info
X-Archives-Salt: 
X-Archives-Hash: 9cc176aa2d7952369e5052f21b6b109c

On Wed, Jul 27, 2011 at 23:08, Pandu Poluan <Pandu@poluan.info> wrote:
> -original message-
> Subject: Re: [gentoo-server] New Gentoo-Wiki Article (draft): Paravirtual=
izing Gentoo VMs on XenServer
> From: Matthew Thode <mthode@mthode.org>
> Date: 2011-07-27 22:37
>
>>Is there a reason you are not using the {Hardened Server [Virtualization]=
}
>>profile for grsec?
>>I have tested this profile on rackspace and it works (we use xen here).
>
> I forgot the exact reason. IIRC, I perused / compared the changes between=
 'Server' and 'Virtualization' and found some ... things I don't like. But =
I can't remember what exactly :(
>
> Tomorrow when I get back @ the office, I'll again re-compare them.
>

Okay, I *utterly* failed to see why I chose [server] rather than
[virtualization]. In fact, *now* I think [virtualization] will be a
better base security template.

I'll update the wiki.

Rgds,
--=20
Pandu E Poluan
~ IT Optimizer ~

=C2=A0=E2=80=A2 Blog : http://pepoluan.tumblr.com
=C2=A0=E2=80=A2 Linked-In : http://id.linkedin.com/in/pepoluan