RE: [gentoo-user] Is Hardened profile and SELinux support active?

[Tully Gray <tully.gray@outlook.com>]

>> Hi everyone, 
>> 
>> I am very new to Gentoo and I am currently migrating from Arch. 
>> Gentoo attracts me with a freedom of system configuration and with multiple 
>> supported architectures. 
>> 
>> I was attracted by Hardened profile described at [1][2][3] 
>> But reading [1] I also got confused because it looks like it is no longer 
>> maintained. 
>> 
>> So the question is it just outdated wiki page? Is anyone using Hardened 
>> profile? Is it maintained? In Archlinux SELinux is not supported officially 
>> so this is why I am looking around. 
>> 
>> Thanks/ 
>> 
>> [1] https://wiki.gentoo.org/wiki/Project:Hardened[1] 
>> [2] https://wiki.gentoo.org/wiki/Hardened/FAQ[2] 
>> [3] https://wiki.gentoo.org/wiki/Hardened_Gentoo[3] 

>I have never used a Hardened profile and have not followed up what happened 
>after the GRSecurity developer abandoned his code development.[1] 
>https://grsecurity.net/passing_the_baton 
>Someone else could comment on the future of Gentoo Hardened, but I am posting 
>this message having noticed your message may have not made it through to some 
>recipients (the dreaded DMARC caused a DKIM header failure again).

I have fairly recently (in the last six months) converted my Gentoo systems to
use SELinux.  The process was relatively painless and the quality of the
documentation was very good.  Already in this short period of time I have
updated all systems with a new SELinux policy.  Portage (Gentoo's package
manager) appears to handle policy updates quite well and the update took place
without any major problems.  The main dev responsible of SELinux on Gentoo is
approachable and knowledgeable.

I'd say that SELinux on Gentoo seems to be in rather good health!

Tully.